Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS8100.roa
File: AS8100.roa (raw, json)
Hash identifier: 01SQI4IP+z0AGrzUjtCZd0YQ+0RJMzRjGMAYpGzUlGE=
Subject key identifier: E8:EF:C2:F6:F9:55:0A:44:4C:21:9C:F8:FA:E0:9A:E3:E6:2E:93:5D
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 3D70732E05F7C2729DEF5D3AFE30608A3C09CFEE
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS8100.roa
Signing time: Sat 18 Apr 2026 12:28:49 +0000
ROA not before: Sat 18 Apr 2026 12:23:49 +0000
ROA not after: Sat 17 Apr 2027 12:28:49 +0000
asID: 8100
IP address blocks: 2a0f:9400:693f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 03:26:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:70:73:2e:05:f7:c2:72:9d:ef:5d:3a:fe:30:60:8a:3c:09:cf:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Apr 18 12:23:49 2026 GMT
Not After : Apr 17 12:28:49 2027 GMT
Subject: CN=E8EFC2F6F9550A444C219CF8FAE09AE3E62E935D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2d:77:15:1a:0a:45:84:87:64:7e:9a:48:47:
2d:97:35:07:55:88:25:7c:61:fe:69:d8:a9:08:97:
5e:b3:2d:a7:f0:1b:28:d5:50:60:4c:23:2f:56:4f:
30:ef:1b:6b:81:2f:a1:31:e2:73:7c:13:01:b7:67:
80:43:35:59:04:75:83:5f:ec:db:c8:6c:ff:86:90:
7f:9c:3a:57:ed:ac:74:2a:76:2a:94:67:35:ec:ab:
8d:4f:f5:78:8e:3c:74:5f:d9:07:0d:80:3d:cb:ec:
39:15:5c:81:0f:92:a6:3a:26:90:e3:95:95:88:b3:
3c:04:2e:b6:7a:62:45:78:aa:cc:dd:44:14:4d:22:
01:d8:e4:11:8d:c4:88:20:26:89:e1:99:ee:4d:b7:
d1:2e:0e:dd:3d:34:c4:5c:80:9b:fb:7f:e8:8d:8d:
bf:13:d4:58:99:f0:73:58:08:65:e6:82:e4:ef:25:
52:38:9f:a6:ae:16:bd:b8:8f:d2:93:87:f9:14:5b:
0f:1b:3e:6c:d8:49:48:c2:fe:5d:13:cb:aa:69:f9:
df:a4:33:9b:3d:4b:4b:65:5f:4d:e1:b2:33:de:35:
11:7f:5b:ed:07:02:7e:97:71:31:ea:b4:cf:a1:7b:
3c:51:f6:ab:41:00:7f:a0:63:16:c0:a7:65:92:42:
0b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:EF:C2:F6:F9:55:0A:44:4C:21:9C:F8:FA:E0:9A:E3:E6:2E:93:5D
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS8100.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:693f::/48
Signature Algorithm: sha256WithRSAEncryption
34:a9:f1:57:91:2a:59:ef:ad:03:72:18:42:be:a1:c8:10:2a:
4a:8e:12:c4:ee:56:22:5b:e8:ac:13:6c:13:99:72:b6:83:f9:
2a:d8:35:c7:89:a2:89:cc:48:23:12:e1:7a:e7:df:bb:c4:71:
fd:39:ad:ad:31:5e:fa:69:45:70:11:46:6b:2e:99:30:de:cc:
3d:ea:67:c2:5f:76:e1:d3:53:5c:7d:f8:41:44:7c:fd:d0:90:
8a:00:49:7e:d8:de:0b:b5:49:e6:d2:df:2f:67:10:21:90:c7:
b0:48:3a:69:ec:81:56:e4:c4:e8:a2:39:cf:38:63:9c:ee:cf:
00:26:bc:4f:b9:63:f6:fb:ba:0e:2b:40:1f:f8:ce:a1:a5:6e:
5a:92:77:d2:b5:ea:38:df:6b:e9:34:24:d4:9c:f3:67:4b:2d:
39:e5:55:f5:dd:fd:80:b3:ac:ac:95:b2:2f:ec:02:17:e2:97:
0a:eb:81:34:0c:42:b1:70:ae:b6:3e:27:4d:be:13:c8:e1:bc:
0c:47:4b:3d:30:03:05:92:18:59:fa:89:b9:24:d3:de:1a:46:
f1:d1:8c:a4:7e:46:84:8e:30:db:f2:c1:db:e0:32:8d:79:5a:
07:2a:42:08:10:98:f2:08:a0:dc:90:b2:64:9b:9f:11:9c:f8:
f7:a6:d3:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 21 17:47:18 2026 by rpki-client