Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS213092.roa
File: AS213092.roa (raw, json)
Hash identifier: glR20tZDVDhuTzFYWIY3iWCbH876WfYku9vUYCdVxzI=
Subject key identifier: FD:70:1F:8A:90:5B:60:76:F6:F2:00:C2:4A:EC:4E:6E:A0:7D:63:E4
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 17120CF9F47707D19F2CF61E68DA45E412D63B79
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS213092.roa
Signing time: Mon 18 Sep 2023 15:58:36 +0000
ROA not before: Mon 18 Sep 2023 15:53:36 +0000
ROA not after: Mon 16 Sep 2024 15:58:36 +0000
asID: 213092
IP address blocks: 2a0f:9400:7370::/44 maxlen: 48
2a0f:9400:737a::/48 maxlen: 48
2a0f:9400:8023::/48 maxlen: 48
2a0f:9400:8026::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:12:0c:f9:f4:77:07:d1:9f:2c:f6:1e:68:da:45:e4:12:d6:3b:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Sep 18 15:53:36 2023 GMT
Not After : Sep 16 15:58:36 2024 GMT
Subject: CN=FD701F8A905B6076F6F200C24AEC4E6EA07D63E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:54:0e:eb:b8:cb:6c:90:07:78:a1:a3:d9:cb:
68:48:fe:1d:62:f7:83:d5:cf:57:05:ff:ac:47:80:
d3:ee:f1:70:1c:a8:33:3a:95:1f:13:f7:42:36:69:
41:d7:fb:b1:19:42:51:62:74:3d:9e:71:9b:37:09:
56:95:2d:0f:4a:b6:ae:5e:18:3e:3d:14:2b:f4:52:
72:40:0a:b7:03:97:24:74:5f:16:ec:20:24:ca:70:
a5:f2:fb:31:30:be:4a:54:f4:cf:d9:2e:27:c5:b6:
57:f2:e6:87:c7:a2:bd:86:05:24:5a:69:5f:98:46:
82:36:a1:ae:7a:99:7f:70:0d:be:ce:9e:26:8e:4b:
63:1c:9a:40:6d:50:df:86:c2:bf:81:c9:bd:86:9f:
8e:68:db:6a:42:b4:dc:f7:ba:10:dd:96:eb:0f:69:
8a:12:a6:5c:17:b9:49:98:83:66:67:3e:96:32:97:
64:e7:c3:fd:ac:f3:c1:13:16:18:e0:c6:a7:50:3a:
8f:1d:54:22:8f:c1:cc:87:06:c7:31:74:07:a6:19:
e1:bb:90:b6:2a:18:4e:63:3a:92:0c:4e:65:3b:9e:
75:74:21:0c:20:b7:fa:ed:c8:04:e0:86:3a:7c:da:
1c:93:ae:6c:a0:44:1a:8d:ac:c9:28:91:98:4a:0f:
17:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:70:1F:8A:90:5B:60:76:F6:F2:00:C2:4A:EC:4E:6E:A0:7D:63:E4
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS213092.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:7370::/44
2a0f:9400:8023::/48
2a0f:9400:8026::/48
Signature Algorithm: sha256WithRSAEncryption
03:59:90:96:6d:9c:92:e0:5f:e4:a6:96:f9:85:4b:69:4c:cf:
3a:9c:76:d5:16:2a:d4:a0:8e:35:0d:64:ad:85:7e:7a:2c:11:
e8:88:cb:32:57:f9:c6:20:6c:b2:44:d2:90:1a:49:e2:ce:e9:
3e:da:78:50:6e:ad:a9:78:7e:c3:ff:8d:2e:86:3e:8a:5c:77:
da:72:a0:5d:0a:5c:60:c2:8f:98:b5:49:01:a7:da:37:ac:af:
69:eb:c5:87:37:0d:a5:82:0d:14:c7:ca:bf:ea:7a:f1:95:3a:
9d:22:4e:a6:57:5c:d4:1c:37:84:e6:2b:6f:99:09:fe:9a:ca:
93:7d:9c:21:b8:e9:b7:ea:62:c6:02:89:cf:00:6f:5e:23:59:
38:a4:2a:64:c9:77:b4:d5:ff:ee:98:6b:d3:f1:ad:8e:cb:6f:
0d:51:ef:71:6e:e9:43:2c:9f:3e:29:3b:92:2d:2f:b4:67:24:
d9:16:b0:8c:11:cd:ad:28:24:a1:5f:d0:4c:4d:92:ae:2d:35:
0c:de:e0:44:11:9a:b1:29:9b:94:83:76:0d:ab:01:6a:7a:cb:
cb:0e:eb:34:a1:bf:bc:a0:3d:59:26:45:27:25:3c:d1:f9:29:
ce:9c:20:71:60:88:50:56:b7:14:ac:5a:43:78:35:b4:78:de:
fa:18:8a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 03:48:10 2024 by rpki-client on console-ams.rpki-client.org