Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/3139382e37342e39362e302f31392d3234203d3e203335393136.roa
File: 3139382e37342e39362e302f31392d3234203d3e203335393136.roa (raw, json)
Hash identifier: nsiKRrrfXHrWvC/8KuA36yknBhj4aNQzlFvWxVToBws=
Subject key identifier: BA:E9:C6:29:3C:85:3F:2F:FE:75:32:D5:1C:E2:EA:2A:F9:EC:75:C0
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 5B1C450BC477DD3C6B5713BB80B85890937027DB
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/3139382e37342e39362e302f31392d3234203d3e203335393136.roa
Signing time: Sun 30 Jul 2023 02:00:00 +0000
ROA not before: Sun 30 Jul 2023 01:55:00 +0000
ROA not after: Tue 30 Jul 2024 02:00:00 +0000
asID: 35916
IP address blocks: 198.74.96.0/19 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:1c:45:0b:c4:77:dd:3c:6b:57:13:bb:80:b8:58:90:93:70:27:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: Jul 30 01:55:00 2023 GMT
Not After : Jul 30 02:00:00 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d5:aa:0e:b9:56:d1:ef:de:4f:fb:9b:81:08:
ec:2e:46:d7:52:d5:8b:d5:11:c3:f3:50:e3:99:c9:
dc:3d:f1:fe:2e:2e:14:61:35:92:15:a7:8a:4e:42:
7e:c1:e4:49:ed:49:f4:61:88:a8:ca:08:96:e5:94:
32:cf:8a:e7:ec:08:f2:0e:0c:bd:05:38:ef:67:54:
2c:5b:e2:15:97:34:34:e9:c0:12:90:16:20:fb:4e:
1f:1a:db:24:e2:97:d5:84:3f:4a:14:bb:43:4c:56:
ea:30:cb:7a:a6:be:e8:0d:12:ce:97:66:5f:19:a6:
cf:a7:d8:d5:ca:38:19:46:98:19:0c:41:8b:d0:f1:
e2:2d:ed:2d:6a:b3:30:94:8e:f6:81:2a:6e:b4:b2:
81:d9:8e:80:e3:f5:53:f5:82:bc:47:12:3e:27:0c:
23:0a:5b:30:3a:6c:1e:52:09:5e:21:6c:de:23:81:
24:fd:98:9a:ce:31:c3:cf:52:25:ae:92:70:ee:05:
59:67:34:45:fa:d9:e4:90:01:84:7a:cf:c1:66:68:
0e:8b:33:8d:6e:7a:63:c9:c0:be:51:68:32:38:da:
15:7e:81:0a:99:6a:91:9f:00:45:0b:bc:12:82:cf:
9e:ce:26:ad:43:dd:3a:91:66:da:2e:75:bb:e4:0f:
8e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E9:C6:29:3C:85:3F:2F:FE:75:32:D5:1C:E2:EA:2A:F9:EC:75:C0
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/3139382e37342e39362e302f31392d3234203d3e203335393136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.74.96.0/19
Signature Algorithm: sha256WithRSAEncryption
21:46:91:a1:37:25:6c:1b:68:49:2f:0a:c0:84:ee:9f:fc:bc:
42:d5:c7:e3:c0:af:34:60:f5:9d:c1:4b:9f:c6:b3:41:01:2e:
49:04:48:54:5c:15:c7:f3:68:9c:25:b7:e2:dc:9a:aa:1d:65:
84:7a:23:a7:0b:7b:4f:98:85:69:9e:ac:f6:a4:d5:7a:48:ba:
50:15:a8:c3:15:39:2c:55:6b:16:81:b8:2d:51:29:16:f7:f5:
b6:d1:65:45:3c:d7:bb:3f:c4:ef:93:7f:a1:71:ba:6d:ba:d7:
96:d3:ed:9b:f9:b8:f4:b0:cb:b4:07:89:ff:f2:0b:eb:1a:04:
ce:11:32:ba:56:f0:4a:59:4f:f2:ba:be:9f:28:1e:bc:ca:ed:
9c:29:b1:d6:8e:9e:e1:70:cb:f5:7e:b2:94:61:d8:d2:95:00:
d8:12:89:6b:a5:67:9f:97:e9:e0:ba:0c:4d:d3:3b:6c:fe:d9:
a4:a6:38:18:93:3e:a0:15:8a:2c:f2:ec:c7:59:9e:18:b6:ca:
cb:5e:02:10:4d:e7:f8:be:69:a7:a3:e4:4c:a8:7d:ad:a6:9f:
5f:8d:e9:a2:e1:69:29:ed:9f:d8:84:56:24:1d:d4:76:a8:b4:
00:c5:15:71:da:b6:99:13:b9:7e:d9:ed:6d:94:e3:b5:ab:5b:
69:2f:99:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 9 22:59:11 2023 by rpki-client on console-ams.rpki-client.org