Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/3137332e38322e302e302f31362d3234203d3e203335393136.roa
File: 3137332e38322e302e302f31362d3234203d3e203335393136.roa (raw, json)
Hash identifier: pMfsBUPSuBLK0onol9EJS5nYlgAttdoDcQZ1VDd04vE=
Subject key identifier: 24:E0:49:F2:99:91:7F:81:A7:0C:58:11:AE:91:D4:26:99:F6:C4:C2
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 2F40659CE20EEA2306E04C52B8F5043874333584
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/3137332e38322e302e302f31362d3234203d3e203335393136.roa
Signing time: Sat 29 Jul 2023 23:00:01 +0000
ROA not before: Sat 29 Jul 2023 22:55:01 +0000
ROA not after: Mon 29 Jul 2024 23:00:01 +0000
asID: 35916
IP address blocks: 173.82.0.0/16 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:40:65:9c:e2:0e:ea:23:06:e0:4c:52:b8:f5:04:38:74:33:35:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: Jul 29 22:55:01 2023 GMT
Not After : Jul 29 23:00:01 2024 GMT
Subject: CN=3082010A0282010100A55C7AD2A6AF8897F6E97C8DA65C883B7A051BE4342D1C7FEDB1CD0476DA01EE963B397EDFFA439A9233535E20E9161083BA608BE4F1B78672A3B16A74CA914335E2883DD48CB10DE395AA7870A7B1AAA432E4E82619A0069DFAFA77D609C78C2E3BB4322E19060BCDBFBBD1FCABA1CB16B1FF8F5CB98681B95E31EABDABD78DE38FDDA5F2E65CBCC56E4AA0ED5B355111487282DDD5CD1EDDDAC1E0DC2604CE51CBD1C0C0CE1799CEB9192782683B05E9504BEE9DCF5F64A28BDE6D6F804518BB442261A1F6AB7FA516231D1FAF864690DA27EA8F8B8E9965A281F0214836FE8B17811EABA105F66547CF3237F91FC4C470152B651EDBAE8A76EB3876C4E3010203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5c:7a:d2:a6:af:88:97:f6:e9:7c:8d:a6:5c:
88:3b:7a:05:1b:e4:34:2d:1c:7f:ed:b1:cd:04:76:
da:01:ee:96:3b:39:7e:df:fa:43:9a:92:33:53:5e:
20:e9:16:10:83:ba:60:8b:e4:f1:b7:86:72:a3:b1:
6a:74:ca:91:43:35:e2:88:3d:d4:8c:b1:0d:e3:95:
aa:78:70:a7:b1:aa:a4:32:e4:e8:26:19:a0:06:9d:
fa:fa:77:d6:09:c7:8c:2e:3b:b4:32:2e:19:06:0b:
cd:bf:bb:d1:fc:ab:a1:cb:16:b1:ff:8f:5c:b9:86:
81:b9:5e:31:ea:bd:ab:d7:8d:e3:8f:dd:a5:f2:e6:
5c:bc:c5:6e:4a:a0:ed:5b:35:51:11:48:72:82:dd:
d5:cd:1e:dd:da:c1:e0:dc:26:04:ce:51:cb:d1:c0:
c0:ce:17:99:ce:b9:19:27:82:68:3b:05:e9:50:4b:
ee:9d:cf:5f:64:a2:8b:de:6d:6f:80:45:18:bb:44:
22:61:a1:f6:ab:7f:a5:16:23:1d:1f:af:86:46:90:
da:27:ea:8f:8b:8e:99:65:a2:81:f0:21:48:36:fe:
8b:17:81:1e:ab:a1:05:f6:65:47:cf:32:37:f9:1f:
c4:c4:70:15:2b:65:1e:db:ae:8a:76:eb:38:76:c4:
e3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E0:49:F2:99:91:7F:81:A7:0C:58:11:AE:91:D4:26:99:F6:C4:C2
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/3137332e38322e302e302f31362d3234203d3e203335393136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
173.82.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1f:e4:55:eb:2d:8f:d7:97:90:bb:e9:fb:ad:e3:5c:26:6d:87:
9a:72:49:03:db:ae:58:85:14:b9:cc:8d:84:f0:58:db:0f:cb:
ee:1e:22:9c:84:57:cd:b3:48:9e:41:b8:aa:98:b1:c6:80:0a:
77:f5:13:86:da:14:b2:ce:8a:37:4f:5f:29:8c:d9:ba:49:50:
d0:ef:ca:00:28:1d:0f:82:e8:1e:e2:f3:d4:36:13:ff:a8:69:
d0:16:5a:d7:ca:af:88:f7:73:ec:8b:08:a5:db:55:1d:1e:61:
82:31:96:ae:df:a4:52:6b:6f:c6:31:c8:1f:e0:03:a0:a0:60:
