Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS215212.roa
File: AS215212.roa (raw, json)
Hash identifier: 4FMCjZDTzfqM3cSvcNfHlAFyvXtzFZQBwpsQztwPaIM=
Subject key identifier: 70:C4:C4:B0:7D:05:6A:98:D9:5E:D5:FA:0F:6D:BD:11:8E:99:F5:D4
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 1003F311FB90AE8A5DDA1F1214208BCA17BD7EA2
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS215212.roa
Signing time: Sun 16 Jun 2024 12:46:04 +0000
ROA not before: Sun 16 Jun 2024 12:41:04 +0000
ROA not after: Sun 15 Jun 2025 12:46:04 +0000
asID: 215212
IP address blocks: 2a0f:9400:6000::/48 maxlen: 48
2a0f:9400:600a::/48 maxlen: 48
2a0f:9400:6010::/48 maxlen: 48
2a0f:9400:6011::/48 maxlen: 48
2a0f:9400:6012::/48 maxlen: 48
2a0f:9400:6013::/48 maxlen: 48
2a0f:9400:6014::/48 maxlen: 48
2a0f:9400:6015::/48 maxlen: 48
2a0f:9400:6016::/48 maxlen: 48
2a0f:9400:6017::/48 maxlen: 48
2a0f:9400:6018::/48 maxlen: 48
2a0f:9400:6019::/48 maxlen: 48
2a0f:9400:6020::/48 maxlen: 48
2a0f:9400:6053::/48 maxlen: 48
2a0f:9400:60fe::/48 maxlen: 48
2a0f:9400:60ff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:03:f3:11:fb:90:ae:8a:5d:da:1f:12:14:20:8b:ca:17:bd:7e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Jun 16 12:41:04 2024 GMT
Not After : Jun 15 12:46:04 2025 GMT
Subject: CN=70C4C4B07D056A98D95ED5FA0F6DBD118E99F5D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9e:51:b2:ad:03:c4:aa:25:67:02:d4:b0:8e:
a8:78:78:06:86:97:70:72:16:a3:1a:09:60:76:5e:
32:5b:7d:36:14:8f:76:2c:56:98:1a:2f:75:30:ee:
4a:bb:1f:8c:f4:91:28:1e:9b:d3:b0:fb:d1:61:e0:
d3:95:6e:6d:c5:e0:f1:db:16:ac:49:27:83:e0:d3:
07:69:2e:e4:49:2a:b2:0a:d2:65:e7:da:fb:fe:05:
ce:19:b2:24:0e:83:2e:93:2c:b5:f3:7e:de:a8:f8:
a4:33:bd:c9:8c:dd:41:94:d0:60:a9:cb:eb:58:0b:
10:e2:b0:a1:c3:63:fa:9e:5c:fb:d4:d3:b9:4f:b3:
1d:90:65:40:4a:27:46:ba:6c:e2:0e:48:76:1f:6d:
bc:6f:33:e0:15:30:71:95:ff:38:d4:4c:92:d7:52:
cd:6e:a8:77:33:5d:cf:0a:16:77:b9:82:cd:69:95:
34:95:d4:46:22:d6:cd:3f:2d:e5:ea:89:6c:64:3f:
71:4c:4d:c7:82:37:fa:f7:6d:8d:4c:c7:61:dd:dd:
b0:cf:40:8c:df:65:41:d7:5f:00:9e:c2:f0:ce:e5:
3c:a6:a1:06:ae:aa:70:44:13:8f:93:cb:73:bd:1c:
35:92:31:e6:e2:37:08:e7:0b:22:43:db:c5:b9:13:
9f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C4:C4:B0:7D:05:6A:98:D9:5E:D5:FA:0F:6D:BD:11:8E:99:F5:D4
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS215212.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6000::/48
2a0f:9400:600a::/48
2a0f:9400:6010::-2a0f:9400:6019:ffff:ffff:ffff:ffff:ffff
2a0f:9400:6020::/48
2a0f:9400:6053::/48
2a0f:9400:60fe::/47
Signature Algorithm: sha256WithRSAEncryption
ae:f1:40:4a:2c:16:7a:af:54:ca:e7:66:52:44:5b:bf:8c:c8:
43:42:27:dd:3b:86:ae:50:c8:19:d2:47:4c:f1:04:0c:16:6d:
ab:e4:f1:21:21:38:28:40:27:4f:c2:57:f5:95:eb:35:96:fc:
fd:27:ae:17:49:1c:25:0d:d5:35:ba:2f:48:ba:fc:fa:aa:f2:
67:69:05:6a:08:64:e2:ed:79:5d:3f:48:ce:4d:5b:a2:42:ae:
b6:d3:51:e3:9c:ff:78:73:b8:9e:84:cd:35:4c:a3:ba:a2:1d:
d8:44:be:d7:5f:52:eb:38:13:83:4b:76:a0:10:bc:db:60:7f:
b4:36:2b:0d:df:12:2d:d9:1a:ea:81:32:6b:a5:56:c5:47:c9:
c0:13:a3:2a:d9:0f:92:73:88:4c:43:80:b8:fc:dc:3f:8f:cb:
6e:1b:84:47:9b:99:04:16:4a:60:9c:03:03:38:02:57:50:97:
d1:dd:c2:84:0c:e9:bf:15:29:bc:a5:d5:8a:4d:ed:f9:a2:47:
19:a6:d3:a8:33:1d:2a:a4:54:2a:fc:be:40:9e:f5:3a:dc:db:
b1:fa:81:58:9c:02:88:bd:bb:ae:82:14:69:60:fb:01:26:70:
91:d9:3b:8c:23:2b:df:3d:bb:8f:1e:fa:b9:8e:fc:aa:7a:38:
e7:ee:cc:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 22:34:43 2024 by rpki-client on console-fra.rpki-client.org