Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS209642.roa
File: AS209642.roa (raw, json)
Hash identifier: uu7LGAd7UESWe35pEapWjqpLq0QlgTH+o7NWwcj0e/I=
Subject key identifier: 27:88:F8:F7:3F:33:45:BF:CD:2A:E4:08:8E:77:6B:A6:93:07:68:E8
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 3FD1283BF827B78151D483A173414AA9655E587D
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS209642.roa
Signing time: Tue 19 May 2026 04:03:19 +0000
ROA not before: Tue 19 May 2026 03:58:19 +0000
ROA not after: Tue 18 May 2027 04:03:19 +0000
asID: 209642
IP address blocks: 2a0f:9400:6107::/48 maxlen: 48
2a0f:9400:73b0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:d1:28:3b:f8:27:b7:81:51:d4:83:a1:73:41:4a:a9:65:5e:58:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: May 19 03:58:19 2026 GMT
Not After : May 18 04:03:19 2027 GMT
Subject: CN=2788F8F73F3345BFCD2AE4088E776BA6930768E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:57:00:88:31:7f:5c:ce:95:d6:ba:46:d1:35:
40:08:05:e7:8c:c8:8c:40:26:9c:81:77:2f:1c:ff:
15:5d:72:a3:92:9b:27:ca:42:d2:52:68:44:57:66:
d5:81:49:a1:9b:7f:8f:af:85:66:76:6f:e8:ce:d2:
1a:95:46:8c:89:1a:c3:90:14:97:a4:18:ec:a5:53:
df:4d:96:f1:b8:bb:c1:64:5f:c5:56:3d:1c:2b:45:
a1:3a:17:ca:3a:72:52:37:20:f1:e5:6e:3c:e1:5e:
02:28:88:f7:55:6e:96:11:9e:e5:d6:d6:55:e5:30:
22:17:60:12:8c:22:72:3e:4a:ba:f9:fb:6b:67:04:
92:ca:75:62:19:69:1b:9e:55:47:46:48:c7:3e:c0:
93:b9:a3:b0:f3:e3:d9:8a:6d:12:ea:25:33:d5:74:
e0:e4:de:42:29:bc:4d:a4:37:e1:4d:73:0d:a2:6c:
a2:2b:87:be:d6:2d:f3:f2:c1:b0:60:1e:7a:5f:c8:
ee:ff:db:ba:21:a6:77:a1:bc:2c:80:29:02:50:2e:
c7:14:81:54:97:bd:c0:37:7d:c4:dd:58:f0:d5:ac:
61:7e:85:5c:d1:98:dc:e6:2c:79:20:ec:46:bc:42:
f0:28:fa:1a:26:7d:20:0c:f0:9c:25:d0:3a:ce:57:
16:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:88:F8:F7:3F:33:45:BF:CD:2A:E4:08:8E:77:6B:A6:93:07:68:E8
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS209642.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6107::/48
2a0f:9400:73b0::/44
Signature Algorithm: sha256WithRSAEncryption
40:4a:fa:79:8b:fd:0c:e3:13:54:07:a4:ee:01:cd:68:2e:66:
1c:dd:82:39:30:f4:7e:a1:b5:1a:52:0b:9a:e5:b7:36:68:b7:
ac:99:47:9c:25:6f:d7:79:8b:6a:6a:70:bb:21:6c:78:cf:b5:
2e:df:c1:88:c9:ef:07:79:25:d0:a0:ac:2d:5e:38:07:5d:cc:
12:04:8e:5d:9f:3c:33:16:9a:c6:33:5d:f6:73:9d:b7:1f:4d:
a2:13:ec:9e:ed:df:61:39:a1:ca:cf:45:8c:12:62:35:3d:97:
6a:b4:5a:d2:78:a1:9d:62:cd:fb:2f:d0:3e:ae:98:c0:e8:c1:
0d:7e:56:e0:a8:24:ca:b5:c8:e9:56:7d:7e:a3:cd:5c:3f:f3:
c6:e0:20:46:43:10:59:60:6b:e5:17:d9:57:ea:db:a4:bb:de:
38:5b:74:3a:94:ed:cd:74:90:9a:d8:d0:97:10:96:2a:de:95:
2e:bb:9a:4d:f1:5e:f5:e3:f6:e8:4f:90:2a:9e:6b:54:e4:0b:
99:13:9f:49:ce:d6:c6:7d:b1:b4:eb:3d:a4:13:74:67:88:a3:
b8:d0:02:e0:b0:92:31:4f:ce:02:c7:54:35:62:a5:01:ef:a7:
c6:b2:c8:90:25:b1:27:f2:89:8a:6e:fe:44:8a:7b:4e:1b:47:
94:26:ec:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 09:24:28 2026 by rpki-client