Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/3230352e3137322e3137362e302f32322d3234203d3e203335393136.roa
File: 3230352e3137322e3137362e302f32322d3234203d3e203335393136.roa (raw, json)
Hash identifier: /9DGkqaHQtFOBbCvru5Wgnz7Zd++pb3SHwzS+gwS9UU=
Subject key identifier: 58:A3:E8:31:C0:24:CF:7E:78:BF:54:96:CA:D1:F1:46:B0:A7:E9:15
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 4D3F6FB13DE6AFFBB540596D8DB9D34CA52938F4
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/3230352e3137322e3137362e302f32322d3234203d3e203335393136.roa
Signing time: Sun 30 Jul 2023 02:00:01 +0000
ROA not before: Sun 30 Jul 2023 01:55:01 +0000
ROA not after: Tue 30 Jul 2024 02:00:01 +0000
asID: 35916
IP address blocks: 205.172.176.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:3f:6f:b1:3d:e6:af:fb:b5:40:59:6d:8d:b9:d3:4c:a5:29:38:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: Jul 30 01:55:01 2023 GMT
Not After : Jul 30 02:00:01 2024 GMT
Subject: CN=3082010A028201010099CA4DF0D726EB5AF8D52F4AA75BB7DBCFF9725428B5374C984FADC2A635BCC7EDC5CC8D029577CB9CB76B92BADC036733145ED5596185C6F6111C2BD04D9ED04F0E90491992681796E6F4D07FDFC6E307E0F777D4CF9EE8F278182910269A64ED56EF719EEE41522128EB31FD5779684DD168D233F43A212CA954D34CD18FE2E25A00F46AEC8A8BA743F547BDF4029F6E1934F0000F9DEB6E9B3A47B75CF48E23A559184311F7DEEEFC0D3775717E984AD84764418E1B7A28753C50D0148C64224CBA7794F8D7BA5CC04E8B8E0EB83DEE0E9D5116B426FD648DA28AC9D0A0F5AF329748D943E07E5DECEE191D51A1A59BC91DFED6A33B259759E6F97F87CF590203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ca:4d:f0:d7:26:eb:5a:f8:d5:2f:4a:a7:5b:
b7:db:cf:f9:72:54:28:b5:37:4c:98:4f:ad:c2:a6:
35:bc:c7:ed:c5:cc:8d:02:95:77:cb:9c:b7:6b:92:
ba:dc:03:67:33:14:5e:d5:59:61:85:c6:f6:11:1c:
2b:d0:4d:9e:d0:4f:0e:90:49:19:92:68:17:96:e6:
f4:d0:7f:df:c6:e3:07:e0:f7:77:d4:cf:9e:e8:f2:
78:18:29:10:26:9a:64:ed:56:ef:71:9e:ee:41:52:
21:28:eb:31:fd:57:79:68:4d:d1:68:d2:33:f4:3a:
21:2c:a9:54:d3:4c:d1:8f:e2:e2:5a:00:f4:6a:ec:
8a:8b:a7:43:f5:47:bd:f4:02:9f:6e:19:34:f0:00:
0f:9d:eb:6e:9b:3a:47:b7:5c:f4:8e:23:a5:59:18:
43:11:f7:de:ee:fc:0d:37:75:71:7e:98:4a:d8:47:
64:41:8e:1b:7a:28:75:3c:50:d0:14:8c:64:22:4c:
ba:77:94:f8:d7:ba:5c:c0:4e:8b:8e:0e:b8:3d:ee:
0e:9d:51:16:b4:26:fd:64:8d:a2:8a:c9:d0:a0:f5:
af:32:97:48:d9:43:e0:7e:5d:ec:ee:19:1d:51:a1:
a5:9b:c9:1d:fe:d6:a3:3b:25:97:59:e6:f9:7f:87:
cf:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A3:E8:31:C0:24:CF:7E:78:BF:54:96:CA:D1:F1:46:B0:A7:E9:15
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/3230352e3137322e3137362e302f32322d3234203d3e203335393136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
205.172.176.0/22
Signature Algorithm: sha256WithRSAEncryption
89:cc:27:a6:e7:03:ba:c7:ab:24:e5:05:9e:49:93:3d:89:e0:
4b:54:90:a3:9d:d8:eb:a2:3a:ca:70:5c:9d:35:df:25:3d:da:
07:00:06:8a:b8:3a:c1:03:75:e9:40:c1:30:86:da:72:2d:aa:
b9:23:ba:f7:95:ff:19:93:bb:fb:02:76:b0:ac:9c:51:6e:01:
9e:52:ab:e1:17:6b:c2:ce:6d:70:51:fb:e0:eb:01:27:b7:c5:
dc:c7:4a:27:5f:6c:a6:3c:ec:29:44:d0:7c:c5:0e:99:00:b4:
56:fd:61:16:60:90:be:a6:5c:6c:03:49:d5:43:e8:5d:8c:bc:
