Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS8100.roa
File: AS8100.roa (raw, json)
Hash identifier: S2GBOCP5tgKhXBLijbvRbmBQ2d8X6KybEQPkGPFZMqw=
Subject key identifier: F2:0C:AE:3B:5A:10:19:2B:A8:F5:A6:BD:27:6A:89:4C:92:51:27:CF
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 762A8A970BEAFB7163CFD566B3C858F6506712D1
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS8100.roa
Signing time: Tue 17 Sep 2024 17:09:18 +0000
ROA not before: Tue 17 Sep 2024 17:04:18 +0000
ROA not after: Tue 16 Sep 2025 17:09:18 +0000
asID: 8100
IP address blocks: 2a0f:9400:6933::/48 maxlen: 48
2a0f:9400:693b::/48 maxlen: 48
2a0f:9400:693f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:2a:8a:97:0b:ea:fb:71:63:cf:d5:66:b3:c8:58:f6:50:67:12:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Sep 17 17:04:18 2024 GMT
Not After : Sep 16 17:09:18 2025 GMT
Subject: CN=F20CAE3B5A10192BA8F5A6BD276A894C925127CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b8:c4:41:58:6b:e0:31:ae:60:c2:72:96:2c:
59:b3:3c:92:a4:e1:f3:78:ce:1a:f5:f4:8d:35:04:
87:13:48:d3:95:3f:70:d4:47:b8:99:75:8c:b7:04:
23:e9:07:aa:a6:6d:9b:1f:1f:4b:10:e0:03:57:f9:
cd:be:f4:f4:13:29:c2:40:65:e7:49:22:ef:97:5e:
0c:4f:47:fb:e0:a1:b5:b2:6e:c1:48:38:10:5e:fb:
77:7f:7e:c0:7f:5c:be:93:3c:78:c2:16:5d:f7:9f:
31:1b:2e:6e:bf:ef:a6:fe:66:56:63:04:4a:d7:7a:
c9:bb:16:04:ff:80:18:b0:30:59:a9:dd:df:61:46:
da:22:38:8e:13:94:93:55:f7:a2:79:3f:43:b7:c2:
11:33:39:b1:2d:ef:96:5a:84:81:83:f1:18:99:ca:
30:dc:b2:1d:e7:c1:08:06:64:d1:b2:0e:b5:25:18:
39:c5:7b:71:33:af:d6:8d:51:a2:3f:50:f7:8d:9f:
0d:2c:4e:11:d3:41:90:aa:ac:01:a5:ac:df:e3:49:
bf:da:9e:4a:99:d8:a3:83:e9:fb:4a:ae:99:f9:ad:
27:98:66:0e:2a:df:5e:ed:f5:f1:fb:78:1f:8a:d3:
af:8e:72:f4:5d:10:97:59:e0:7c:74:1f:92:a7:ba:
5d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:0C:AE:3B:5A:10:19:2B:A8:F5:A6:BD:27:6A:89:4C:92:51:27:CF
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS8100.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6933::/48
2a0f:9400:693b::/48
2a0f:9400:693f::/48
Signature Algorithm: sha256WithRSAEncryption
19:50:8e:06:09:e3:f4:db:92:73:07:89:90:d6:1b:64:b0:2c:
8f:8a:6c:65:02:1b:8a:aa:90:d6:03:46:f6:42:f3:6b:71:60:
87:57:20:c3:7a:28:cd:31:98:98:fc:01:44:80:14:c6:de:70:
cf:e5:7d:46:8d:29:de:78:40:8a:10:3b:96:43:01:1b:66:4a:
56:7c:de:46:57:35:35:78:68:ba:e9:4e:07:3d:72:45:44:7e:
