Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS215212.roa
File: AS215212.roa (raw, json)
Hash identifier: Sl6OOxuIhmyoh8Ggb+9lm5TcQY7a/I+pOrkrCcfLzJM=
Subject key identifier: DA:40:E2:25:AC:87:F4:02:5C:38:5F:E2:B0:1E:18:16:CB:DF:24:F4
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 6078528EC89F997F45412F20F53EFFE509FADD14
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS215212.roa
Signing time: Sun 18 May 2025 13:02:44 +0000
ROA not before: Sun 18 May 2025 12:57:44 +0000
ROA not after: Sun 17 May 2026 13:02:44 +0000
asID: 215212
IP address blocks: 2a0f:9400:6000::/48 maxlen: 48
2a0f:9400:600a::/48 maxlen: 48
2a0f:9400:6010::/48 maxlen: 48
2a0f:9400:6011::/48 maxlen: 48
2a0f:9400:6012::/48 maxlen: 48
2a0f:9400:6013::/48 maxlen: 48
2a0f:9400:6014::/48 maxlen: 48
2a0f:9400:6015::/48 maxlen: 48
2a0f:9400:6016::/48 maxlen: 48
2a0f:9400:6017::/48 maxlen: 48
2a0f:9400:6018::/48 maxlen: 48
2a0f:9400:6019::/48 maxlen: 48
2a0f:9400:6020::/48 maxlen: 48
2a0f:9400:6053::/48 maxlen: 48
2a0f:9400:60fe::/48 maxlen: 48
2a0f:9400:60ff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:78:52:8e:c8:9f:99:7f:45:41:2f:20:f5:3e:ff:e5:09:fa:dd:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: May 18 12:57:44 2025 GMT
Not After : May 17 13:02:44 2026 GMT
Subject: CN=DA40E225AC87F4025C385FE2B01E1816CBDF24F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fe:ad:cc:9e:4e:a9:d4:25:26:bd:b5:0e:7f:
c4:0b:f0:66:88:4e:ff:7a:a3:8c:80:80:6c:d3:9b:
17:d1:16:20:e1:93:c9:b7:0a:7f:4b:aa:05:bd:e0:
bc:da:c3:95:5e:54:61:e0:1c:f5:b2:11:a6:58:e6:
09:e3:35:70:d8:4b:5f:b5:78:56:9c:47:de:3d:ce:
45:fe:53:25:3e:80:84:c4:9c:48:e3:84:58:ce:b5:
9d:0c:70:0a:da:b8:ff:69:dc:ee:1c:a3:a1:cd:95:
54:c9:a7:cc:fa:fa:44:84:ec:f2:f9:e1:43:52:88:
6f:8d:4d:45:51:39:45:b7:0e:3b:f0:45:37:cd:da:
0e:28:0a:70:4e:6f:ff:7e:d1:bc:b4:27:e3:3c:6a:
b2:e0:03:54:58:56:29:0d:2d:01:01:9c:59:da:c0:
97:8f:d6:86:50:6b:0a:89:3a:85:13:d4:ec:bb:d7:
d4:8d:13:a4:fa:b9:8b:2d:31:76:fb:06:db:61:87:
49:d3:37:d1:44:f1:ad:77:dd:50:16:48:71:56:33:
22:b3:cd:22:fc:d6:7a:63:29:06:63:20:e0:dc:2b:
11:93:ca:ee:50:ec:e6:b0:2d:b1:c0:64:cd:fe:7c:
e0:56:d7:c6:d1:6b:f7:ac:b3:76:d4:4c:2d:2d:19:
fa:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:40:E2:25:AC:87:F4:02:5C:38:5F:E2:B0:1E:18:16:CB:DF:24:F4
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS215212.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6000::/48
2a0f:9400:600a::/48
2a0f:9400:6010::-2a0f:9400:6019:ffff:ffff:ffff:ffff:ffff
2a0f:9400:6020::/48
2a0f:9400:6053::/48
2a0f:9400:60fe::/47
Signature Algorithm: sha256WithRSAEncryption
60:b0:12:b9:b4:e8:2c:6f:0a:ca:03:3a:1d:82:70:42:5a:75:
1b:66:2b:51:3c:0b:c9:da:04:bc:1f:3c:2c:e1:21:51:44:2a:
dc:58:2f:f7:fd:7a:fe:4e:63:41:5c:23:eb:f3:cf:f3:80:c2:
ea:82:d4:1c:a0:27:c2:05:f3:5b:12:e2:f8:d5:37:e2:be:ac:
50:1a:12:91:6c:de:a5:3e:78:58:df:77:db:03:dd:6e:7b:14:
24:e3:aa:2f:2a:5a:cd:d9:0d:4d:81:f8:7d:a2:fa:a7:cc:fc:
c3:0e:a7:6c:1e:e3:a4:cc:73:6c:a5:3b:79:d1:0d:7d:b8:39:
3a:57:ce:36:f2:7c:7e:3c:f2:c4:39:c3:3d:ab:55:39:04:b9:
6e:c8:9a:b6:0b:16:fd:7d:9c:82:01:99:7d:20:c9:46:ea:5b:
12:73:a2:29:45:f2:c7:63:51:a6:87:5f:e0:45:8a:1f:16:77:
ff:56:72:98:16:4e:3a:3d:bc:0b:6c:32:74:e5:93:a5:d7:d6:
4d:46:22:be:41:e8:08:18:7e:c6:04:c0:2a:ab:5c:8a:f7:4b:
ef:e9:37:34:e1:84:44:c4:85:62:52:e3:88:b1:b0:a9:13:35:
c9:c6:54:7e:9f:b7:5a:31:36:c1:4e:d4:cc:9c:d6:07:fc:aa:
47:2d:1e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:09:51 2025 by rpki-client