Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS41732.roa
File: AS41732.roa (raw, json)
Hash identifier: L9BCyD2nL00NMiOnDFq5v7D+7i0dkStrqqYV2ir5nUQ=
Subject key identifier: A9:EE:4C:DC:4A:F3:8D:7A:52:BB:97:52:68:82:C1:07:85:6A:AA:53
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 658F1C9C23BB0ACD1D59A49346B058317EE8A2D9
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS41732.roa
Signing time: Tue 15 Aug 2023 02:00:25 +0000
ROA not before: Tue 15 Aug 2023 01:55:25 +0000
ROA not after: Tue 13 Aug 2024 02:00:25 +0000
asID: 41732
IP address blocks: 2a0f:9400:7310::/48 maxlen: 48
2a0f:9400:7311::/48 maxlen: 48
2a0f:9400:7312::/48 maxlen: 48
2a0f:9400:7313::/48 maxlen: 48
2a0f:9400:7314::/48 maxlen: 48
2a0f:9400:7316::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:8f:1c:9c:23:bb:0a:cd:1d:59:a4:93:46:b0:58:31:7e:e8:a2:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Aug 15 01:55:25 2023 GMT
Not After : Aug 13 02:00:25 2024 GMT
Subject: CN=A9EE4CDC4AF38D7A52BB97526882C107856AAA53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:ea:43:b5:3d:7a:c7:54:fd:b5:78:e6:1a:
db:a3:36:6d:30:ac:84:8f:17:64:7e:1f:f1:c0:1e:
c1:48:7b:d2:ec:bf:da:7c:b4:74:b6:6e:98:61:76:
5a:82:d0:fd:96:37:8d:ea:ba:5f:d8:5f:1a:8e:f7:
19:59:24:00:0f:09:1b:9f:43:c2:1c:9b:82:90:d5:
6b:85:2a:3a:1b:ab:70:6e:e8:51:bf:4b:26:32:42:
fc:b5:cc:51:0a:0d:11:a2:68:ce:29:57:7e:91:ef:
2e:81:2a:3a:54:25:ad:31:01:ee:56:17:52:0f:8a:
fc:67:49:63:95:32:0e:77:ad:97:70:2b:f7:99:7a:
40:9c:c4:0b:e6:00:79:b9:a0:95:65:20:82:c0:36:
37:6f:73:65:dd:e4:e4:b3:ac:f3:a7:06:6b:6c:ac:
fb:62:2e:28:97:70:b2:96:cc:58:32:08:f8:51:3e:
fe:74:4f:8b:4f:41:8a:cf:51:4b:ee:cd:6d:16:5e:
c6:31:ad:37:65:eb:63:c1:9e:0a:2f:b4:bd:a0:c7:
5b:13:ea:31:36:ba:11:46:6d:c0:0c:8c:41:de:ce:
7c:b4:45:54:e2:ee:27:92:ce:fa:e8:17:e8:00:86:
0a:36:6b:d7:b4:13:9c:68:6f:6f:c3:2a:0a:1d:16:
99:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:EE:4C:DC:4A:F3:8D:7A:52:BB:97:52:68:82:C1:07:85:6A:AA:53
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS41732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:7310::-2a0f:9400:7314:ffff:ffff:ffff:ffff:ffff
2a0f:9400:7316::/48
Signature Algorithm: sha256WithRSAEncryption
be:a3:ef:4f:00:4e:4d:0d:fb:26:ce:53:bc:e5:23:6f:6e:d2:
20:33:39:f0:d5:78:52:88:a7:17:a2:d5:87:b7:0a:a6:ab:a4:
11:91:97:6b:43:d7:ef:6c:f3:84:b5:ef:e2:65:1c:a5:ab:02:
92:a9:87:75:51:36:f7:d3:ce:36:92:44:5a:eb:24:30:72:80:
bf:4e:3d:d9:4a:4e:81:c3:6f:6c:1c:9f:ac:65:ae:d7:eb:08:
cb:7b:3e:e7:60:e1:40:43:e3:dd:f8:e0:58:0e:36:34:74:5f:
7f:f2:77:04:e8:d2:72:70:98:6f:99:c0:59:d1:dd:bc:d2:fe:
1e:c7:18:4d:91:79:85:a6:3f:0f:a7:27:06:7f:c0:69:7e:87:
58:db:af:f2:c3:c9:93:98:e7:a9:19:af:21:85:2a:04:72:c3:
85:2d:a4:0f:77:31:65:c5:46:bf:32:52:4a:70:0c:4a:6a:b7:
36:ed:23:8d:2e:b6:83:7f:7b:6e:9b:45:5a:37:ec:75:58:8e:
5f:fe:7d:8e:da:9f:f1:5d:b9:2d:17:2a:e9:c6:7a:15:24:2d:
49:75:11:2d:9b:e1:a5:85:3c:4c:7d:b4:ce:11:2b:a2:b2:0c:
3d:b4:44:c5:ff:8d:28:4c:f1:fa:5e:af:d5:b8:e3:43:8d:21:
f6:31:9b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:05:09 2024 by rpki-client on console-ams.rpki-client.org