Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS211066.roa
File: AS211066.roa (raw, json)
Hash identifier: u4ckqrrUBxHmVTmwRm/UwR/s2INYhYyE1RAJqTq4Gro=
Subject key identifier: 97:D8:75:05:72:44:CC:1A:A4:06:D0:DD:07:07:20:0B:0B:B2:1B:FE
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 37CB72255E9617D5DD8D7E0B6BC8A809FE4031EE
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS211066.roa
Signing time: Sat 30 May 2026 07:11:01 +0000
ROA not before: Sat 30 May 2026 07:06:01 +0000
ROA not after: Sat 29 May 2027 07:11:01 +0000
asID: 211066
IP address blocks: 2a0f:9400:7722::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:cb:72:25:5e:96:17:d5:dd:8d:7e:0b:6b:c8:a8:09:fe:40:31:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: May 30 07:06:01 2026 GMT
Not After : May 29 07:11:01 2027 GMT
Subject: CN=97D875057244CC1AA406D0DD0707200B0BB21BFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e9:a9:a9:b9:b6:9e:25:aa:88:fe:88:03:ee:
82:6b:67:d7:d2:1a:48:ce:6f:e5:36:6f:84:15:bc:
e0:ac:3f:6f:98:de:b9:ad:1d:b2:e8:39:e2:87:0c:
98:c1:59:13:b2:21:b4:cb:5b:43:7a:99:23:f8:03:
06:46:14:f1:6a:49:3e:4c:61:29:4c:6a:b5:fd:5d:
c4:c2:d0:84:54:93:a2:35:bb:da:9a:c4:9d:0f:87:
96:dc:ce:63:bd:95:37:e6:92:9d:d2:a8:fc:10:28:
ed:b6:1b:66:89:60:15:2c:d0:14:5a:3b:99:42:d8:
1b:77:ff:b7:3c:26:04:7d:0e:19:cb:51:d3:2f:05:
1b:78:ca:7f:5f:5d:eb:34:47:db:c3:4f:6d:c0:1c:
d6:bb:68:69:94:f3:8c:b3:e0:b9:80:3c:0f:86:09:
e4:7f:c3:1b:b5:75:b2:2b:2f:91:1b:8a:fd:15:90:
05:93:72:5a:f5:46:80:2b:13:36:8f:0f:49:61:d9:
c5:e1:1a:6f:bc:84:95:39:df:bc:ab:33:a2:5a:38:
f6:0c:e9:c9:54:0f:63:c1:44:db:54:21:05:a4:52:
e9:95:46:81:bf:7f:f5:95:e2:8a:6e:1c:3e:63:64:
bc:6f:18:01:e5:27:7b:f3:09:ce:8c:9f:6e:0e:d9:
be:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D8:75:05:72:44:CC:1A:A4:06:D0:DD:07:07:20:0B:0B:B2:1B:FE
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS211066.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:7722::/48
Signature Algorithm: sha256WithRSAEncryption
39:40:64:02:a2:51:58:97:78:30:1c:78:a4:bb:78:dd:1a:4a:
87:72:34:78:58:79:0a:86:f3:a3:26:9e:35:d4:ba:45:b3:5f:
5a:cc:d6:64:31:09:61:24:bf:f4:87:6f:7b:d3:0f:66:c2:0c:
d9:d9:b2:67:02:27:fd:b9:14:10:18:c2:34:49:ad:9f:4a:de:
8d:b6:08:d1:34:99:67:5d:17:81:b2:e5:a2:f1:90:13:9e:9a:
80:2b:71:87:89:ec:82:91:d8:5c:d0:ce:29:c2:a8:dd:3c:aa:
