Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/36362e3135322e3136342e302f32342d3234203d3e20333935363831.roa
File: 36362e3135322e3136342e302f32342d3234203d3e20333935363831.roa (raw, json)
Hash identifier: ntndVJciDNyMjC82lVIZkF4aYPiXrkX2vGrBU42Uznk=
Subject key identifier: 87:1F:AD:91:0F:8C:28:6A:B1:7B:F0:5F:95:83:AA:B9:58:0B:61:37
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 63B558E694E0FCEE33F4B3063E779E522563C50D
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/36362e3135322e3136342e302f32342d3234203d3e20333935363831.roa
Signing time: Wed 24 May 2023 20:00:00 +0000
ROA not before: Wed 24 May 2023 19:55:00 +0000
ROA not after: Fri 24 May 2024 20:00:00 +0000
asID: 395681
IP address blocks: 66.152.164.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:b5:58:e6:94:e0:fc:ee:33:f4:b3:06:3e:77:9e:52:25:63:c5:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: May 24 19:55:00 2023 GMT
Not After : May 24 20:00:00 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:55:96:ab:4b:d4:53:fb:9d:dd:56:3c:23:1d:
ab:fc:d1:7f:2d:f3:09:e5:c1:66:dd:5c:ba:86:64:
23:34:62:59:5a:73:2e:74:20:a6:43:96:7b:e1:c6:
0e:9c:23:3f:63:bf:25:dd:57:62:bd:f5:db:ec:ef:
d1:5b:f9:97:56:c4:62:be:76:e6:d2:98:2e:d9:ee:
f2:23:94:b3:7a:a6:fb:f5:0b:13:8b:ff:01:29:5d:
54:f1:ef:b1:12:b0:df:b8:3f:f5:6c:02:1c:50:76:
3f:a1:9d:5c:3f:19:86:8f:3d:93:ad:23:62:b7:92:
f7:aa:4d:5d:ce:db:5f:ba:99:7b:b9:fe:40:0b:08:
00:ed:a4:3f:d5:2a:83:6b:9a:e5:cc:73:74:46:57:
1c:02:2e:c3:ea:d9:1d:94:6f:ca:78:a7:ac:33:2d:
ea:ec:71:b2:cf:78:4b:be:58:62:22:a6:83:a8:65:
2e:54:5e:d3:18:57:92:ff:2a:03:af:f1:bf:3f:d9:
e8:f9:a2:22:5e:d5:77:07:cb:8f:79:ee:0b:23:41:
2f:b3:7c:97:8b:50:0c:19:cc:81:e8:65:5a:bc:e8:
72:83:16:7d:e2:cd:05:c3:25:5c:49:40:8f:a1:75:
62:d9:29:0d:a8:9d:57:85:a9:15:69:6d:02:98:04:
af:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:1F:AD:91:0F:8C:28:6A:B1:7B:F0:5F:95:83:AA:B9:58:0B:61:37
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/36362e3135322e3136342e302f32342d3234203d3e20333935363831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.152.164.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:00:cc:6a:ac:71:cf:1c:9a:92:f3:5d:d8:9a:21:4e:c3:36:
23:32:da:17:ab:cb:23:1c:1d:9a:5c:f1:56:dd:bf:ec:49:db:
94:27:1e:42:87:8f:31:18:bf:89:0a:c4:2f:8e:b8:ba:98:14:
e1:09:93:7b:d7:c5:e8:c4:87:dc:ae:f4:26:e3:81:78:57:ff:
aa:37:c6:53:68:1b:e0:00:05:f0:36:11:8f:0e:d2:e0:bf:7d:
af:66:6e:10:ef:3a:e3:25:88:70:cf:ed:20:4e:cf:ef:07:1c:
68:40:59:54:68:62:56:eb:cc:cd:5b:28:6e:2f:fb:69:e4:4d:
9e:43:06:01:c6:16:5f:c8:c6:53:c0:03:6a:f0:98:55:24:8f:
d5:2a:1c:7c:2f:d5:5e:bb:9a:20:15:71:71:e0:b6:f9:16:97:
cb:05:95:e6:f4:23:7f:f3:c1:32:cf:bc:32:0a:d3:eb:02:d7:
54:43:43:62:70:23:d6:af:1c:96:bb:8f:d6:9a:a3:ec:ac:60:
7c:58:cc:23:44:9a:dc:a7:07:bc:44:22:a8:b8:54:1f:2b:1d:
bb:1d:85:d7:f6:aa:ce:70:a3:db:39:ac:45:55:cc:9c:7a:97:
a1:41:a0:ad:fb:53:84:3c:af:46:8b:15:49:a9:2e:7e:ee:68:
ed:7c:b0:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 9 22:59:11 2023 by rpki-client on console-ams.rpki-client.org