a0:91:31:df:85:ec:e5:17:22:4d:32:03:44:44:3f:ce:f3:bc:
2a:62:3b:a9:7c:8e:11:b1:24:a3:e1:b1:48:45:6a:51:be:e9:
20:aa:42:2c:f9:54:7a:aa:05:d3:28:60:8b:1d:d7:a1:1d:39:
51:e1:66:38:98:5a:45:70:23:a3:8d:99:81:4c:05:09:16:e5:
b6:a8:ee:0f:c0:c1:26:d3:ed:d7:ed:27:e5:28:4b:93:3d:a1:
ca:c3:24:6a:ff:68:f9:0a:88:41:34:a9:ff:66:12:cf:c4:48:
ab:64:92:fa:6a:c8:86:45:fc:d2:87:c0:81:dc:0f:10:f6:45:
b5:34:a7:94:8a:60:55:d3:b1:0c:0d:fb:73:7d:dc:32:3d:e7:
18:e8:c9:43:ca:b6:92:8a:80:bd:67:2a:ed:42:00:b0:53:d2:
22:9d:6e:13
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgIUdiqKlwvq+3Fjz9Vms8hY9lBnEtEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2VhNTMxNmRiZGFjMDFjZDA1ZDBlYWEwNWE4OWMwNGRh
M2U3Mzk4ZjAeFw0yNDA5MTcxNzA0MThaFw0yNTA5MTYxNzA5MThaMDMxMTAvBgNV
BAMTKEYyMENBRTNCNUExMDE5MkJBOEY1QTZCRDI3NkE4OTRDOTI1MTI3Q0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeuMRBWGvgMa5gwnKWLFmzPJKk
4fN4zhr19I01BIcTSNOVP3DUR7iZdYy3BCPpB6qmbZsfH0sQ4ANX+c2+9PQTKcJA
ZedJIu+XXgxPR/vgobWybsFIOBBe+3d/fsB/XL6TPHjCFl33nzEbLm6/76b+ZlZj
BErXesm7FgT/gBiwMFmp3d9hRtoiOI4TlJNV96J5P0O3whEzObEt75ZahIGD8RiZ
yjDcsh3nwQgGZNGyDrUlGDnFe3Ezr9aNUaI/UPeNnw0sThHTQZCqrAGlrN/jSb/a
nkqZ2KOD6ftKrpn5rSeYZg4q317t9fH7eB+K06+OcvRdEJdZ4Hx0H5Knul17AgMB
AAGjggHZMIIB1TAdBgNVHQ4EFgQU8gyuO1oQGSuo9aa9J2qJTJJRJ88wHwYDVR0j
BBgwFoAUfqUxbb2sAc0F0OqgWonATaPnOY8wDgYDVR0PAQH/BAQDAgeAMHEGA1Ud
HwRqMGgwZqBkoGKGYHJzeW5jOi8vcnBraS5hZG1pbi5mcmVlcmFuZ2VjbG91ZC5j
b20vcmVwby9GUkMtQ0EvNS83RUE1MzE2REJEQUMwMUNEMDVEMEVBQTA1QTg5QzA0
REEzRTczOThGLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5j
Oi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZnFVeGJiMnNBYzBG
ME9xZ1dvbkFUYVBuT1k4LmNlcjBaBggrBgEFBQcBCwROMEwwSgYIKwYBBQUHMAuG
PnJzeW5jOi8vcnBraS5hZG1pbi5mcmVlcmFuZ2VjbG91ZC5jb20vcmVwby9GUkMt
Q0EvNS9BUzgxMDAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwNAYIKwYB
BQUHAQcBAf8EJTAjMCEEAgACMBsDBwAqD5QAaTMDBwAqD5QAaTsDBwAqD5QAaT8w
DQYJKoZIhvcNAQELBQADggEBABlQjgYJ4/TbknMHiZDWG2SwLI+KbGUCG4qqkNYD
RvZC82txYIdXIMN6KM0xmJj8AUSAFMbecM/lfUaNKd54QIoQO5ZDARtmSlZ83kZX
NTV4aLrpTgc9ckVEfqCRMd+F7OUXIk0yA0REP87zvCpiO6l8jhGxJKPhsUhFalG+
6SCqQiz5VHqqBdMoYIsd16EdOVHhZjiYWkVwI6ONmYFMBQkW5bao7g/AwSbT7dft
J+UoS5M9ocrDJGr/aPkKiEE0qf9mEs/ESKtkkvpqyIZF/NKHwIHcDxD2RbU0p5SK
YFXTsQwN+3N93DI95xjoyUPKtpKKgL1nKu1CALBT0iKdbhM=
-----END CERTIFICATE-----
Generated at Thu Nov 21 22:34:43 2024 by rpki-client on console-fra.rpki-client.org