Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS213001.roa
File: AS213001.roa (raw, json)
Hash identifier: //Q14uYlfJGB4NC2VaXXjO837upOvYMKn3iSy21kZTY=
Subject key identifier: 86:C6:9C:65:CD:78:F9:0A:0D:20:03:67:40:00:C2:C4:C6:60:05:94
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 0B91ECBFAAB81E9AEE1F0DAEDE58368E95B0B5B6
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS213001.roa
Signing time: Tue 19 May 2026 04:03:23 +0000
ROA not before: Tue 19 May 2026 03:58:23 +0000
ROA not after: Tue 18 May 2027 04:03:23 +0000
asID: 213001
IP address blocks: 2a0f:9400:801e::/48 maxlen: 48
2a0f:9400:801f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:91:ec:bf:aa:b8:1e:9a:ee:1f:0d:ae:de:58:36:8e:95:b0:b5:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: May 19 03:58:23 2026 GMT
Not After : May 18 04:03:23 2027 GMT
Subject: CN=86C69C65CD78F90A0D2003674000C2C4C6600594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:87:af:ec:74:77:0e:3a:54:01:6c:79:fb:a1:
49:e6:80:15:08:36:e6:b9:3c:4a:92:94:bb:f3:46:
18:16:45:e1:9b:e0:1b:18:f3:bd:c2:08:15:e7:0b:
0c:60:79:79:28:f7:b9:2e:cf:29:0a:09:c3:16:95:
8f:9a:95:34:9a:68:dc:a1:f7:d5:11:9d:fe:69:c5:
40:3f:de:c9:d1:25:14:00:dc:84:2e:2f:28:5d:98:
84:bc:9d:ed:eb:21:14:5c:ef:2e:73:48:ca:8d:22:
c1:e8:36:f8:dc:1c:3f:34:de:6a:1c:e9:9a:ce:6a:
59:cc:e9:2f:b4:f6:28:38:21:90:4c:be:e9:5c:50:
62:18:ab:0f:a7:bc:2e:10:df:eb:6e:42:37:9c:da:
1d:9f:13:1e:30:50:12:e4:a7:b8:7d:5f:36:f4:cc:
e4:ad:55:d4:4d:bf:82:ab:d1:13:b9:89:e6:38:5c:
f5:58:2d:72:97:36:35:a7:b5:53:69:b7:ec:4e:09:
85:17:f0:7a:fd:fd:4f:aa:c4:0c:28:39:28:b8:45:
0c:6c:d8:cb:2a:8b:01:24:26:12:2f:dc:09:66:3b:
bd:8c:06:e3:a7:81:7c:db:1a:47:f3:3d:96:ee:9a:
50:a8:46:65:74:cd:17:68:17:b3:6e:69:93:74:05:
04:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C6:9C:65:CD:78:F9:0A:0D:20:03:67:40:00:C2:C4:C6:60:05:94
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS213001.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:801e::/47
Signature Algorithm: sha256WithRSAEncryption
3c:12:34:b0:96:34:79:bf:fe:8f:1f:95:e0:4a:67:7d:fe:08:
44:8d:92:17:d1:d1:be:b6:a8:f3:42:c5:8c:09:be:71:7b:f8:
28:cd:68:4a:b9:62:54:1c:b2:d8:de:24:1c:ce:1e:0b:cf:00:
f6:62:77:d6:92:22:20:8f:f4:83:4a:9b:e5:41:9b:7d:b2:31:
9d:25:1d:4d:b5:e7:01:11:5f:77:2f:f7:63:b6:4e:b3:dc:1e:
32:fe:72:2c:a2:e8:db:81:0b:73:2b:0d:82:08:db:70:97:a0:
ab:12:b5:fa:ea:d3:ff:9c:a0:e9:70:c1:5d:48:73:1d:c0:92:
25:8e:cb:85:2a:83:4c:c7:1a:a7:16:54:41:c5:a1:d9:ca:98:
05:31:c8:8a:f7:2d:ac:e2:7e:15:0a:97:7f:a5:4f:e8:62:08:
47:c0:66:0e:39:9e:c0:3e:28:0b:6c:c1:8c:dd:86:e7:13:d6:
c9:39:11:9b:15:7f:88:38:86:c2:fd:72:11:12:c2:f0:85:12:
e6:26:1e:6e:05:c9:b3:d2:84:44:b7:c3:b2:26:a0:aa:e4:ee:
58:0a:11:c9:7a:51:7d:7c:5b:8a:ec:9b:ee:1a:88:bb:c6:76:
fc:be:c7:8b:75:e3:02:03:c0:01:60:7e:7f:e2:4f:37:4a:d9:
b1:2d:3d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 08:04:23 2026 by rpki-client