Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS44908.roa
File: AS44908.roa (raw, json)
Hash identifier: xdjKiNHHYoGDG9dEBrs/QYRMhuAYvJ4c0OSZzAMdfY8=
Subject key identifier: D3:AE:6F:6E:AC:68:FD:4D:53:3F:DA:0D:A1:B1:C9:F3:8D:69:4C:C3
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 6E2806E01EFC684816327B5730D2A4778F18C299
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS44908.roa
Signing time: Tue 02 Sep 2025 14:47:38 +0000
ROA not before: Tue 02 Sep 2025 14:42:38 +0000
ROA not after: Tue 01 Sep 2026 14:47:38 +0000
asID: 44908
IP address blocks: 2a0f:9400:6908::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 19:19:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:28:06:e0:1e:fc:68:48:16:32:7b:57:30:d2:a4:77:8f:18:c2:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Sep 2 14:42:38 2025 GMT
Not After : Sep 1 14:47:38 2026 GMT
Subject: CN=D3AE6F6EAC68FD4D533FDA0DA1B1C9F38D694CC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4e:1c:16:6c:ce:ed:18:c5:65:40:dd:21:63:
64:2c:d2:84:bd:3a:09:89:05:13:0d:ac:d0:4c:c5:
af:9b:1d:26:d0:e3:e6:20:7c:49:0f:e3:ac:40:47:
79:69:c7:71:b8:3c:90:8a:db:92:85:55:68:4e:de:
db:f9:09:f0:52:44:8d:61:0a:c9:de:84:0d:5d:f2:
c9:ea:f7:97:bf:2e:3c:8e:93:69:13:8b:5f:d0:f6:
f1:02:d9:ed:78:1d:94:42:c3:30:78:31:1a:9f:40:
3e:1c:04:4c:9a:b6:49:74:af:fc:a9:66:fc:5c:fd:
ba:8e:db:c9:7b:39:93:48:2a:0b:fa:a6:7e:c2:3a:
ec:c6:11:ae:15:bd:45:a1:58:32:07:07:3f:47:48:
0c:64:e8:6d:9d:9d:03:60:48:b8:8b:eb:0b:85:2c:
50:bf:06:67:5e:fd:75:d0:ce:7e:05:af:1f:9b:3d:
6c:8d:18:96:d7:84:e1:a3:6b:63:ba:f8:7c:d5:5b:
46:e6:e2:2f:c9:36:6c:8b:fc:ab:b2:5d:30:f7:dc:
c1:8b:dd:40:7a:50:70:4c:84:56:8e:44:d3:e5:14:
83:70:d4:c6:83:e6:ff:3e:3a:1c:c1:9c:19:44:4b:
4f:f1:50:34:b8:db:dd:be:71:77:e8:bd:99:55:32:
87:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:AE:6F:6E:AC:68:FD:4D:53:3F:DA:0D:A1:B1:C9:F3:8D:69:4C:C3
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS44908.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6908::/48
Signature Algorithm: sha256WithRSAEncryption
00:a6:5d:56:40:60:53:cc:7f:34:99:f8:86:97:43:1a:1c:7a:
bd:06:09:fc:dc:0c:54:a3:d2:6d:f3:dc:4c:b0:5a:13:23:51:
ef:9a:4d:7f:67:af:37:35:7a:31:aa:cb:20:83:ee:2c:82:35:
08:f7:13:f5:7c:87:68:fc:13:f5:2f:d9:e5:39:53:44:73:9e:
84:ab:58:64:f9:0d:98:08:e1:ab:a0:b0:9e:a3:3c:7d:f3:0a:
bd:ef:37:08:13:30:92:63:6d:ae:3b:45:7f:8c:2c:25:86:0a:
08:1a:b5:b5:dc:15:e1:69:2d:ba:a4:c0:45:4f:f0:71:af:cd:
8a:28:47:3f:c6:27:90:70:1f:ee:e3:d2:c0:a9:c3:b6:90:cd:
74:13:38:53:80:e4:04:ba:a1:47:85:d1:da:db:54:f0:2d:b3:
5b:10:cc:20:00:1d:64:53:c9:a4:6e:09:39:19:3f:e8:c9:a4:
b2:14:71:ba:76:7c:ed:22:71:e2:42:72:21:4e:f5:66:6d:29:
45:c0:73:98:24:ec:28:34:0c:39:6e:d3:e9:fc:0d:d7:d5:14:
41:c6:9e:29:5c:80:fd:84:b6:f2:51:89:4e:10:4e:0f:5e:5b:
ee:65:e5:be:5b:fd:7d:1a:dc:02:04:2c:8d:85:50:cb:ed:9e:
9e:4c:c8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 06:18:20 2025 by rpki-client