Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS215212.roa
File: AS215212.roa (raw, json)
Hash identifier: 2UDqg6iSGqvPTBsnFuGDqyvc+Valmuid7Q6Nzk/3di8=
Subject key identifier: 73:0B:16:9E:D9:42:60:8C:D8:EA:35:1B:B5:E2:4E:E8:80:52:FA:62
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 54654A8DB0AE1E08D9683DEDE7D6CF990103A07C
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS215212.roa
Signing time: Mon 15 Apr 2024 13:42:04 +0000
ROA not before: Mon 15 Apr 2024 13:37:04 +0000
ROA not after: Mon 14 Apr 2025 13:42:04 +0000
asID: 215212
IP address blocks: 2a0f:9400:6000::/48 maxlen: 48
2a0f:9400:6010::/48 maxlen: 48
2a0f:9400:6011::/48 maxlen: 48
2a0f:9400:6012::/48 maxlen: 48
2a0f:9400:6053::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:65:4a:8d:b0:ae:1e:08:d9:68:3d:ed:e7:d6:cf:99:01:03:a0:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Apr 15 13:37:04 2024 GMT
Not After : Apr 14 13:42:04 2025 GMT
Subject: CN=730B169ED942608CD8EA351BB5E24EE88052FA62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:10:c5:d0:e5:42:70:b2:a0:1a:03:c0:dc:bb:
4b:3f:7b:b8:22:ad:c5:0c:98:0f:85:3e:4e:b9:d1:
bb:67:2b:78:e8:4a:83:f1:64:a6:fc:ed:f2:29:7d:
c6:bd:c9:16:9d:69:df:91:56:cc:28:c3:7b:fe:38:
04:dd:64:bc:0f:aa:e9:80:6b:b7:58:5b:df:f9:65:
a7:fc:30:bf:dd:87:33:6c:80:a8:ba:a2:51:b5:e9:
b2:23:72:cd:f8:44:40:5a:47:98:58:40:df:83:57:
6e:0f:2b:39:16:41:fb:4a:46:9f:53:47:79:77:fe:
e5:6e:f8:e8:f5:3e:f0:6c:bd:27:23:08:ae:8c:58:
e3:8b:98:4e:e6:6e:72:10:07:4c:7d:48:88:b0:09:
aa:06:7f:c2:31:af:e6:56:11:8c:09:d4:67:95:34:
05:e4:43:4b:32:a1:85:a1:74:d6:cb:e1:89:38:65:
dc:df:2a:93:aa:e3:4f:e7:da:71:39:3b:93:fd:c5:
29:86:28:f4:3d:e8:5a:69:3a:29:d4:97:c6:92:68:
09:91:e1:54:78:40:f7:db:2e:27:e3:26:a6:45:55:
9f:e2:38:0c:fc:f4:62:fd:80:b6:45:d1:0c:e0:89:
a0:9b:1b:c0:4b:05:71:4f:a1:33:c9:e0:ef:bb:c8:
f4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:0B:16:9E:D9:42:60:8C:D8:EA:35:1B:B5:E2:4E:E8:80:52:FA:62
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS215212.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6000::/48
2a0f:9400:6010::-2a0f:9400:6012:ffff:ffff:ffff:ffff:ffff
2a0f:9400:6053::/48
Signature Algorithm: sha256WithRSAEncryption
11:dc:dd:0d:9a:96:1d:2b:03:3c:88:5b:34:d1:e2:f3:75:05:
f9:85:2c:ca:db:a2:78:30:31:73:0b:0c:b6:32:60:0c:82:84:
c4:9a:f1:8b:fa:12:ba:8f:99:7f:51:99:74:aa:51:a1:f8:71:
e0:e9:33:ee:ac:62:57:35:9c:8f:8a:6e:04:a3:5a:96:f8:f6:
af:a0:26:39:1b:78:f5:ed:ab:57:8d:87:06:8b:8a:74:f1:5d:
31:27:d8:bf:3d:93:67:d2:e1:9c:cc:a1:8e:5d:34:7a:a5:b8:
3e:4c:58:fd:66:3a:96:72:17:bb:cc:5d:9f:82:46:c4:1a:5f:
17:ae:8b:0f:9d:27:ce:1d:73:8f:06:bc:b1:a2:1b:ba:1a:27:
fb:96:ec:c6:83:27:4d:1c:d5:e6:07:7a:6c:5f:b4:58:25:03:
7b:b7:f7:9f:e4:18:db:c0:bf:05:f0:47:6c:fe:b8:58:ad:3a:
3f:a1:bb:59:18:34:f3:37:31:78:55:08:64:e7:5c:64:b5:0b:
27:f5:a5:75:c8:7b:28:5b:2f:c1:97:48:8b:60:16:57:f0:a0:
94:55:28:5d:39:72:c5:f1:0b:77:3a:0c:40:fc:d3:7c:9e:37:
fc:ca:98:41:ae:d6:b1:ec:67:94:b6:54:27:f2:35:0e:50:15:
65:24:88:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:07:18 2024 by rpki-client on console-fra.rpki-client.org