Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS211144.roa
File: AS211144.roa (raw, json)
Hash identifier: Gdj4SLhhj5e0zaxw1mwUfykQ2xBL1XlZPfFpfDLrZJE=
Subject key identifier: CA:A1:9F:E5:00:8B:A2:06:F2:50:69:B4:B2:3B:A1:C6:55:35:93:26
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 47B7C45AF0691F4A8809C1769C43B39B2B9DE74D
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS211144.roa
Signing time: Tue 15 Aug 2023 02:00:25 +0000
ROA not before: Tue 15 Aug 2023 01:55:25 +0000
ROA not after: Tue 13 Aug 2024 02:00:25 +0000
asID: 211144
IP address blocks: 2a0f:9400:7000::/48 maxlen: 48
2a0f:9400:7001::/48 maxlen: 48
2a0f:9400:7002::/48 maxlen: 48
2a0f:9400:7003::/48 maxlen: 48
2a0f:9400:7004::/48 maxlen: 48
2a0f:9400:7005::/48 maxlen: 48
2a0f:9400:7006::/48 maxlen: 48
2a0f:9400:7007::/48 maxlen: 48
2a0f:9400:7008::/48 maxlen: 48
2a0f:9400:700a::/48 maxlen: 48
2a0f:9400:700b::/48 maxlen: 48
2a0f:9400:700c::/48 maxlen: 48
2a0f:9400:700d::/48 maxlen: 48
2a0f:9400:700e::/48 maxlen: 48
2a0f:9400:700f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:b7:c4:5a:f0:69:1f:4a:88:09:c1:76:9c:43:b3:9b:2b:9d:e7:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Aug 15 01:55:25 2023 GMT
Not After : Aug 13 02:00:25 2024 GMT
Subject: CN=CAA19FE5008BA206F25069B4B23BA1C655359326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:f9:4d:97:24:7e:b9:6f:62:69:8f:90:ee:b3:
30:ee:88:c4:2e:c6:f0:25:17:5c:fe:f7:5d:f0:f7:
df:cc:fa:59:a4:08:fe:07:f5:3d:75:36:fd:58:17:
ed:7e:c9:8e:63:15:9a:e6:1b:3b:57:43:8f:a8:0f:
6e:71:9c:dd:33:da:1f:6b:ef:87:02:21:f9:75:fd:
41:f3:02:84:1d:e4:aa:c9:63:76:f1:0a:0b:97:7c:
f9:c9:e6:02:ac:ae:17:75:69:e6:83:3d:fb:d2:b6:
02:bf:05:b8:72:a8:4b:cb:fe:33:4d:79:62:96:6b:
f9:b3:7a:4a:eb:7e:57:94:67:f9:59:c9:62:47:fa:
1d:90:08:be:6a:35:ff:39:36:dd:a0:42:3c:54:a1:
6f:65:43:09:db:3c:0f:26:c9:7a:ee:7a:f3:20:16:
b9:b6:c2:a6:78:6f:79:02:8c:72:a1:bc:39:d5:c5:
e8:38:d4:94:87:f0:4c:07:77:f6:cb:a1:c7:d8:d6:
90:cb:03:39:3d:55:e4:68:47:0d:a0:a9:53:49:0f:
5c:eb:ee:f3:e9:93:21:3d:7a:0f:66:db:b7:16:9f:
50:e3:4e:a9:c3:d6:62:27:b0:5f:58:de:35:b1:83:
fb:cc:8e:de:65:5d:c7:be:ce:68:82:70:de:0a:9c:
72:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A1:9F:E5:00:8B:A2:06:F2:50:69:B4:B2:3B:A1:C6:55:35:93:26
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS211144.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:7000::-2a0f:9400:7008:ffff:ffff:ffff:ffff:ffff
2a0f:9400:700a::-2a0f:9400:700f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6a:c8:01:8b:4c:e4:a5:c5:16:c9:90:3c:e6:d0:cd:30:59:37:
2f:fa:18:88:f9:4b:b6:0b:31:c7:63:65:68:44:8c:eb:11:e3:
f7:00:69:4d:93:0b:d2:06:59:4c:32:09:62:26:fe:46:f9:d8:
7d:11:19:8c:de:f1:5a:71:67:db:3e:f6:0c:f8:46:1b:ce:94:
66:10:8f:6a:0f:87:d9:c1:16:e3:50:17:15:a8:72:69:1b:98:
48:9a:7a:64:bb:08:d8:4a:35:8d:2b:92:5b:8a:7d:e9:4f:a6:
bc:39:bd:8b:65:96:87:a7:40:d6:e2:f2:28:4b:d4:bb:69:12:
3d:da:92:38:95:68:46:b6:d0:a7:f7:3f:d9:25:d0:89:48:c9:
42:7c:51:8f:70:cb:52:85:fe:7e:4e:57:48:08:a5:ad:f8:40:
0d:82:84:90:b8:4a:23:6a:0f:4c:45:82:97:4e:e7:c9:f2:87:
c0:74:54:3d:9a:41:69:5a:fb:88:f7:8a:6f:8a:eb:40:ff:ff:
8e:82:f9:24:e3:f5:1c:58:2a:43:06:f6:0e:fe:ad:13:9b:7d:
52:70:b8:bc:d1:5b:89:98:c9:c7:2c:5e:e9:12:9b:c6:25:07:
65:94:6d:d7:35:36:61:15:5a:6f:82:91:82:78:33:6e:a4:7e:
5d:dc:df:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:07:18 2024 by rpki-client on console-fra.rpki-client.org