Route Origin Authorization
$ rpki-client -vvf rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS216183.roa
File: AS216183.roa (raw, json)
Hash identifier: vGUeaU7e56vzo4Ae7nLGRaXvvOvpPr2IQShlKP8qjb4=
Subject key identifier: AE:00:1A:64:B1:5E:13:BF:EA:E8:CF:5A:82:4F:AA:12:00:F1:CE:F7
Certificate issuer: /CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Certificate serial: 5524859A7042C4A10E0C09C212DC855E40FBA343
Authority key identifier: 7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject info access: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS216183.roa
Signing time: Sun 20 Apr 2025 17:51:02 +0000
ROA not before: Sun 20 Apr 2025 17:46:02 +0000
ROA not after: Sun 19 Apr 2026 17:51:02 +0000
asID: 216183
IP address blocks: 2a0f:9400:6140::/48 maxlen: 48
2a0f:9400:6141::/48 maxlen: 48
2a0f:9400:6142::/48 maxlen: 48
2a0f:9400:6143::/48 maxlen: 48
2a0f:9400:6164::/48 maxlen: 48
2a0f:9400:6166::/48 maxlen: 48
2a0f:9400:6168::/48 maxlen: 48
2a0f:9400:616a::/48 maxlen: 48
2a0f:9400:616b::/48 maxlen: 48
2a0f:9400:616c::/48 maxlen: 48
2a0f:9400:616d::/48 maxlen: 48
2a0f:9400:616e::/48 maxlen: 48
2a0f:9400:616f::/48 maxlen: 48
2a0f:9400:6800::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.mft
rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:24:85:9a:70:42:c4:a1:0e:0c:09:c2:12:dc:85:5e:40:fb:a3:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ea5316dbdac01cd05d0eaa05a89c04da3e7398f
Validity
Not Before: Apr 20 17:46:02 2025 GMT
Not After : Apr 19 17:51:02 2026 GMT
Subject: CN=AE001A64B15E13BFEAE8CF5A824FAA1200F1CEF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:69:1c:ad:d3:3e:3b:e5:2f:71:53:1e:52:ef:
fd:0c:b1:d6:97:50:2f:b3:da:9d:9b:c1:b6:67:4c:
f4:77:9a:48:b9:83:bf:24:08:99:1c:dc:e5:4c:95:
37:38:a7:00:e3:62:75:08:5a:18:30:e7:fc:f6:3b:
d4:55:29:04:89:57:ed:49:79:5d:47:43:ea:a2:f4:
3a:7c:d9:ce:8a:dc:ac:7a:48:1c:27:9a:3f:2a:f5:
b9:99:88:5c:97:bb:80:4a:32:1b:cb:50:3a:01:72:
4c:05:1d:47:4e:34:68:82:8d:51:58:42:ea:9b:d0:
2e:ed:7b:3c:7e:a3:e9:97:1e:5b:a7:e9:6e:46:a9:
99:1b:52:f5:80:67:87:3e:68:4f:6c:42:26:15:22:
61:16:f1:83:f7:09:71:94:78:ed:fd:ad:1a:e0:90:
cb:03:92:b5:cd:18:18:3d:4d:a6:83:e9:1b:f1:f3:
06:67:f2:24:55:15:06:86:67:b9:fc:db:39:ee:31:
80:11:12:82:e4:4c:01:25:0c:93:7c:0c:01:9f:0c:
06:fb:bf:e5:f6:32:86:56:b6:15:a7:fe:b0:94:aa:
f1:ba:9e:60:67:5d:88:5b:20:59:ca:78:ae:04:6b:
aa:e3:17:7b:8e:02:ad:98:6a:2d:7b:85:ae:fd:47:
6a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:00:1A:64:B1:5E:13:BF:EA:E8:CF:5A:82:4F:AA:12:00:F1:CE:F7
X509v3 Authority Key Identifier:
keyid:7E:A5:31:6D:BD:AC:01:CD:05:D0:EA:A0:5A:89:C0:4D:A3:E7:39:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/7EA5316DBDAC01CD05D0EAA05A89C04DA3E7398F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fqUxbb2sAc0F0OqgWonATaPnOY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.admin.freerangecloud.com/repo/FRC-CA/5/AS216183.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:9400:6140::/46
2a0f:9400:6164::/48
2a0f:9400:6166::/48
2a0f:9400:6168::/48
2a0f:9400:616a::-2a0f:9400:616f:ffff:ffff:ffff:ffff:ffff
2a0f:9400:6800::/40
Signature Algorithm: sha256WithRSAEncryption
35:be:56:b0:a1:69:f8:f8:f3:e9:5c:2f:c8:d4:75:39:e6:ac:
6b:ab:a1:2a:c9:2e:d7:52:7f:4d:86:6a:b6:d7:2d:da:3c:8d:
d7:83:d6:bb:66:06:f2:37:82:46:db:82:01:8a:10:9b:80:c1:
4d:44:28:4b:ea:c0:18:dd:84:7b:fa:91:fe:3c:55:af:7d:e0:
e9:9d:75:a8:04:54:89:3e:3a:98:84:58:bd:d7:7d:22:34:a3:
34:5f:1b:49:0b:ef:74:7b:8e:63:5c:7d:1a:2d:86:4c:74:08:
90:e5:45:63:00:73:19:77:33:3a:b2:4c:c4:0d:fc:25:56:11:
39:60:ea:b4:38:76:0b:86:88:ae:93:58:26:9b:65:7c:32:4c:
06:98:a0:40:1a:8a:8c:c2:7c:6b:1b:16:81:8e:63:c4:c4:e5:
be:77:13:b0:72:77:57:6f:31:ad:14:e2:4a:b7:88:e1:37:af:
6d:14:89:30:b1:27:ef:3a:56:00:e0:41:01:00:9d:95:8c:f3:
2f:db:ab:78:de:b1:eb:a9:08:38:f1:68:c8:4e:ad:0a:76:82:
18:da:97:9b:f1:c2:2c:b9:b5:5f:44:2d:56:f6:4f:a1:ca:a3:
39:da:ab:a3:01:39:cd:15:bb:f1:61:b6:8c:5f:8d:d4:c0:20:
7b:b9:1d:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:52:51 2025 by rpki-client