Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53356.roa
File: AS53356.roa (raw, json)
Hash identifier: lH1vl8JppnvLV7p/f9uVsjbKOIregxnBUb4xwrkBCu8=
Subject key identifier: 08:DA:03:E0:96:7C:19:CB:FE:27:9E:A5:D6:69:07:1D:76:AB:FE:D1
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 6CD404A51A9094F1EBD92C43ADB86E5F07BAA88C
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53356.roa
Signing time: Mon 03 Mar 2025 16:19:54 +0000
ROA not before: Mon 03 Mar 2025 16:14:54 +0000
ROA not after: Mon 02 Mar 2026 16:19:54 +0000
asID: 53356
IP address blocks: 45.148.76.0/22 maxlen: 22
2a0f:9400:5::/48 maxlen: 48
2a0f:9400:200::/48 maxlen: 48
2a0f:9400:fa0::/44 maxlen: 45
2a0f:9400:fb0::/44 maxlen: 44
2a0f:9400:6100::/48 maxlen: 48
2a0f:9400:6103::/48 maxlen: 48
2a0f:9400:6106::/48 maxlen: 48
2a0f:9400:6109::/48 maxlen: 48
2a0f:9400:6148::/48 maxlen: 48
2a0f:9400:614b::/48 maxlen: 48
2a0f:9400:6933::/48 maxlen: 48
2a0f:9400:6c00::/40 maxlen: 44
2a0f:9400:6e00::/40 maxlen: 40
2a0f:9400:7000::/40 maxlen: 48
2a0f:9400:738c::/48 maxlen: 48
2a0f:9400:7390::/44 maxlen: 48
2a0f:9400:770c::/48 maxlen: 48
2a0f:9400:7723::/48 maxlen: 48
2a0f:9400:7724::/48 maxlen: 48
2a0f:9400:7726::/48 maxlen: 48
2a0f:9400:7727::/48 maxlen: 48
2a0f:9400:7728::/48 maxlen: 48
2a0f:9400:772c::/48 maxlen: 48
2a0f:9400:772f::/48 maxlen: 48
2a0f:9400:8003::/48 maxlen: 48
2a0f:9400:8012::/48 maxlen: 48
2a0f:9400:8024::/48 maxlen: 48
2a0f:9400:8027::/48 maxlen: 48
2a0f:9400:802b::/48 maxlen: 48
2a0f:9400:b00b::/48 maxlen: 48
2a0f:9401::/32 maxlen: 32
2a0f:9405::/32 maxlen: 32
2a0f:9407::/32 maxlen: 32
2a0f:9407::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:d4:04:a5:1a:90:94:f1:eb:d9:2c:43:ad:b8:6e:5f:07:ba:a8:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Mar 3 16:14:54 2025 GMT
Not After : Mar 2 16:19:54 2026 GMT
Subject: CN=08DA03E0967C19CBFE279EA5D669071D76ABFED1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:35:e2:8f:b7:ca:02:57:74:e6:f0:ed:23:1f:
e9:7d:a2:fb:6b:fd:6f:d3:8a:92:dd:69:9b:a5:1e:
64:0f:7c:93:2f:f2:e3:ec:a1:89:65:01:f7:eb:0c:
e2:b7:cd:7e:a6:c1:9f:1e:55:07:c3:be:01:ec:72:
d2:90:e7:a0:37:2a:86:07:2b:90:40:ae:f8:c3:56:
da:12:34:d9:54:67:10:ef:3c:5f:20:93:71:af:e9:
2b:d0:89:a9:6e:9a:cc:74:34:d6:1e:98:6e:a4:e1:
a7:b1:56:16:4c:65:d5:bc:8b:9c:f0:fe:fb:fc:27:
de:cc:20:d1:c4:8f:1a:f0:21:6c:77:3f:d2:1c:04:
38:36:89:b4:fa:92:93:ef:06:b0:62:e7:36:f9:31:
df:62:7e:d6:0b:c5:85:87:b4:02:01:3d:fe:e8:28:
81:a3:59:96:fe:78:12:cd:da:60:04:54:b0:8d:2a:
0e:60:5b:8a:c0:b2:57:8e:e9:c1:16:a1:4c:a4:15:
e5:27:8d:28:41:ca:57:17:4d:dd:16:b2:fb:f6:ab:
0a:31:f0:29:98:b6:f9:10:d6:8d:af:8a:df:74:b1:
36:b6:fe:af:ed:34:e6:4c:75:b6:c3:af:68:5c:dc:
c0:94:9b:4a:aa:1a:3a:c8:2c:b6:37:5b:b0:a1:62:
08:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:DA:03:E0:96:7C:19:CB:FE:27:9E:A5:D6:69:07:1D:76:AB:FE:D1
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53356.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.76.0/22
IPv6:
2a0f:9400:5::/48
2a0f:9400:200::/48
2a0f:9400:fa0::/43
2a0f:9400:6100::/48
2a0f:9400:6103::/48
2a0f:9400:6106::/48
2a0f:9400:6109::/48
2a0f:9400:6148::/48
2a0f:9400:614b::/48
2a0f:9400:6933::/48
2a0f:9400:6c00::/40
2a0f:9400:6e00::/40
2a0f:9400:7000::/40
2a0f:9400:738c::/48
2a0f:9400:7390::/44
2a0f:9400:770c::/48
2a0f:9400:7723::-2a0f:9400:7724:ffff:ffff:ffff:ffff:ffff
2a0f:9400:7726::-2a0f:9400:7728:ffff:ffff:ffff:ffff:ffff
2a0f:9400:772c::/48
2a0f:9400:772f::/48
2a0f:9400:8003::/48
2a0f:9400:8012::/48
2a0f:9400:8024::/48
2a0f:9400:8027::/48
2a0f:9400:802b::/48
2a0f:9400:b00b::/48
2a0f:9401::/32
2a0f:9405::/32
2a0f:9407::/32
Signature Algorithm: sha256WithRSAEncryption
45:7d:9f:27:3d:3b:25:bb:65:09:56:1a:d6:b3:1d:ef:a8:12:
c5:cb:ce:db:68:50:be:e2:df:be:9f:8c:14:9d:21:ae:6a:42:
ec:15:a4:7a:44:a7:58:b0:2a:9c:6b:cd:2f:06:bb:39:cd:a7:
a5:95:92:84:6c:16:d3:e4:b4:6c:4d:64:de:b7:b4:05:d3:12:
1e:2b:c5:71:28:4d:ad:27:78:dc:86:9b:49:51:86:63:c6:a0:
09:8e:07:b1:80:d7:65:c2:ca:be:3b:12:5a:76:f7:c0:17:28:
e7:df:9f:69:d8:04:6e:df:53:b6:3f:9d:75:17:02:51:29:07:
58:29:8e:94:fb:eb:24:4f:63:7f:d2:e8:2d:c7:ee:a8:f6:00:
78:11:37:bd:5c:9c:df:9c:81:fa:8a:0d:6a:0c:65:81:f3:b1:
1f:89:16:58:da:4a:69:bf:57:d0:90:06:ef:c7:4a:4c:8d:79:
eb:e1:97:1b:62:e7:7b:8e:68:a4:ec:63:54:41:88:fe:02:1d:
c0:0c:bb:9b:5b:92:89:fd:ed:55:ac:ad:2f:e5:33:af:ee:29:
a2:62:d5:64:72:e6:1e:e1:98:7b:95:ac:d4:36:39:bc:39:97:
9a:4a:4b:45:8b:be:9e:f9:d0:1a:15:d4:7a:3d:f0:fa:45:38:
03:1c:02:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:08:28 2025 by rpki-client