e8:20:59:a2:3c:80:da:e5:6e:86:b0:17:f2:25:47:c2:c0:71:
fa:72:56:4c:3d:2d:96:93:88:8e:1c:e9:94:d3:77:25:87:1d:
4c:79:9c:b5:da:28:67:ee:21:cd:5f:d4:92:a5:bc:18:d8:d9:
39:64:e8:2b:17:80:46:99:d7:29:69:d1:82:ca:43:e3:28:68:
24:ea:fd:a2:c9:b3:23:9a:cf:a7:72:91:98:53:0f:52:1e:9e:
e3:0e:4e:99:54:e2:d1:b1:6e:80:58:61:d7:c9:c3:3e:7c:3c:
c2:b0:d8:71:63:5a:7b:f8:7a:05:05:4c:d4:1c:92:3b:33:58:
46:f0:c9:3e
-----BEGIN CERTIFICATE-----
MIIHazCCBlOgAwIBAgIUTT9vsT3mr/u1QFltjbnTTKUpOPQwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyODkwMTk0MDU5N2M0OGY3ODVhOTFkNzIxMmI5Y2E3MWIx
ZjFmMjBhZGU2ODU2OGU1YjEwHhcNMjMwNzMwMDE1NTAxWhcNMjQwNzMwMDIwMDAx
WjCCAi0xggIpMIICJQYDVQQDE4ICHDMwODIwMTBBMDI4MjAxMDEwMDk5Q0E0REYw
RDcyNkVCNUFGOEQ1MkY0QUE3NUJCN0RCQ0ZGOTcyNTQyOEI1Mzc0Qzk4NEZBREMy
QTYzNUJDQzdFREM1Q0M4RDAyOTU3N0NCOUNCNzZCOTJCQURDMDM2NzMzMTQ1RUQ1
NTk2MTg1QzZGNjExMUMyQkQwNEQ5RUQwNEYwRTkwNDkxOTkyNjgxNzk2RTZGNEQw
N0ZERkM2RTMwN0UwRjc3N0Q0Q0Y5RUU4RjI3ODE4MjkxMDI2OUE2NEVENTZFRjcx
OUVFRTQxNTIyMTI4RUIzMUZENTc3OTY4NEREMTY4RDIzM0Y0M0EyMTJDQTk1NEQz
NENEMThGRTJFMjVBMDBGNDZBRUM4QThCQTc0M0Y1NDdCREY0MDI5RjZFMTkzNEYw
MDAwRjlERUI2RTlCM0E0N0I3NUNGNDhFMjNBNTU5MTg0MzExRjdERUVFRkMwRDM3
NzU3MTdFOTg0QUQ4NDc2NDQxOEUxQjdBMjg3NTNDNTBEMDE0OEM2NDIyNENCQTc3
OTRGOEQ3QkE1Q0MwNEU4QjhFMEVCODNERUUwRTlENTExNkI0MjZGRDY0OERBMjhB
QzlEMEEwRjVBRjMyOTc0OEQ5NDNFMDdFNURFQ0VFMTkxRDUxQTFBNTlCQzkxREZF
RDZBMzNCMjU5NzU5RTZGOTdGODdDRjU5MDIwMzAxMDAwMTCCASIwDQYJKoZIhvcN
AQEBBQADggEPADCCAQoCggEBAJnKTfDXJuta+NUvSqdbt9vP+XJUKLU3TJhPrcKm
NbzH7cXMjQKVd8uct2uSutwDZzMUXtVZYYXG9hEcK9BNntBPDpBJGZJoF5bm9NB/
38bjB+D3d9TPnujyeBgpECaaZO1W73Ge7kFSISjrMf1XeWhN0WjSM/Q6ISypVNNM
0Y/i4loA9GrsiounQ/VHvfQCn24ZNPAAD53rbps6R7dc9I4jpVkYQxH33u78DTd1
cX6YSthHZEGOG3oodTxQ0BSMZCJMuneU+Ne6XMBOi44OuD3uDp1RFrQm/WSNoorJ
0KD1rzKXSNlD4H5d7O4ZHVGhpZvJHf7Wozsll1nm+X+Hz1kCAwEAAaOCAm8wggJr
MB0GA1UdDgQWBBRYo+gxwCTPfni/VJbK0fFGsKfpFTAfBgNVHSMEGDAWgBTcYnaI
MLGxIBcWUY1eamUlsCNZOjAOBgNVHQ8BAf8EBAMCB4AwZQYDVR0fBF4wXDBaoFig
VoZUcnN5bmM6Ly9ycGtpLm11bHRhY29tLmNvbS9yZXBvL01DT01DQS8wL0RDNjI3
Njg4MzBCMUIxMjAxNzE2NTE4RDVFNkE2NTI1QjAyMzU5M0EuY3JsMIHzBggrBgEF
BQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQv
cmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMt
MjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlh
OC80ZGMwN2JhNi1kMzYwLTRjYTUtYTg2MC02MmU0ZTU0NzZmODQvODkwMTk0MDU5
N2M0OGY3ODVhOTFkNzIxMmI5Y2E3MWIxZjFmMjBhZGU2ODU2OGU1YjEuY2VyMIGA
BggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5jOi8vcnBraS5tdWx0YWNv
bS5jb20vcmVwby9NQ09NQ0EvMC8zMjMwMzUyZTMxMzczMjJlMzEzNzM2MmUzMDJm
MzIzMjJkMzIzNDIwM2QzZTIwMzMzNTM5MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAs2ssDANBgkq
hkiG9w0BAQsFAAOCAQEAicwnpucDuserJOUFnkmTPYngS1SQo53Y66I6ynBcnTXf
JT3aBwAGirg6wQN16UDBMIbaci2quSO695X/GZO7+wJ2sKycUW4BnlKr4Rdrws5t
cFH74OsBJ7fF3MdKJ19spjzsKUTQfMUOmQC0Vv1hFmCQvqZcbANJ1UPoXYy86CBZ
ojyA2uVuhrAX8iVHwsBx+nJWTD0tlpOIjhzplNN3JYcdTHmctdooZ+4hzV/UkqW8
GNjZOWToKxeARpnXKWnRgspD4yhoJOr9osmzI5rPp3KRmFMPUh6e4w5OmVTi0bFu
gFhh18nDPnw8wrDYcWNae/h6BQVM1BySOzNYRvDJPg==
-----END CERTIFICATE-----
Generated at Wed Aug 9 22:59:11 2023 by rpki-client on console-ams.rpki-client.org