Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53356.roa
File: AS53356.roa (raw, json)
Hash identifier: 7JUaAng1g3oVgeEYbMtT3CgQ3pIMkoY+oGkgdaacA2Q=
Subject key identifier: 05:D6:86:70:35:8A:E4:CC:5F:D8:42:CC:4A:26:6D:7C:12:53:9F:3C
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 4D279D5C8E11567BA4DC81625ED12BF8D0FD5A12
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53356.roa
Signing time: Fri 05 Jun 2026 22:24:06 +0000
ROA not before: Fri 05 Jun 2026 22:19:06 +0000
ROA not after: Fri 04 Jun 2027 22:24:06 +0000
asID: 53356
IP address blocks: 45.148.76.0/22 maxlen: 22
2a0f:9400:5::/48 maxlen: 48
2a0f:9400:200::/48 maxlen: 48
2a0f:9400:fa0::/44 maxlen: 45
2a0f:9400:fb0::/44 maxlen: 44
2a0f:9400:6100::/48 maxlen: 48
2a0f:9400:6106::/48 maxlen: 48
2a0f:9400:6146::/48 maxlen: 48
2a0f:9400:6149::/48 maxlen: 48
2a0f:9400:614b::/48 maxlen: 48
2a0f:9400:6190::/44 maxlen: 44
2a0f:9400:6400::/40 maxlen: 40
2a0f:9400:6500::/40 maxlen: 40
2a0f:9400:6600::/40 maxlen: 40
2a0f:9400:6933::/48 maxlen: 48
2a0f:9400:6a00::/40 maxlen: 40
2a0f:9400:6c00::/40 maxlen: 44
2a0f:9400:6d00::/40 maxlen: 40
2a0f:9400:6e00::/40 maxlen: 40
2a0f:9400:7000::/40 maxlen: 48
2a0f:9400:738c::/48 maxlen: 48
2a0f:9400:7400::/40 maxlen: 40
2a0f:9400:770c::/48 maxlen: 48
2a0f:9400:7723::/48 maxlen: 48
2a0f:9400:7724::/48 maxlen: 48
2a0f:9400:7726::/48 maxlen: 48
2a0f:9400:7727::/48 maxlen: 48
2a0f:9400:7728::/48 maxlen: 48
2a0f:9400:772c::/48 maxlen: 48
2a0f:9400:772f::/48 maxlen: 48
2a0f:9400:8003::/48 maxlen: 48
2a0f:9400:8024::/48 maxlen: 48
2a0f:9400:8027::/48 maxlen: 48
2a0f:9400:802b::/48 maxlen: 48
2a0f:9401::/32 maxlen: 32
2a0f:9405::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:27:9d:5c:8e:11:56:7b:a4:dc:81:62:5e:d1:2b:f8:d0:fd:5a:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Jun 5 22:19:06 2026 GMT
Not After : Jun 4 22:24:06 2027 GMT
Subject: CN=05D68670358AE4CC5FD842CC4A266D7C12539F3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a4:3f:6d:8c:92:b4:bc:cc:61:24:7f:7f:ec:
69:59:e9:8c:7a:f1:05:84:fb:0e:71:5c:f7:00:a0:
46:d2:99:cf:56:4a:8a:b2:53:76:79:fd:9d:c3:e6:
32:dd:f0:9f:ea:98:9d:5a:db:93:f5:c4:da:14:89:
e4:19:98:f8:8d:78:e2:ae:8f:58:2e:2a:b3:b4:36:
90:c5:7e:8b:5e:fd:71:31:8b:cd:68:7a:b8:37:e6:
dd:84:4b:08:da:02:48:26:11:47:60:b1:6b:d4:a4:
