Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53356.roa
File: AS53356.roa (raw, json)
Hash identifier: PYucHK3yYfq62jd56HT8lvIC1/AL5fVV2Z85OGRY/7U=
Subject key identifier: CF:B2:9E:90:16:2A:A5:99:9D:2E:5B:84:E9:47:BC:2D:25:DD:82:D1
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 3F66F75AC9EDD62DC12FE9A90F833D1FE9BDE312
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53356.roa
Signing time: Sat 27 Apr 2024 19:20:50 +0000
ROA not before: Sat 27 Apr 2024 19:15:50 +0000
ROA not after: Sat 26 Apr 2025 19:20:50 +0000
asID: 53356
IP address blocks: 45.148.76.0/22 maxlen: 22
2a0f:9400:5::/48 maxlen: 48
2a0f:9400:200::/48 maxlen: 48
2a0f:9400:fa0::/44 maxlen: 45
2a0f:9400:fb0::/44 maxlen: 44
2a0f:9400:6104::/48 maxlen: 48
2a0f:9400:6106::/48 maxlen: 48
2a0f:9400:6109::/48 maxlen: 48
2a0f:9400:610d::/48 maxlen: 48
2a0f:9400:6163::/48 maxlen: 48
2a0f:9400:6900::/48 maxlen: 48
2a0f:9400:690f::/48 maxlen: 48
2a0f:9400:738c::/48 maxlen: 48
2a0f:9400:7390::/44 maxlen: 48
2a0f:9400:770c::/48 maxlen: 48
2a0f:9400:7723::/48 maxlen: 48
2a0f:9400:7724::/48 maxlen: 48
2a0f:9400:7726::/48 maxlen: 48
2a0f:9400:7727::/48 maxlen: 48
2a0f:9400:7728::/48 maxlen: 48
2a0f:9400:772c::/48 maxlen: 48
2a0f:9400:772f::/48 maxlen: 48
2a0f:9400:8003::/48 maxlen: 48
2a0f:9400:8024::/48 maxlen: 48
2a0f:9400:8027::/48 maxlen: 48
2a0f:9400:802b::/48 maxlen: 48
2a0f:9400:b00b::/48 maxlen: 48
2a0f:9401::/32 maxlen: 32
2a0f:9403::/32 maxlen: 32
2a0f:9405::/32 maxlen: 32
2a0f:9407::/32 maxlen: 32
2a0f:9407::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:66:f7:5a:c9:ed:d6:2d:c1:2f:e9:a9:0f:83:3d:1f:e9:bd:e3:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Apr 27 19:15:50 2024 GMT
Not After : Apr 26 19:20:50 2025 GMT
Subject: CN=CFB29E90162AA5999D2E5B84E947BC2D25DD82D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:66:5f:b3:45:36:94:b8:13:24:1a:ba:0e:04:
02:e5:de:be:f7:6f:62:3f:6a:fa:9c:f8:f8:d0:6f:
81:09:55:00:57:9c:31:f3:53:9e:af:98:15:f8:81:
d6:ff:86:03:e3:e4:07:60:64:61:25:23:f3:61:c5:
a2:3b:3b:40:09:e6:80:56:cb:f1:78:4d:f8:61:c6:
0d:8d:43:69:e1:92:55:a8:cc:24:ed:ce:aa:02:85:
57:20:8a:77:14:6f:0b:6f:fe:dd:d5:6c:0e:ad:87:
79:56:7c:9b:ef:d8:2a:cf:d5:9d:3d:3f:e7:ee:4b:
51:4c:f7:cb:33:87:6e:82:8d:70:60:29:92:f7:18:
14:86:42:48:ce:bd:5c:ca:0d:a3:92:c5:79:21:a2:
c3:21:7a:c1:af:c3:5f:d7:83:ec:ea:45:81:17:05:
d2:5b:49:95:bf:a3:e0:01:43:f0:7a:aa:19:80:ab:
93:11:bf:25:f1:e8:ec:9a:03:df:21:92:d5:33:78:
c4:ac:b8:e5:16:38:b1:16:ee:32:bd:d8:6e:68:3d:
47:71:af:d9:89:7b:43:87:45:db:ae:78:66:8d:ed:
1f:ca:12:90:71:17:73:f2:30:a3:d4:99:e7:c2:c4:
cf:fc:16:08:73:4d:b6:c8:ad:57:d5:90:ae:22:4b:
f9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B2:9E:90:16:2A:A5:99:9D:2E:5B:84:E9:47:BC:2D:25:DD:82:D1
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53356.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.76.0/22
IPv6:
2a0f:9400:5::/48
2a0f:9400:200::/48
2a0f:9400:fa0::/43
2a0f:9400:6104::/48
2a0f:9400:6106::/48
2a0f:9400:6109::/48
2a0f:9400:610d::/48
2a0f:9400:6163::/48
2a0f:9400:6900::/48
2a0f:9400:690f::/48
2a0f:9400:738c::/48
2a0f:9400:7390::/44
2a0f:9400:770c::/48
2a0f:9400:7723::-2a0f:9400:7724:ffff:ffff:ffff:ffff:ffff
2a0f:9400:7726::-2a0f:9400:7728:ffff:ffff:ffff:ffff:ffff
2a0f:9400:772c::/48
2a0f:9400:772f::/48
2a0f:9400:8003::/48
2a0f:9400:8024::/48
2a0f:9400:8027::/48
2a0f:9400:802b::/48
2a0f:9400:b00b::/48
2a0f:9401::/32
2a0f:9403::/32
2a0f:9405::/32
2a0f:9407::/32
Signature Algorithm: sha256WithRSAEncryption
b6:87:2a:ae:b2:62:99:54:05:05:0e:60:73:d2:c9:ac:cf:a9:
ee:ee:9f:b5:3d:19:4f:d0:b9:76:13:4c:51:44:3c:25:15:d9:
2a:16:a6:32:14:3f:b1:23:be:19:ee:09:37:33:77:38:92:cf:
96:aa:4a:b8:eb:17:95:69:dd:4f:80:db:42:a3:ac:1b:4e:0a:
7b:e7:19:59:6e:3a:e0:98:34:c2:95:5d:35:ae:54:67:28:58:
21:89:1e:a5:69:9a:42:c4:4d:3b:5f:11:44:38:69:8c:90:0a:
68:ee:db:c5:20:ba:13:71:99:3b:88:ce:a9:3c:06:e8:18:06:
31:1e:4b:80:02:f2:6d:2f:62:1c:d0:23:98:9e:b6:a8:d6:84:
9d:6b:ec:96:a8:57:cb:aa:37:b3:37:a8:f3:17:7b:0a:ab:31:
e2:5b:b8:21:6d:ff:8f:14:cf:3e:60:02:f9:92:93:1b:e5:7f:
f1:b0:a7:75:8a:c0:0d:16:39:2a:e3:a9:22:81:8e:e3:09:7f:
2b:d3:99:e6:db:c7:c7:75:a6:08:07:d2:a8:ca:47:3c:68:39:
92:0b:9d:33:4b:d1:c5:2f:5d:c4:53:5e:41:58:eb:ab:7d:98:
ae:d5:25:9f:0d:6e:6e:71:2c:8b:03:46:bb:a4:90:28:ad:e7:
7b:cb:90:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 11:07:18 2024 by rpki-client on console-fra.rpki-client.org