Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53667.roa
File: AS53667.roa (raw, json)
Hash identifier: QAk+VfkbJ3t3E327qND//TTErjhb0rhXiqFlzHnA7wo=
Subject key identifier: 78:C2:21:F5:F9:B1:05:44:90:9A:C1:3B:3A:01:00:83:73:24:FF:ED
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 15DAC15013869E84AD8DB241D6C4B53E68717866
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53667.roa
Signing time: Tue 27 May 2025 16:06:28 +0000
ROA not before: Tue 27 May 2025 16:01:28 +0000
ROA not after: Tue 26 May 2026 16:06:28 +0000
asID: 53667
IP address blocks: 2a0f:9400:6904::/48 maxlen: 48
2a0f:9400:693d::/48 maxlen: 48
2a0f:9400:6a80::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:da:c1:50:13:86:9e:84:ad:8d:b2:41:d6:c4:b5:3e:68:71:78:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: May 27 16:01:28 2025 GMT
Not After : May 26 16:06:28 2026 GMT
Subject: CN=78C221F5F9B10544909AC13B3A0100837324FFED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1b:3c:28:d3:87:e3:b8:c4:71:a5:b6:04:e4:
88:c7:e1:43:c8:af:e0:37:38:e1:4a:23:e1:88:e4:
ef:4d:31:02:5e:22:52:70:a6:c1:04:87:68:03:9a:
59:54:62:60:18:db:c4:91:14:06:c6:18:a4:96:d2:
1c:c0:1f:e2:22:75:cb:9d:aa:35:f6:0d:b1:d4:17:
aa:f4:4e:fb:fc:7d:6d:e4:e2:46:38:0a:69:e6:15:
b1:44:9b:21:39:62:f5:0b:42:fb:0e:a2:4c:45:2b:
5c:b5:2f:18:71:7d:f4:20:c0:84:6b:fd:6c:dd:61:
da:f6:53:f7:49:32:ab:e0:54:1c:f2:ac:2f:77:17:
f9:23:ed:03:1d:2b:a1:ef:8d:da:8c:92:77:80:a2:
7d:e3:46:db:dc:db:b5:75:d9:c2:45:f7:a5:27:03:
62:19:ad:84:70:ac:14:53:48:57:ab:74:53:fd:ee:
8c:15:b7:83:a1:e6:35:e9:44:76:7a:ad:93:d0:7d:
e0:65:8c:b2:4a:16:08:68:21:70:26:74:8c:63:33:
db:da:94:46:62:f0:4e:02:f7:df:d8:5b:7e:12:13:
f4:de:45:1e:9f:a7:2c:35:ce:51:c1:5f:7b:02:cc:
07:9f:ea:cb:a9:2d:71:f3:81:c9:40:c6:4f:b4:a5:
c7:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C2:21:F5:F9:B1:05:44:90:9A:C1:3B:3A:01:00:83:73:24:FF:ED
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS53667.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6904::/48
2a0f:9400:693d::/48
2a0f:9400:6a80::/48
Signature Algorithm: sha256WithRSAEncryption
68:77:79:fa:f0:9a:8a:02:68:5b:ba:47:e6:1c:10:fe:8e:80:
a4:9c:5a:dc:d4:5a:4a:3f:33:b5:7a:6c:91:b3:e7:7f:00:6a:
b0:7b:0c:ea:82:28:a0:d4:37:97:f9:28:5e:78:a3:3e:43:0b:
ab:ad:59:b0:48:cb:c1:60:0f:79:50:af:eb:be:00:ea:03:25:
83:0d:ac:e9:74:13:fa:1c:d1:29:08:24:ab:b1:9d:b5:94:74:
14:fd:a2:47:1a:9c:35:72:30:e3:fe:3f:22:2e:1a:74:fc:52:
4b:9f:12:d9:f3:2b:c1:cf:0a:b3:c6:63:70:ef:7d:f2:6e:fa:
24:40:bf:a4:b2:78:4c:c7:99:28:ba:3f:d6:a9:fe:b0:f6:5a:
2f:6b:fa:dd:9d:65:0f:37:f2:9c:08:fd:f9:38:19:e9:33:e5:
39:70:cf:50:d2:ef:83:df:e5:b9:7c:dc:2f:0b:7d:f3:26:67:
ee:81:0d:d9:4e:0f:18:73:e6:fb:75:ad:71:f1:ea:8d:0d:a1:
09:f6:b2:8a:76:bf:4a:71:47:92:68:f0:4a:57:92:8b:29:bb:
48:17:d0:31:86:61:20:84:42:70:ec:82:2d:70:2a:60:e2:72:
01:23:0b:d3:47:c7:2d:7e:98:31:17:f7:51:f0:82:2d:68:0b:
d9:f4:b9:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:53:26 2025 by rpki-client