Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/3230362e3132352e34302e302f32312d3234203d3e203335393136.roa
File: 3230362e3132352e34302e302f32312d3234203d3e203335393136.roa (raw, json)
Hash identifier: mXQtRemo5yBCU8gLirW9uXjtORa91Z5m/1/5jO6BTqU=
Subject key identifier: 0F:75:B7:9C:A4:26:D2:66:88:95:5B:34:32:B7:45:5C:D0:C0:65:95
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 1ECF84A29883EE1FB94702C5032EEBD81A1975D7
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/3230362e3132352e34302e302f32312d3234203d3e203335393136.roa
Signing time: Sun 30 Jul 2023 02:00:00 +0000
ROA not before: Sun 30 Jul 2023 01:55:00 +0000
ROA not after: Tue 30 Jul 2024 02:00:00 +0000
asID: 35916
IP address blocks: 206.125.40.0/21 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:cf:84:a2:98:83:ee:1f:b9:47:02:c5:03:2e:eb:d8:1a:19:75:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: Jul 30 01:55:00 2023 GMT
Not After : Jul 30 02:00:00 2024 GMT
Subject: CN=3082010A0282010100D5A27FE701CC6DBA5A5B0398A7D5E962748BB83FADE46A0FABA0A8F959854BE599AE2669A55A864731A5AEAEF28C748FF81E1E5629A74D819E63357875FD3C8C2715D4DEFADAAC15F8C4283C4FE0D8005927F1C687CB2A0060FC162FA9F678CDC0953F330853E16E6887DAF3DF02661270ED0E875A538EDA8574A1B1BF4A79861EDD02963CA19C7C209E7691318C38A150679A5E8431B2F0B6265AB82808120138E61E2590DA5B9F1BAEF030C2C80BC703C1B8E54D1498AB24C4252E456A3C47264E4609A32DA353FAC23CAE64ED1E8AF2F6184E8003712FB9DB7DDCCD533E05B5987FF99462DF834104419EE1E53BA926D8036490BA8D5E7433E8DE2CFA5A090203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a2:7f:e7:01:cc:6d:ba:5a:5b:03:98:a7:d5:
e9:62:74:8b:b8:3f:ad:e4:6a:0f:ab:a0:a8:f9:59:
85:4b:e5:99:ae:26:69:a5:5a:86:47:31:a5:ae:ae:
f2:8c:74:8f:f8:1e:1e:56:29:a7:4d:81:9e:63:35:
78:75:fd:3c:8c:27:15:d4:de:fa:da:ac:15:f8:c4:
28:3c:4f:e0:d8:00:59:27:f1:c6:87:cb:2a:00:60:
fc:16:2f:a9:f6:78:cd:c0:95:3f:33:08:53:e1:6e:
68:87:da:f3:df:02:66:12:70:ed:0e:87:5a:53:8e:
da:85:74:a1:b1:bf:4a:79:86:1e:dd:02:96:3c:a1:
9c:7c:20:9e:76:91:31:8c:38:a1:50:67:9a:5e:84:
31:b2:f0:b6:26:5a:b8:28:08:12:01:38:e6:1e:25:
90:da:5b:9f:1b:ae:f0:30:c2:c8:0b:c7:03:c1:b8:
e5:4d:14:98:ab:24:c4:25:2e:45:6a:3c:47:26:4e:
46:09:a3:2d:a3:53:fa:c2:3c:ae:64:ed:1e:8a:f2:
f6:18:4e:80:03:71:2f:b9:db:7d:dc:cd:53:3e:05:
b5:98:7f:f9:94:62:df:83:41:04:41:9e:e1:e5:3b:
a9:26:d8:03:64:90:ba:8d:5e:74:33:e8:de:2c:fa:
5a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:75:B7:9C:A4:26:D2:66:88:95:5B:34:32:B7:45:5C:D0:C0:65:95
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/3230362e3132352e34302e302f32312d3234203d3e203335393136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.125.40.0/21
Signature Algorithm: sha256WithRSAEncryption
80:4b:82:cc:9e:84:b5:6f:cc:77:7b:82:dc:ee:e0:a2:9e:21:
d4:ff:19:b1:24:8b:bf:ad:30:1f:d2:27:92:27:31:0a:89:f9:
4c:64:09:d6:a8:b7:e1:2b:4e:88:eb:7a:e7:53:b7:1e:b3:a6:
7c:96:89:26:44:3e:1d:0a:2d:6b:f4:d3:b5:5b:3d:46:68:27:
0a:61:88:59:d5:e1:3d:a7:1f:97:6e:a7:1a:b3:24:92:fe:05:
da:90:e9:09:8e:87:64:37:5a:60:ff:6a:f4:6a:63:e5:ff:23:
43:56:67:b3:63:66:b5:ac:46:fa:b9:16:09:6f:4a:20:20:6f:
93:75:be:99:08:8c:3b:f4:2e:26:db:64:78:68:ad:49:62:74:
a5:82:b7:b7:aa:47:58:6f:b1:91:13:6e:f4:15:a2:6b:0d:a2:
a6:6c:13:9d:b0:02:60:4c:ee:28:68:4b:e1:d5:da:af:37:41:
e7:ff:35:91:36:46:4e:80:d6:41:ef:da:3a:9c:c3:40:43:ef:
97:56:60:f8:c7:08:c4:97:fa:3c:41:ef:5f:1b:cc:8d:cf:f8:
9e:4b:b8:95:da:37:4b:dd:e6:be:4a:e2:74:44:13:b3:21:30:
5d:1d:d0:c1:fb:1c:7a:e1:a7:56:83:16:81:b2:6d:3d:f1:d9:
23:59:0f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 9 22:55:20 2023 by rpki-client on console-fra.rpki-client.org