Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53667.roa
File: AS53667.roa (raw, json)
Hash identifier: 009aHbCvZ530v3zzR6NivsLi2WkyMxgycp4Qtmz6/kM=
Subject key identifier: 64:E0:3E:26:E8:FC:42:7F:EE:5B:AC:32:66:F8:47:FA:5B:80:BA:DC
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 5DD3A7D6ADCC3E0D3B2AEA29FAE7156DDEA454FF
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53667.roa
Signing time: Tue 25 Jun 2024 15:09:27 +0000
ROA not before: Tue 25 Jun 2024 15:04:27 +0000
ROA not after: Tue 24 Jun 2025 15:09:27 +0000
asID: 53667
IP address blocks: 2a0f:9400:6904::/48 maxlen: 48
2a0f:9400:693d::/48 maxlen: 48
2a0f:9400:6a80::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:d3:a7:d6:ad:cc:3e:0d:3b:2a:ea:29:fa:e7:15:6d:de:a4:54:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Jun 25 15:04:27 2024 GMT
Not After : Jun 24 15:09:27 2025 GMT
Subject: CN=64E03E26E8FC427FEE5BAC3266F847FA5B80BADC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c9:67:10:7f:b6:ed:8e:9c:62:84:2a:d2:b7:
e0:bb:79:12:06:a0:5a:1f:b2:26:eb:22:ca:1a:bb:
89:d5:f5:8b:55:ca:c6:3c:bb:6c:45:ef:b4:43:a3:
e9:10:5a:61:ca:be:6c:77:42:ed:a5:06:f8:9d:4f:
65:82:d1:d9:0e:e4:69:36:99:13:1c:1a:4c:c9:cc:
6d:fc:a8:23:04:11:8d:39:fe:61:24:84:5d:07:da:
06:37:2f:e2:e0:0c:87:ff:ae:f7:49:f0:1e:28:c0:
d3:35:e2:1e:84:3c:07:ac:0c:eb:4b:f4:60:c5:02:
d2:e5:05:98:bd:32:a2:2a:39:96:aa:54:85:bf:70:
2c:08:a7:b1:72:e4:cc:87:8e:d3:d5:43:58:a8:61:
0c:6a:01:0d:b5:21:3f:87:88:cd:d6:6e:82:eb:5f:
c9:22:90:51:dd:a4:9a:45:3f:dc:1c:49:93:cc:85:
05:43:9f:54:9c:cd:80:91:4a:1f:94:45:f6:df:f4:
a5:e2:a7:fd:3c:c6:38:0d:41:f6:28:c7:22:26:21:
2b:08:8b:8f:7e:8e:0c:04:6f:67:61:07:06:df:99:
88:90:05:f8:37:4d:be:70:b8:71:d2:a1:ad:70:d2:
20:66:df:bb:34:c6:38:c0:e6:7f:a1:7f:a9:d6:82:
38:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E0:3E:26:E8:FC:42:7F:EE:5B:AC:32:66:F8:47:FA:5B:80:BA:DC
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53667.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6904::/48
2a0f:9400:693d::/48
2a0f:9400:6a80::/48
Signature Algorithm: sha256WithRSAEncryption
b7:0b:27:56:6e:61:32:5c:1f:5e:0d:9e:00:f0:54:af:76:9c:
fd:cd:5d:01:b2:f6:bb:2a:20:b9:58:ea:d7:b7:4a:d2:b6:2b:
54:bf:b9:52:d8:20:39:4b:15:14:6e:cc:2e:ae:fe:d4:72:46:
84:1e:0a:72:7f:27:74:18:c0:5d:da:cd:05:81:53:c0:b1:b9:
6c:bd:e7:e0:6f:44:0a:9a:af:1a:3b:d7:78:2e:3e:18:2f:03:
62:37:cc:34:92:30:0e:b7:cc:58:cf:3b:fc:25:15:75:b7:da:
03:a0:1d:b6:13:de:91:14:b0:63:c6:7b:96:2b:66:70:c9:25:
ec:ce:db:93:5d:fc:d9:6a:c4:83:14:c5:e9:2e:59:d4:3d:06:
4c:11:f0:0d:1e:0e:0d:85:49:5a:b8:2b:a0:4a:c0:3b:5d:a4:
2d:8e:bc:ed:17:42:df:83:b1:c8:fd:54:7f:f4:b6:b6:91:d2:
32:cc:7d:3d:91:0e:de:da:a9:51:11:d2:39:eb:d9:4c:3e:69:
09:c7:ae:3f:d4:55:c6:0c:24:d9:84:31:85:aa:d7:1b:38:6a:
a1:81:6f:e0:64:73:d0:70:f3:4b:c2:31:e1:2c:7e:53:b7:4e:
44:f9:d1:e2:da:14:8b:4a:ed:aa:b7:a7:bb:c7:d7:81:dd:b8:
98:88:a7:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 22:34:43 2024 by rpki-client on console-fra.rpki-client.org