41:cf:db:5a:78:80:75:bd:6e:b1:d4:d5:3e:41:2e:
78:4b:d4:3f:b1:a1:42:ac:89:98:7f:5c:9f:89:89:
46:01:3c:ba:08:aa:91:ec:06:18:e0:70:6b:38:12:
b4:ae:96:67:81:2d:78:ed:11:4f:8a:19:09:95:74:
f3:6b:58:31:f9:1b:69:a5:c0:f4:7f:d3:1e:a7:48:
e9:b0:37:b9:17:b7:68:88:8c:73:04:cc:f7:34:06:
2a:b1:cf:5d:35:6b:90:a1:00:73:f4:ef:65:4d:39:
96:bc:b1:ca:95:24:ce:e2:5a:9d:66:2d:e7:7c:02:
fe:94:2e:84:a5:5e:7a:9a:18:6c:c8:e1:f2:3d:b0:
f8:a4:a1:ca:b5:6d:aa:fc:2e:bd:a3:27:36:96:99:
95:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D6:86:70:35:8A:E4:CC:5F:D8:42:CC:4A:26:6D:7C:12:53:9F:3C
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53356.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.76.0/22
IPv6:
2a0f:9400:5::/48
2a0f:9400:200::/48
2a0f:9400:fa0::/43
2a0f:9400:6100::/48
2a0f:9400:6106::/48
2a0f:9400:6146::/48
2a0f:9400:6149::/48
2a0f:9400:614b::/48
2a0f:9400:6190::/44
2a0f:9400:6400::-2a0f:9400:66ff:ffff:ffff:ffff:ffff:ffff
2a0f:9400:6933::/48
2a0f:9400:6a00::/40
2a0f:9400:6c00::-2a0f:9400:6eff:ffff:ffff:ffff:ffff:ffff
2a0f:9400:7000::/40
2a0f:9400:738c::/48
2a0f:9400:7400::/40
2a0f:9400:770c::/48
2a0f:9400:7723::-2a0f:9400:7724:ffff:ffff:ffff:ffff:ffff
2a0f:9400:7726::-2a0f:9400:7728:ffff:ffff:ffff:ffff:ffff
2a0f:9400:772c::/48
2a0f:9400:772f::/48
2a0f:9400:8003::/48
2a0f:9400:8024::/48
2a0f:9400:8027::/48
2a0f:9400:802b::/48
2a0f:9401::/32
2a0f:9405::/32
Signature Algorithm: sha256WithRSAEncryption
b7:d2:29:57:ea:e7:09:79:9c:00:8d:9c:0e:d2:4c:1a:11:b5:
3d:bb:c4:5c:bc:19:b6:f2:b3:dd:fd:b0:d5:83:07:f4:75:7a:
12:b5:5e:79:b8:75:01:f4:5c:0a:70:ea:fe:e6:42:25:80:07:
d9:fc:8e:04:84:c7:7e:67:0c:f5:3a:1d:bd:a0:59:67:5f:df:
e0:70:01:0e:19:9e:34:2a:70:1f:09:ea:c0:ac:03:c6:50:2f:
5d:9c:da:21:57:f5:df:ac:a2:95:d7:03:47:4f:f1:bc:6d:9a:
46:60:f8:35:dc:d8:41:6b:5f:7d:2b:fe:ee:c8:51:4d:98:fb:
d2:39:1d:94:eb:54:ea:88:da:7e:0b:1d:1b:25:92:4f:c7:e5:
74:b5:5a:50:4b:6f:dd:b3:3e:cd:64:cc:d0:0c:9b:d9:68:81:
d1:57:0b:f8:68:a8:14:2c:fe:91:25:e6:be:97:d4:6e:98:3c:
f0:17:b0:dd:47:c7:19:1e:41:e9:ab:d1:a1:af:2c:78:9e:09:
d3:03:97:c4:e7:42:53:96:70:81:c7:1a:fb:c5:0a:12:57:7c:
4d:30:26:da:a8:ab:3b:b1:a3:6a:c3:e5:de:86:60:bd:f3:84:
4e:aa:39:9c:0e:04:a6:1b:36:22:26:94:a4:2b:ea:0b:91:53:
1c:7d:eb:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 08:04:42 2026 by rpki-client