Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS211144.roa
File: AS211144.roa (raw, json)
Hash identifier: X1ZyLirm0sQ0wfnKgBqej/gaDYJvgkY67kdglQlB2Hs=
Subject key identifier: EB:E8:27:27:C2:5F:CD:39:68:3F:2F:1E:28:47:85:FE:C5:41:E3:88
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 1223CF0F5AA0AAA1E4F4B504219E8390EEC1C77A
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS211144.roa
Signing time: Fri 28 Jun 2024 02:30:23 +0000
ROA not before: Fri 28 Jun 2024 02:25:23 +0000
ROA not after: Fri 27 Jun 2025 02:30:23 +0000
asID: 211144
IP address blocks: 2a0f:9400:7000::/48 maxlen: 48
2a0f:9400:7001::/48 maxlen: 48
2a0f:9400:7002::/48 maxlen: 48
2a0f:9400:7003::/48 maxlen: 48
2a0f:9400:7004::/48 maxlen: 48
2a0f:9400:7006::/48 maxlen: 48
2a0f:9400:7007::/48 maxlen: 48
2a0f:9400:7008::/48 maxlen: 48
2a0f:9400:700a::/48 maxlen: 48
2a0f:9400:700b::/48 maxlen: 48
2a0f:9400:700c::/48 maxlen: 48
2a0f:9400:700d::/48 maxlen: 48
2a0f:9400:700e::/48 maxlen: 48
2a0f:9400:700f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:23:cf:0f:5a:a0:aa:a1:e4:f4:b5:04:21:9e:83:90:ee:c1:c7:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Jun 28 02:25:23 2024 GMT
Not After : Jun 27 02:30:23 2025 GMT
Subject: CN=EBE82727C25FCD39683F2F1E284785FEC541E388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:3d:9c:75:4f:20:7c:40:cf:70:98:13:b7:da:
cc:48:30:b4:2a:d0:f8:18:7c:d0:b9:cd:22:49:d3:
49:71:4e:bd:34:de:4a:93:c9:bf:29:37:20:9c:cd:
e9:75:ac:78:d7:99:6f:cc:36:cf:a9:d2:e2:a7:d1:
7a:04:a1:57:96:52:c6:7f:b3:84:27:9e:82:5e:98:
a1:89:ef:dc:ec:49:2f:e3:ae:da:8a:97:b7:20:5b:
ee:1f:b9:80:37:15:11:59:07:08:63:51:b1:41:fd:
cf:b1:a3:b1:26:8f:eb:f7:64:6b:a3:5a:12:29:cc:
37:d4:3c:3b:18:5c:67:a9:0a:1f:d1:94:4d:9e:ed:
77:19:4c:4a:05:f4:24:69:dc:68:22:bc:6c:cb:a7:
ab:ab:ab:a2:1d:10:8d:49:ca:93:56:53:64:1e:83:
3e:03:2a:4a:2d:28:bb:db:a9:ca:80:29:ed:c4:62:
00:b9:1c:52:96:fa:cf:47:5a:01:b8:24:af:ad:4b:
90:5b:2b:14:03:aa:0c:60:ab:f3:7e:e2:46:10:fd:
57:3e:8a:e5:9a:4c:01:e1:64:9b:33:1f:65:77:3a:
0d:cc:f7:bb:55:a5:f6:4f:93:c4:7f:b6:ea:c5:9b:
49:da:fa:e3:55:27:60:5a:fa:59:c1:7c:e8:55:f4:
f0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:E8:27:27:C2:5F:CD:39:68:3F:2F:1E:28:47:85:FE:C5:41:E3:88
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS211144.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:7000::-2a0f:9400:7004:ffff:ffff:ffff:ffff:ffff
2a0f:9400:7006::-2a0f:9400:7008:ffff:ffff:ffff:ffff:ffff
2a0f:9400:700a::-2a0f:9400:700f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
70:48:d6:d5:9d:3d:49:51:1e:95:b3:f6:fd:df:34:df:43:fb:
da:45:43:f0:ce:c1:5f:a0:d2:e0:2c:d7:64:d2:20:ae:9b:36:
78:28:5f:70:09:f2:b0:22:02:63:f6:31:c8:58:4b:be:f8:9c:
80:2b:4f:26:b5:f7:28:38:62:b9:8a:90:54:e4:01:cf:2b:2b:
a3:30:8b:0f:7f:5c:08:cb:ea:31:1e:30:64:b1:0d:5f:aa:fd:
4b:79:59:11:0c:8b:68:c4:c1:7b:e4:77:51:aa:a1:b6:a7:cc:
b0:e1:06:78:9e:de:ba:68:52:bf:c3:56:d3:2b:c2:3a:16:32:
3c:0e:a2:22:7b:57:31:8f:2c:cc:73:92:f2:ff:86:54:d0:e4:
68:bf:45:91:a1:7c:e8:4a:73:ab:ee:a8:58:d0:eb:fb:af:24:
ca:74:08:a8:ea:5e:78:12:41:3e:ad:bb:10:1e:89:70:46:91:
af:4d:63:4e:0a:f6:78:4d:be:67:d5:e6:f9:43:8f:69:f0:7e:
2e:84:de:f9:56:46:a0:dc:13:29:42:1d:ab:6d:b6:1d:c0:3e:
45:52:cd:94:97:a5:9e:d7:34:a9:53:c5:31:a3:c8:d8:aa:8f:
33:05:35:73:00:70:0b:2e:74:9b:03:05:ff:96:04:33:f0:ba:
1e:6c:ee:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:43:42 2024 by rpki-client on console-ams.rpki-client.org