Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS209642.roa
File: AS209642.roa (raw, json)
Hash identifier: z60i+mElrX23fnHSrUN2TJ99yVFQ8lDYHTrITBcu47Q=
Subject key identifier: 70:2C:E2:71:30:2A:1B:16:70:99:34:76:44:4D:D0:C5:9A:B9:86:24
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 505DB1D4FF9278B201543AEA0813F30432CD18DB
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS209642.roa
Signing time: Tue 15 Aug 2023 02:00:24 +0000
ROA not before: Tue 15 Aug 2023 01:55:24 +0000
ROA not after: Tue 13 Aug 2024 02:00:24 +0000
asID: 209642
IP address blocks: 2a0f:9400:6107::/48 maxlen: 48
2a0f:9400:73b0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:5d:b1:d4:ff:92:78:b2:01:54:3a:ea:08:13:f3:04:32:cd:18:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Aug 15 01:55:24 2023 GMT
Not After : Aug 13 02:00:24 2024 GMT
Subject: CN=702CE271302A1B1670993476444DD0C59AB98624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4c:5d:32:00:c8:54:a0:c1:4f:9d:61:da:3a:
1e:28:26:23:59:5f:5f:ce:d3:a0:9d:80:69:fa:5a:
84:6a:68:7f:9b:b2:11:3b:64:20:75:ff:3f:10:a6:
0e:60:b1:bc:4b:66:05:88:82:c1:a8:94:21:57:8f:
60:23:65:ed:c1:5d:48:7b:f1:02:14:29:30:e0:af:
ad:67:30:ae:f3:ce:c3:0a:c5:51:60:7b:d5:c6:bb:
0b:d1:79:19:9d:7f:f8:df:eb:17:d9:01:61:32:bf:
5f:0a:2d:cb:d3:9d:a8:ed:f3:e2:4b:c0:cd:93:a1:
56:af:64:8a:c8:4e:90:26:ab:18:b2:61:92:00:06:
6c:f5:cf:ca:ef:9c:92:2b:2b:84:54:f9:33:ca:e8:
17:4b:91:59:c3:a1:87:3a:77:b9:2c:eb:34:41:94:
5b:74:bb:11:c1:73:6c:68:fc:7a:db:35:c5:6e:eb:
07:26:05:54:a1:58:7c:f7:23:7d:b7:ad:9e:61:ef:
6c:2c:d9:8c:e5:a8:25:e2:d9:b0:28:46:42:22:b6:
af:bb:cb:f1:fd:80:26:a5:88:30:27:c9:7a:5b:52:
f2:a2:a5:04:a0:0b:e9:da:94:20:3e:2e:85:76:97:
33:9b:ed:ee:5c:64:a5:bf:49:01:47:b6:37:bb:1c:
96:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:2C:E2:71:30:2A:1B:16:70:99:34:76:44:4D:D0:C5:9A:B9:86:24
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS209642.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6107::/48
2a0f:9400:73b0::/44
Signature Algorithm: sha256WithRSAEncryption
48:b3:27:9e:13:8e:4a:8d:69:d2:fb:3e:96:3c:b8:42:ab:7d:
56:bc:29:c2:cc:f8:bb:7a:bf:e5:4c:b8:9e:85:4a:ed:d4:df:
19:56:19:e5:46:44:f1:e6:21:39:ab:70:e9:6b:35:9b:d0:35:
f7:c9:76:c9:1b:41:a4:fe:e2:cc:8a:a7:a3:d9:5d:a1:5c:86:
46:24:93:0a:10:fb:3e:76:f9:a6:4e:ae:df:e4:be:f8:22:73:
4d:ba:6f:5b:be:fb:32:0e:a6:af:a7:b2:de:3c:21:91:37:18:
07:f3:fc:a3:3a:10:1f:01:04:ed:9b:6c:fb:8a:4c:d5:22:7c:
d6:ae:61:02:bb:17:2a:25:f9:43:0f:2c:9a:e0:d8:09:78:96:
b0:73:b5:1f:7a:2b:2f:0e:ec:7d:05:09:5a:51:51:af:ab:b2:
29:f1:24:16:da:c3:7c:33:09:19:55:d4:69:2a:4f:f3:4e:f4:
e4:f8:f3:90:0f:86:1b:cd:96:7f:cd:14:a8:37:51:92:27:1f:
93:d8:25:10:7a:2f:88:c3:75:cb:c4:0f:13:0a:fb:7b:73:3f:
21:e4:dd:6d:c4:1a:0e:c4:3e:87:5d:44:65:fc:69:d2:94:e0:
78:5a:12:a9:25:d0:3d:42:5a:88:bb:c0:9b:11:e9:27:49:f4:
e8:a3:2b:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:07:18 2024 by rpki-client on console-fra.rpki-client.org