Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/32332e3233342e3139352e302f32342d3234203d3e20333935363831.roa
File: 32332e3233342e3139352e302f32342d3234203d3e20333935363831.roa (raw, json)
Hash identifier: vbMLcoDisylPFeYGCMPscgch616SOgRdcNeHdP0XRS8=
Subject key identifier: 00:1C:1B:43:8C:11:12:AB:A6:68:67:AE:88:A2:8E:63:B9:D9:B0:0F
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 7C923ED2738CD99511C4860FB4AE4B6411142495
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/32332e3233342e3139352e302f32342d3234203d3e20333935363831.roa
Signing time: Sat 29 Jul 2023 19:00:00 +0000
ROA not before: Sat 29 Jul 2023 18:55:00 +0000
ROA not after: Mon 29 Jul 2024 19:00:00 +0000
asID: 395681
IP address blocks: 23.234.195.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:92:3e:d2:73:8c:d9:95:11:c4:86:0f:b4:ae:4b:64:11:14:24:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: Jul 29 18:55:00 2023 GMT
Not After : Jul 29 19:00:00 2024 GMT
Subject: CN=3082010A0282010100C28A91CC110B591112269D3B8563AF50BA4894A90334ACD777FB289077805FD8442BDEDFCB364C54E698030CC29A0251396E7B46A560F9ED1DBC7EEBA2DBC9B1DB92201813F948708D1A347D66F0AE79BED681C6ED6545A3A15FE08482201532425259574822FCDBF0D700A5073B0CDB6C6FDB05E691B0998061DB8EDF2BA8E3CC2F3C01A3630035A0F1CF227B3AF6B67DBE3ADAB0D44A9E140400780DE3F0C1A5DFC54FB1CBA1D3659A96B09D001025ABCB74A017C88D15F6756FF1C58EE1F6C418E79C9895E246909990A83A41C370338D5308F57138DD09F12F7AC29BA3D0D9BCE013D19689870A528487D15D6B3662CDA36D68318FB21F9ECF45C4AED3F50203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8a:91:cc:11:0b:59:11:12:26:9d:3b:85:63:
af:50:ba:48:94:a9:03:34:ac:d7:77:fb:28:90:77:
80:5f:d8:44:2b:de:df:cb:36:4c:54:e6:98:03:0c:
c2:9a:02:51:39:6e:7b:46:a5:60:f9:ed:1d:bc:7e:
eb:a2:db:c9:b1:db:92:20:18:13:f9:48:70:8d:1a:
34:7d:66:f0:ae:79:be:d6:81:c6:ed:65:45:a3:a1:
5f:e0:84:82:20:15:32:42:52:59:57:48:22:fc:db:
f0:d7:00:a5:07:3b:0c:db:6c:6f:db:05:e6:91:b0:
99:80:61:db:8e:df:2b:a8:e3:cc:2f:3c:01:a3:63:
00:35:a0:f1:cf:22:7b:3a:f6:b6:7d:be:3a:da:b0:
d4:4a:9e:14:04:00:78:0d:e3:f0:c1:a5:df:c5:4f:
b1:cb:a1:d3:65:9a:96:b0:9d:00:10:25:ab:cb:74:
a0:17:c8:8d:15:f6:75:6f:f1:c5:8e:e1:f6:c4:18:
e7:9c:98:95:e2:46:90:99:90:a8:3a:41:c3:70:33:
8d:53:08:f5:71:38:dd:09:f1:2f:7a:c2:9b:a3:d0:
d9:bc:e0:13:d1:96:89:87:0a:52:84:87:d1:5d:6b:
36:62:cd:a3:6d:68:31:8f:b2:1f:9e:cf:45:c4:ae:
d3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:1C:1B:43:8C:11:12:AB:A6:68:67:AE:88:A2:8E:63:B9:D9:B0:0F
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/32332e3233342e3139352e302f32342d3234203d3e20333935363831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.234.195.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:02:83:4a:14:4b:fa:ca:cd:fb:eb:89:b3:67:ef:91:a3:de:
4d:b5:a3:c3:75:6d:cc:f9:2b:1d:bc:84:e0:ca:03:eb:49:36:
0b:c9:f6:91:e9:00:51:b6:c0:37:0b:41:42:e9:4f:bf:c9:02:
27:1b:eb:f0:7e:5d:d8:85:b2:87:73:00:92:0d:bc:3d:a4:a4:
a8:d5:ef:34:35:16:22:cf:7e:05:dc:fd:cf:b0:89:0f:1a:b3:
4a:af:22:7b:60:e0:7a:d5:b6:5d:b5:3c:6f:6b:58:9d:bb:2e:
3d:28:29:91:10:bf:09:03:b3:81:09:66:ae:a6:69:b7:26:b6:
c2:d3:bf:b9:f0:2b:68:37:fd:e1:f9:17:1e:d2:97:db:f6:91:
5a:13:c1:64:66:48:4a:50:c6:71:37:7f:ed:59:01:42:14:a6:
6c:43:54:8d:27:61:d8:3c:61:8e:23:3e:d7:0b:d1:f1:b8:10:
85:fb:af:f8:86:ff:87:81:27:50:13:4b:42:b2:0e:b4:2e:e6:
fb:a9:8a:37:c4:fd:3a:7d:1c:ac:d2:55:ca:14:2c:2c:bc:d7:
b4:c5:88:b5:fd:c5:51:df:69:ec:66:29:6c:47:d5:49:a1:0f:
a9:c9:9a:fa:bb:fc:1f:e3:a9:87:4d:66:b4:6f:4c:99:cb:0d:
dc:c1:88:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 9 22:55:20 2023 by rpki-client on console-fra.rpki-client.org