2d:ce:71:1d:13:f8:78:1f:ae:c6:ac:dd:ca:64:9b:1e:ac:3f:
26:eb:a4:12:18:e7:9b:82:01:97:4f:76:5d:ae:1a:86:1b:ca:
80:ce:a7:f0:7d:be:71:eb:d1:a3:56:fc:ba:6c:53:4b:e9:a2:
c2:64:db:cd:af:29:3e:b1:b3:6e:59:7f:4b:ff:cd:22:61:bc:
c2:29:38:90:bd:c6:e3:9b:ce:7b:8d:eb:94:60:d0:70:d1:a1:
cd:25:c9:4f:92:70:54:8d:07:b4:a8:f8:d2:7b:a8:e3:2a:21:
43:7a:41:64:dc:0f:43:9a:40:9d:6e:cd:7d:24:2b:25:06:c8:
01:cf:df:f1:7e:93:56:eb:36:0b:60:23:6f:ff:d7:f4:76:b3:
74:bd:0c:39
-----BEGIN CERTIFICATE-----
MIIEvzCCA6egAwIBAgIUN8tyJV6WF9XdjX4La8ioCf5AMe4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2VhNTMxNmRiZGFjMDFjZDA1ZDBlYWEwNWE4OWMwNGRh
M2U3Mzk4ZjAeFw0yNjA1MzAwNzA2MDFaFw0yNzA1MjkwNzExMDFaMDMxMTAvBgNV
BAMTKDk3RDg3NTA1NzI0NENDMUFBNDA2RDBERDA3MDcyMDBCMEJCMjFCRkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP6ampubaeJaqI/ogD7oJrZ9fS
GkjOb+U2b4QVvOCsP2+Y3rmtHbLoOeKHDJjBWROyIbTLW0N6mSP4AwZGFPFqST5M
YSlMarX9XcTC0IRUk6I1u9qaxJ0Ph5bczmO9lTfmkp3SqPwQKO22G2aJYBUs0BRa
O5lC2Bt3/7c8JgR9DhnLUdMvBRt4yn9fXes0R9vDT23AHNa7aGmU84yz4LmAPA+G
CeR/wxu1dbIrL5Ebiv0VkAWTclr1RoArEzaPD0lh2cXhGm+8hJU537yrM6JaOPYM
6clUD2PBRNtUIQWkUumVRoG/f/WV4opuHD5jZLxvGAHlJ3vzCc6Mn24O2b5nAgMB
AAGjggHJMIIBxTAdBgNVHQ4EFgQUl9h1BXJEzBqkBtDdBwcgCwuyG/4wHwYDVR0j
BBgwFoAUfqUxbb2sAc0F0OqgWonATaPnOY8wDgYDVR0PAQH/BAQDAgeAMHEGA1Ud
HwRqMGgwZqBkoGKGYHJzeW5jOi8vcnBraS5hZG1pbi5mcmVlcmFuZ2VjbG91ZC5j
b20vcmVwby9GUkMtQ0EvNS83RUE1MzE2REJEQUMwMUNEMDVEMEVBQTA1QTg5QzA0
REEzRTczOThGLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5j
Oi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZnFVeGJiMnNBYzBG
ME9xZ1dvbkFUYVBuT1k4LmNlcjBcBggrBgEFBQcBCwRQME4wTAYIKwYBBQUHMAuG
QHJzeW5jOi8vcnBraS5hZG1pbi5mcmVlcmFuZ2VjbG91ZC5jb20vcmVwby9GUkMt
Q0EvNS9BUzIxMTA2Ni5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggr
BgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoPlAB3IjANBgkqhkiG9w0BAQsFAAOC
AQEAOUBkAqJRWJd4MBx4pLt43RpKh3I0eFh5CobzoyaeNdS6RbNfWszWZDEJYSS/
9Idve9MPZsIM2dmyZwIn/bkUEBjCNEmtn0rejbYI0TSZZ10XgbLlovGQE56agCtx
h4nsgpHYXNDOKcKo3TyqLc5xHRP4eB+uxqzdymSbHqw/JuukEhjnm4IBl092Xa4a
hhvKgM6n8H2+cevRo1b8umxTS+miwmTbza8pPrGzbll/S//NImG8wik4kL3G45vO
e43rlGDQcNGhzSXJT5JwVI0HtKj40nuo4yohQ3pBZNwPQ5pAnW7NfSQrJQbIAc/f
8X6TVus2C2Ajb//X9HazdL0MOQ==
-----END CERTIFICATE-----
Generated at Sat Jun 6 08:04:47 2026 by rpki-client