Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/3137302e3137382e3139322e302f31392d3234203d3e203335393136.roa
File: 3137302e3137382e3139322e302f31392d3234203d3e203335393136.roa (raw, json)
Hash identifier: orqNrqnZOBXx2vYGh5ekyUpkQNhES39kFf1x8iLNCj8=
Subject key identifier: 7B:74:CC:A6:2B:32:17:F3:37:A9:74:7A:8A:EB:35:1A:E3:A1:F5:A6
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 1D104F237728603D7685D2EB5874A8EB0FCABCDE
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/3137302e3137382e3139322e302f31392d3234203d3e203335393136.roa
Signing time: Sun 30 Jul 2023 02:00:01 +0000
ROA not before: Sun 30 Jul 2023 01:55:01 +0000
ROA not after: Tue 30 Jul 2024 02:00:01 +0000
asID: 35916
IP address blocks: 170.178.192.0/19 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:10:4f:23:77:28:60:3d:76:85:d2:eb:58:74:a8:eb:0f:ca:bc:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: Jul 30 01:55:01 2023 GMT
Not After : Jul 30 02:00:01 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:29:8c:e2:51:a2:a0:36:f3:03:19:2f:ac:f1:
61:8b:18:f3:75:7d:1e:09:9d:0e:52:a2:d7:b0:b6:
ec:1c:04:7d:c5:a7:d1:19:00:83:52:90:17:56:46:
36:94:43:bc:51:d0:02:43:42:f7:7f:4e:8c:a8:a2:
1a:85:dc:04:33:be:27:56:a4:e2:95:00:29:29:63:
e3:2c:73:d4:5a:87:b0:54:9d:07:84:79:cb:13:49:
ab:a5:7b:fd:26:73:84:7b:4c:b7:a9:ce:9b:4e:86:
09:08:5d:00:9d:d8:2e:ae:19:30:b3:be:6a:46:3b:
69:85:ac:68:00:69:0b:49:d2:bf:af:64:bf:bb:2e:
68:61:0e:b8:4c:21:54:d0:07:55:93:e1:18:ca:04:
13:da:f3:38:68:57:9b:dd:59:5e:16:07:77:f6:cf:
07:d3:c0:18:be:13:35:fd:3f:c9:9b:73:15:b6:b8:
4e:13:29:9f:41:55:0e:0a:43:2d:83:18:d6:23:3b:
32:b3:85:cd:24:94:f6:39:63:13:af:94:7a:47:fe:
59:8f:3d:c6:5d:eb:44:5e:e5:1b:4b:16:d0:df:d6:
fd:76:2c:f8:bb:1f:35:23:b4:6d:5a:71:9c:e9:c9:
84:da:d8:cd:e2:1b:0f:fa:e4:f7:61:c0:fc:89:e7:
0b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:74:CC:A6:2B:32:17:F3:37:A9:74:7A:8A:EB:35:1A:E3:A1:F5:A6
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/3137302e3137382e3139322e302f31392d3234203d3e203335393136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.178.192.0/19
Signature Algorithm: sha256WithRSAEncryption
1a:2f:55:8c:c4:5d:ac:a0:27:0f:17:0d:fe:a0:2f:99:87:51:
89:72:8c:a8:a1:d7:61:ca:79:0c:70:82:7e:8a:05:83:2a:2d:
1a:8a:fe:6c:8f:b9:7f:c4:52:e1:03:8c:64:60:49:13:a6:93:
af:f3:16:8a:cc:0e:fc:fb:33:20:ac:5e:3f:b6:fb:13:86:03:
60:24:64:c3:a9:d2:31:f9:8a:bb:a5:70:b8:8d:37:59:15:db:
36:7c:54:81:15:8f:15:68:9b:70:d2:d8:38:4c:50:a9:47:3e:
7c:04:5b:9c:ae:8d:72:67:35:b5:7e:90:6a:01:2f:a1:e2:1d:
bc:90:59:f6:9d:6e:0b:3d:36:95:27:19:ad:4c:ce:9d:6e:e9:
fb:72:75:18:2c:da:28:c0:6c:a4:65:a9:17:15:8b:bf:18:4a:
64:0b:4b:d5:eb:ba:f1:a8:e6:5c:45:39:7e:f6:88:f0:29:e2:
66:f1:16:fd:0b:0b:07:ed:b4:2d:27:93:fc:ca:11:e0:09:03:
32:42:66:ae:18:7d:e1:d7:45:74:b3:61:a3:af:2d:15:2b:ee:
