Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/3137332e38322e3138332e302f32342d3234203d3e20333935363831.roa
File: 3137332e38322e3138332e302f32342d3234203d3e20333935363831.roa (raw, json)
Hash identifier: ppQX8NdN791WjlTiJjjfZjDudb3399qylaH+1SJk0QY=
Subject key identifier: 61:FC:D0:86:59:63:BD:EC:D9:C9:7B:BE:00:EE:BB:5C:96:30:0F:E5
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 1523319F34D45683CEC2EDAE250C0CB293CFD016
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/3137332e38322e3138332e302f32342d3234203d3e20333935363831.roa
Signing time: Wed 24 May 2023 20:00:01 +0000
ROA not before: Wed 24 May 2023 19:55:01 +0000
ROA not after: Fri 24 May 2024 20:00:01 +0000
asID: 395681
IP address blocks: 173.82.183.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:23:31:9f:34:d4:56:83:ce:c2:ed:ae:25:0c:0c:b2:93:cf:d0:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: May 24 19:55:01 2023 GMT
Not After : May 24 20:00:01 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c1:7a:5f:b9:cd:fe:54:f8:d1:91:9a:38:78:
09:b3:b8:97:87:71:15:d8:52:8d:0a:80:0e:38:28:
28:21:bc:1c:c9:01:72:45:18:7b:58:2e:98:c8:d4:
b7:c6:f3:fe:c3:3c:26:99:13:8e:af:a0:24:94:77:
a4:ac:f4:33:f2:50:82:11:69:d2:7e:38:8b:27:90:
d2:bd:10:ba:6f:cc:b4:08:29:ec:80:68:e6:eb:17:
9e:fe:97:87:5d:8c:af:31:2f:ba:f2:4a:3a:e6:98:
0a:3f:76:7a:b2:77:51:78:00:d3:eb:c5:71:20:c9:
b6:bd:f3:5f:1a:2f:8d:42:3a:00:e2:f2:d5:0c:49:
f4:18:9d:7c:7f:47:4d:97:7b:fb:35:f7:77:78:d0:
29:bd:9c:55:98:f4:bd:3b:06:58:5e:18:7d:e0:a5:
9a:f3:ba:85:44:10:fc:47:55:4c:ed:2f:e0:a0:2a:
93:a0:c2:d7:68:fd:4d:76:3e:74:34:0f:90:36:7c:
b0:21:71:98:eb:73:0c:b0:23:0c:82:dd:ce:ee:2a:
2b:fe:89:6c:cb:0b:2f:97:37:ac:e6:3b:82:fc:00:
f7:40:6f:49:50:14:5a:e4:6d:a0:0a:11:ac:04:fc:
ce:05:c8:3a:94:82:f8:28:67:57:e2:08:08:fa:cd:
36:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:FC:D0:86:59:63:BD:EC:D9:C9:7B:BE:00:EE:BB:5C:96:30:0F:E5
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/3137332e38322e3138332e302f32342d3234203d3e20333935363831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
173.82.183.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:63:0a:04:06:d9:87:40:7e:ff:b0:e3:05:bf:97:ed:bc:f9:
9e:e8:66:00:79:9f:2c:5d:37:c6:c8:2f:ad:38:54:f9:f7:7a:
a0:30:46:0a:8b:66:d7:8c:b8:f3:3d:35:b5:0f:27:ec:1c:02:
81:f8:eb:27:21:69:23:11:ca:f2:52:da:bb:fb:a1:e6:84:f7:
40:77:55:4d:c6:0f:8b:72:30:50:c8:02:8e:f7:bb:44:8d:01:
ef:a2:21:aa:89:79:73:55:d3:d7:ec:e3:30:b6:16:43:40:b8:
46:3c:8f:38:4e:3d:0e:3a:2b:35:6a:4b:e1:16:69:27:eb:aa:
9b:7f:89:2c:3f:14:85:e9:81:10:5c:1b:50:bd:a5:d5:13:fe:
7e:ba:51:00:f1:d4:6a:44:31:eb:00:c2:8b:ca:3a:ae:e1:e1:
69:98:53:3a:0a:d5:7d:bc:fc:f8:30:59:ee:e5:df:60:09:30:
40:f4:68:97:55:84:85:55:3a:08:e2:6a:ee:b4:c2:80:5a:5a:
4e:24:b7:6f:59:6d:d3:d0:1c:3b:62:82:fd:be:d7:fa:63:c3:
1f:c1:13:24:69:a1:2d:37:5b:8d:1d:ca:0a:21:78:45:d0:3f:
d8:a2:e1:f7:d8:3a:01:4d:ea:52:99:8d:ed:2f:0e:b5:d9:a4:
a2:ae:a6:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 9 22:59:11 2023 by rpki-client on console-ams.rpki-client.org