Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS8100.roa
File: AS8100.roa (raw, json)
Hash identifier: MHCQFpAFkwzr2TniNRRLgXSYOEz6fqUNGQCWYiM2/mQ=
Subject key identifier: 3D:61:F3:EB:12:DD:65:8B:C4:19:AB:3B:90:0D:B1:DC:6D:FD:31:FB
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 313178FA8B3EBBDF738065F1D183C15FF4CB3F30
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS8100.roa
Signing time: Tue 17 Oct 2023 16:56:26 +0000
ROA not before: Tue 17 Oct 2023 16:51:26 +0000
ROA not after: Tue 15 Oct 2024 16:56:26 +0000
asID: 8100
IP address blocks: 2a0f:9400:6933::/48 maxlen: 48
2a0f:9400:693b::/48 maxlen: 48
2a0f:9400:693f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Apr 2024 13:58:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:31:78:fa:8b:3e:bb:df:73:80:65:f1:d1:83:c1:5f:f4:cb:3f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Oct 17 16:51:26 2023 GMT
Not After : Oct 15 16:56:26 2024 GMT
Subject: CN=3D61F3EB12DD658BC419AB3B900DB1DC6DFD31FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2d:0b:fa:af:7e:8c:df:0e:1f:4e:d4:88:7e:
ac:58:a9:fa:37:c8:0d:08:84:e3:51:f0:94:c4:f3:
fa:ff:96:d0:15:55:e8:02:ba:83:9f:df:a7:c1:09:
c1:57:20:b1:11:b7:51:83:c4:6f:3f:de:11:13:ca:
25:cc:47:8c:e9:2c:e5:89:ea:10:27:66:1c:91:71:
aa:5d:b6:58:2e:06:ac:2e:3f:ca:57:58:a5:cf:c8:
3e:f7:43:af:4d:f0:6b:37:98:03:57:10:56:c8:7f:
46:99:84:7f:f3:e7:25:31:6c:13:3b:83:31:9e:90:
e4:aa:6e:d9:77:4f:d6:b8:ab:69:63:ae:d8:d6:7b:
69:4f:7b:90:d5:54:fe:48:e4:93:a6:bd:7b:7a:c3:
f1:c9:97:73:ce:9e:31:a9:c0:5d:90:46:1b:93:37:
c6:6b:0f:35:fc:a0:a4:91:c3:7e:ca:06:c5:08:2c:
93:f9:ba:65:ca:89:52:f8:05:a7:38:f8:ba:92:07:
bf:e0:1e:6f:39:16:9d:46:b5:e9:69:73:95:85:59:
d8:2c:00:03:ec:6d:7d:d7:05:cf:c9:cb:65:79:e0:
20:dc:f0:2f:88:89:7e:bd:39:2b:8b:eb:99:78:2d:
e7:96:c5:e9:ca:21:41:90:3d:dc:93:ae:49:83:74:
d5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:61:F3:EB:12:DD:65:8B:C4:19:AB:3B:90:0D:B1:DC:6D:FD:31:FB
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS8100.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6933::/48
2a0f:9400:693b::/48
2a0f:9400:693f::/48
Signature Algorithm: sha256WithRSAEncryption
d2:ab:3b:4e:10:98:26:94:d3:75:0f:48:9d:d1:45:bf:a5:52:
dc:9a:57:1e:bb:84:8a:fc:3e:22:8b:8f:97:f9:b2:51:f1:0c:
15:4f:f1:d7:42:b7:16:6b:d9:65:46:f1:be:49:5f:42:76:02:
bb:e6:de:9f:b4:b1:e2:62:a1:18:72:9b:05:4a:3b:fb:9b:9a:
79:02:ab:35:b2:b9:25:e8:80:70:2b:47:20:82:bf:f2:12:10:
b8:ab:e7:a3:b8:7c:86:cf:f8:e4:b1:8c:44:25:10:c0:ca:e9:
b3:2a:fb:5c:80:e1:85:4a:c9:db:14:b6:3b:5e:e5:25:eb:8d:
37:63:70:90:25:26:b5:61:de:10:b4:a0:e6:3c:f9:32:2b:82:
20:f1:de:b6:b5:ea:c2:25:5e:a8:b7:40:f5:65:19:2e:5f:b0:
b6:41:41:69:db:ec:da:ce:66:3c:3f:f8:c8:a7:2d:1b:64:9a:
76:c2:b8:a5:25:92:54:c3:82:32:e1:cf:c5:c8:ef:3e:31:86:
89:7b:e4:80:11:23:16:27:97:13:65:b5:d8:7d:31:58:59:55:
7e:7e:0e:a3:fe:78:e3:5b:d7:d5:56:80:9d:77:3c:7a:67:f0:
72:c9:41:86:42:ec:a1:65:d1:df:9d:64:1e:89:0e:86:8b:83:
70:50:3b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 16:10:49 2024 by rpki-client on console-fra.rpki-client.org