40:94:57:e0:a0:79:ef:b5:cb:61:0a:dc:24:c1:be:d5:be:b2:
1b:52:ce:d3:c9:fc:d2:89:a2:2a:ff:1b:76:68:cf:8e:12:75:
16:31:1a:57
-----BEGIN CERTIFICATE-----
MIIHazCCBlOgAwIBAgIUHRBPI3coYD12hdLrWHSo6w/KvN4wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyODkwMTk0MDU5N2M0OGY3ODVhOTFkNzIxMmI5Y2E3MWIx
ZjFmMjBhZGU2ODU2OGU1YjEwHhcNMjMwNzMwMDE1NTAxWhcNMjQwNzMwMDIwMDAx
WjCCAi0xggIpMIICJQYDVQQDE4ICHDMwODIwMTBBMDI4MjAxMDEwMEQ2Mjk4Q0Uy
NTFBMkEwMzZGMzAzMTkyRkFDRjE2MThCMThGMzc1N0QxRTA5OUQwRTUyQTJEN0Iw
QjZFQzFDMDQ3REM1QTdEMTE5MDA4MzUyOTAxNzU2NDYzNjk0NDNCQzUxRDAwMjQz
NDJGNzdGNEU4Q0E4QTIxQTg1REMwNDMzQkUyNzU2QTRFMjk1MDAyOTI5NjNFMzJD
NzNENDVBODdCMDU0OUQwNzg0NzlDQjEzNDlBQkE1N0JGRDI2NzM4NDdCNENCN0E5
Q0U5QjRFODYwOTA4NUQwMDlERDgyRUFFMTkzMEIzQkU2QTQ2M0I2OTg1QUM2ODAw
NjkwQjQ5RDJCRkFGNjRCRkJCMkU2ODYxMEVCODRDMjE1NEQwMDc1NTkzRTExOENB
MDQxM0RBRjMzODY4NTc5QkRENTk1RTE2MDc3N0Y2Q0YwN0QzQzAxOEJFMTMzNUZE
M0ZDOTlCNzMxNUI2Qjg0RTEzMjk5RjQxNTUwRTBBNDMyRDgzMThENjIzM0IzMkIz
ODVDRDI0OTRGNjM5NjMxM0FGOTQ3QTQ3RkU1OThGM0RDNjVERUI0NDVFRTUxQjRC
MTZEMERGRDZGRDc2MkNGOEJCMUYzNTIzQjQ2RDVBNzE5Q0U5Qzk4NERBRDhDREUy
MUIwRkZBRTRGNzYxQzBGQzg5RTcwQjc3MDIwMzAxMDAwMTCCASIwDQYJKoZIhvcN
AQEBBQADggEPADCCAQoCggEBANYpjOJRoqA28wMZL6zxYYsY83V9HgmdDlKi17C2
7BwEfcWn0RkAg1KQF1ZGNpRDvFHQAkNC939OjKiiGoXcBDO+J1ak4pUAKSlj4yxz
1FqHsFSdB4R5yxNJq6V7/SZzhHtMt6nOm06GCQhdAJ3YLq4ZMLO+akY7aYWsaABp
C0nSv69kv7suaGEOuEwhVNAHVZPhGMoEE9rzOGhXm91ZXhYHd/bPB9PAGL4TNf0/
yZtzFba4ThMpn0FVDgpDLYMY1iM7MrOFzSSU9jljE6+Uekf+WY89xl3rRF7lG0sW
0N/W/XYs+LsfNSO0bVpxnOnJhNrYzeIbD/rk92HA/InnC3cCAwEAAaOCAm8wggJr
MB0GA1UdDgQWBBR7dMymKzIX8zepdHqK6zUa46H1pjAfBgNVHSMEGDAWgBTcYnaI
MLGxIBcWUY1eamUlsCNZOjAOBgNVHQ8BAf8EBAMCB4AwZQYDVR0fBF4wXDBaoFig
VoZUcnN5bmM6Ly9ycGtpLm11bHRhY29tLmNvbS9yZXBvL01DT01DQS8wL0RDNjI3
Njg4MzBCMUIxMjAxNzE2NTE4RDVFNkE2NTI1QjAyMzU5M0EuY3JsMIHzBggrBgEF
BQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQv
cmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMt
MjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlh
OC80ZGMwN2JhNi1kMzYwLTRjYTUtYTg2MC02MmU0ZTU0NzZmODQvODkwMTk0MDU5
N2M0OGY3ODVhOTFkNzIxMmI5Y2E3MWIxZjFmMjBhZGU2ODU2OGU1YjEuY2VyMIGA
BggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5jOi8vcnBraS5tdWx0YWNv
bS5jb20vcmVwby9NQ09NQ0EvMC8zMTM3MzAyZTMxMzczODJlMzEzOTMyMmUzMDJm
MzEzOTJkMzIzNDIwM2QzZTIwMzMzNTM5MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBaqywDANBgkq
hkiG9w0BAQsFAAOCAQEAGi9VjMRdrKAnDxcN/qAvmYdRiXKMqKHXYcp5DHCCfooF
gyotGor+bI+5f8RS4QOMZGBJE6aTr/MWiswO/PszIKxeP7b7E4YDYCRkw6nSMfmK
u6VwuI03WRXbNnxUgRWPFWibcNLYOExQqUc+fARbnK6Ncmc1tX6QagEvoeIdvJBZ
9p1uCz02lScZrUzOnW7p+3J1GCzaKMBspGWpFxWLvxhKZAtL1eu68ajmXEU5fvaI
8CniZvEW/QsLB+20LSeT/MoR4AkDMkJmrhh94ddFdLNho68tFSvuQJRX4KB577XL
YQrcJMG+1b6yG1LO08n80omiKv8bdmjPjhJ1FjEaVw==
-----END CERTIFICATE-----
Generated at Wed Aug 9 22:59:11 2023 by rpki-client on console-ams.rpki-client.org