d9:02:82:44:24:3d:d2:de:c9:f7:37:46:1b:3d:6a:08:52:6f:
d3:6c:5e:57:dd:c2:19:ae:72:a7:dc:ce:8e:16:54:a9:62:71:
42:87:1e:95:15:ee:57:6f:6c:6e:1e:9b:96:9c:f0:55:95:d6:
c8:7b:62:2a:37:c5:25:d6:02:7b:72:6d:3c:ed:44:3d:0b:31:
fe:a5:61:ec:2e:b4:2b:90:1f:86:a7:a1:66:45:77:26:5b:ca:
84:8f:27:5a:74:66:a4:b3:09:5b:05:5a:a7:27:50:9b:1e:07:
1d:39:25:d0:67:70:8e:ee:e1:58:f0:64:42:78:7d:8e:46:15:
d3:82:0b:1a
-----BEGIN CERTIFICATE-----
MIIHYzCCBkugAwIBAgIUL0BlnOIO6iMG4ExSuPUEOHQzNYQwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyODkwMTk0MDU5N2M0OGY3ODVhOTFkNzIxMmI5Y2E3MWIx
ZjFmMjBhZGU2ODU2OGU1YjEwHhcNMjMwNzI5MjI1NTAxWhcNMjQwNzI5MjMwMDAx
WjCCAi0xggIpMIICJQYDVQQDE4ICHDMwODIwMTBBMDI4MjAxMDEwMEE1NUM3QUQy
QTZBRjg4OTdGNkU5N0M4REE2NUM4ODNCN0EwNTFCRTQzNDJEMUM3RkVEQjFDRDA0
NzZEQTAxRUU5NjNCMzk3RURGRkE0MzlBOTIzMzUzNUUyMEU5MTYxMDgzQkE2MDhC
RTRGMUI3ODY3MkEzQjE2QTc0Q0E5MTQzMzVFMjg4M0RENDhDQjEwREUzOTVBQTc4
NzBBN0IxQUFBNDMyRTRFODI2MTlBMDA2OURGQUZBNzdENjA5Qzc4QzJFM0JCNDMy
MkUxOTA2MEJDREJGQkJEMUZDQUJBMUNCMTZCMUZGOEY1Q0I5ODY4MUI5NUUzMUVB
QkRBQkQ3OERFMzhGRERBNUYyRTY1Q0JDQzU2RTRBQTBFRDVCMzU1MTExNDg3Mjgy
RERENUNEMUVERERBQzFFMERDMjYwNENFNTFDQkQxQzBDMENFMTc5OUNFQjkxOTI3
ODI2ODNCMDVFOTUwNEJFRTlEQ0Y1RjY0QTI4QkRFNkQ2RjgwNDUxOEJCNDQyMjYx
QTFGNkFCN0ZBNTE2MjMxRDFGQUY4NjQ2OTBEQTI3RUE4RjhCOEU5OTY1QTI4MUYw
MjE0ODM2RkU4QjE3ODExRUFCQTEwNUY2NjU0N0NGMzIzN0Y5MUZDNEM0NzAxNTJC
NjUxRURCQUU4QTc2RUIzODc2QzRFMzAxMDIwMzAxMDAwMTCCASIwDQYJKoZIhvcN
AQEBBQADggEPADCCAQoCggEBAKVcetKmr4iX9ul8jaZciDt6BRvkNC0cf+2xzQR2
2gHuljs5ft/6Q5qSM1NeIOkWEIO6YIvk8beGcqOxanTKkUM14og91IyxDeOVqnhw
p7GqpDLk6CYZoAad+vp31gnHjC47tDIuGQYLzb+70fyrocsWsf+PXLmGgbleMeq9
q9eN44/dpfLmXLzFbkqg7Vs1URFIcoLd1c0e3drB4NwmBM5Ry9HAwM4Xmc65GSeC
aDsF6VBL7p3PX2Sii95tb4BFGLtEImGh9qt/pRYjHR+vhkaQ2ifqj4uOmWWigfAh
SDb+ixeBHquhBfZlR88yN/kfxMRwFStlHtuuinbrOHbE4wECAwEAAaOCAmcwggJj
MB0GA1UdDgQWBBQk4EnymZF/gacMWBGukdQmmfbEwjAfBgNVHSMEGDAWgBTcYnaI
MLGxIBcWUY1eamUlsCNZOjAOBgNVHQ8BAf8EBAMCB4AwZQYDVR0fBF4wXDBaoFig
VoZUcnN5bmM6Ly9ycGtpLm11bHRhY29tLmNvbS9yZXBvL01DT01DQS8wL0RDNjI3
Njg4MzBCMUIxMjAxNzE2NTE4RDVFNkE2NTI1QjAyMzU5M0EuY3JsMIHzBggrBgEF
BQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQv
cmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMt
MjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlh
OC80ZGMwN2JhNi1kMzYwLTRjYTUtYTg2MC02MmU0ZTU0NzZmODQvODkwMTk0MDU5
N2M0OGY3ODVhOTFkNzIxMmI5Y2E3MWIxZjFmMjBhZGU2ODU2OGU1YjEuY2VyMHoG
CCsGAQUFBwELBG4wbDBqBggrBgEFBQcwC4ZecnN5bmM6Ly9ycGtpLm11bHRhY29t
LmNvbS9yZXBvL01DT01DQS8wLzMxMzczMzJlMzgzMjJlMzAyZTMwMmYzMTM2MmQz
MjM0MjAzZDNlMjAzMzM1MzkzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMArVIwDQYJKoZIhvcNAQEL
BQADggEBAB/kVestj9eXkLvp+63jXCZth5pySQPbrliFFLnMjYTwWNsPy+4eIpyE
V82zSJ5BuKqYscaACnf1E4baFLLOijdPXymM2bpJUNDvygAoHQ+C6B7i89Q2E/+o
adAWWtfKr4j3c+yLCKXbVR0eYYIxlq7fpFJrb8YxyB/gA6CgYNkCgkQkPdLeyfc3
Rhs9aghSb9NsXlfdwhmucqfczo4WVKlicUKHHpUV7ldvbG4em5ac8FWV1sh7Yio3
xSXWAntybTztRD0LMf6lYewutCuQH4anoWZFdyZbyoSPJ1p0ZqSzCVsFWqcnUJse
Bx05JdBncI7u4VjwZEJ4fY5GFdOCCxo=
-----END CERTIFICATE-----
Generated at Wed Aug 9 22:55:20 2023 by rpki-client on console-fra.rpki-client.org