Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/3137332e38322e37352e302f32342d3234203d3e20333933393239.roa
File: 3137332e38322e37352e302f32342d3234203d3e20333933393239.roa (raw, json)
Hash identifier: 80dkA+L7VfulQt5HmHh6zDl9d20n/9DIYg/+3DqynOE=
Subject key identifier: 05:76:6F:A3:7D:D9:B9:45:D1:3D:EC:C6:9A:BA:00:36:59:66:6E:41
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 158A8D4EDE32C485365C742323125133A37F51A9
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/3137332e38322e37352e302f32342d3234203d3e20333933393239.roa
Signing time: Sat 29 Jul 2023 23:00:01 +0000
ROA not before: Sat 29 Jul 2023 22:55:01 +0000
ROA not after: Mon 29 Jul 2024 23:00:01 +0000
asID: 393929
IP address blocks: 173.82.75.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:8a:8d:4e:de:32:c4:85:36:5c:74:23:23:12:51:33:a3:7f:51:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: Jul 29 22:55:01 2023 GMT
Not After : Jul 29 23:00:01 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1b:f2:f2:ff:ea:67:26:45:35:cd:0e:2a:64:
5e:d2:06:d4:86:1c:d6:2d:68:c2:65:89:82:bb:29:
45:98:ac:09:75:2b:df:86:da:ff:4a:84:b9:17:1c:
72:06:86:76:46:4f:b5:71:59:09:79:3d:9f:ee:6f:
a5:28:2b:52:37:11:8d:a7:b5:b9:5d:d6:d1:de:73:
5f:7a:90:04:38:47:10:51:f4:59:f4:fb:1d:9b:ac:
be:c1:fb:52:0a:df:c9:46:6b:9c:59:ae:f0:0a:88:
bb:4b:88:bc:89:eb:16:fb:fb:3f:dc:2e:b1:a3:97:
b5:31:73:13:6d:b0:7a:b2:e5:79:97:c5:cf:7f:a0:
b9:0a:2d:e9:3a:1f:f7:0c:93:b2:04:2a:7d:32:9a:
ab:72:5b:22:bc:79:57:60:db:25:9c:5f:87:55:a3:
b3:5d:d3:05:f7:7a:16:97:0b:8e:77:33:8d:65:94:
e4:4c:cf:4d:bf:c1:83:d3:76:80:2a:3c:7c:fc:22:
9b:7e:7a:13:eb:9d:c2:a4:8a:85:fc:b7:bc:f6:df:
0f:98:4d:4b:0f:b1:b9:be:6c:bf:61:29:62:00:bd:
a7:3b:cd:23:2b:1a:82:fb:75:41:8d:37:c6:91:d8:
47:64:a2:5a:df:7a:f5:2b:b3:ec:73:c9:7a:f3:be:
ed:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:76:6F:A3:7D:D9:B9:45:D1:3D:EC:C6:9A:BA:00:36:59:66:6E:41
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/3137332e38322e37352e302f32342d3234203d3e20333933393239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
173.82.75.0/24
Signature Algorithm: sha256WithRSAEncryption
82:cf:35:c6:39:b1:e9:98:ce:ea:79:32:0d:16:fc:9a:d4:5a:
a7:d3:ab:7d:b9:e1:83:38:f6:4b:bb:a4:35:ef:db:df:6b:cb:
23:50:cc:d0:a6:67:7d:7d:3d:be:39:df:3f:d6:6d:b3:9c:e3:
d9:53:ce:6b:50:76:41:c8:4f:2e:99:95:4c:be:bf:99:57:15:
9d:a6:71:3a:03:4b:6f:02:78:c2:89:cd:05:2e:92:2a:8a:89:
14:ba:bb:f3:c8:37:3d:c3:65:05:a9:15:da:6d:86:7f:71:ab:
0d:81:33:3b:e6:f2:6f:83:40:99:95:19:6c:d1:41:6c:10:52:
84:1f:91:5e:a0:6b:2d:ec:b0:84:e0:87:7a:32:09:05:bf:f8:
17:20:af:3b:ba:d1:c4:52:74:99:f4:e3:dd:b2:8d:65:2b:60:
02:77:77:07:69:84:2d:5a:91:fb:83:53:bd:70:48:d0:c4:5b:
21:50:af:e4:67:27:e2:9d:5c:38:f1:7b:d0:f2:c2:65:2f:43:
b4:56:1f:3e:38:a3:74:e0:2c:ac:c3:96:32:dc:a7:c6:58:b8:
23:a9:fb:44:10:c4:ea:e8:da:78:08:89:b1:93:2f:43:96:56:
e9:1a:4a:4c:c9:e6:e7:68:95:29:5a:0c:44:93:6c:d3:f1:f7:
3d:a8:27:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 9 22:55:20 2023 by rpki-client on console-fra.rpki-client.org