Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/39362e34332e38302e302f32302d3234203d3e203335393136.roa
File: 39362e34332e38302e302f32302d3234203d3e203335393136.roa (raw, json)
Hash identifier: 0cQiLEYrYnX4EJ8avj9PHSZedCdQfzUxqzW1am5Ci3k=
Subject key identifier: 53:12:84:47:8C:B8:98:8B:9B:D1:72:7D:08:AC:FA:98:9F:F6:98:A3
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 4EB556C7F9157887C71579B6F050EDF8D54BA759
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/39362e34332e38302e302f32302d3234203d3e203335393136.roa
Signing time: Sun 30 Jul 2023 02:00:01 +0000
ROA not before: Sun 30 Jul 2023 01:55:01 +0000
ROA not after: Tue 30 Jul 2024 02:00:01 +0000
asID: 35916
IP address blocks: 96.43.80.0/20 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:b5:56:c7:f9:15:78:87:c7:15:79:b6:f0:50:ed:f8:d5:4b:a7:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: Jul 30 01:55:01 2023 GMT
Not After : Jul 30 02:00:01 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:39:4f:7a:02:f0:24:45:b7:74:7b:85:e0:19:
4f:0e:b7:c1:84:10:fa:74:21:6a:c8:57:e7:7d:f2:
07:d7:8c:1c:12:2e:32:05:ad:74:da:2e:98:16:68:
2d:31:11:fe:24:5d:ac:a1:7c:14:b8:09:fc:e0:f3:
b7:59:5f:1e:29:5d:7d:97:44:a7:0d:ed:cd:0f:71:
20:e2:8e:fa:db:a6:d4:e7:db:e4:3f:a9:58:1a:c4:
da:51:37:2d:ae:06:9c:c5:a2:2f:b5:09:eb:b5:22:
5c:52:e9:70:07:b5:ac:f0:e0:7d:f0:1c:f2:d6:c6:
ca:c4:aa:32:99:ba:67:10:f4:70:0e:d1:cc:03:d0:
44:ef:bf:89:fe:19:99:0a:6c:1a:a0:a5:e5:92:75:
b0:60:05:19:01:2f:23:5e:c3:75:91:83:5a:52:4c:
11:69:2c:65:7a:54:ac:bb:a1:f6:cf:9e:23:1f:ee:
92:ea:dc:a4:be:09:81:09:45:f8:a8:d2:6b:b8:2d:
06:c3:d7:30:41:68:ce:31:ac:af:29:0d:fa:0c:f8:
cb:eb:25:90:e8:af:f8:14:e9:6e:11:9d:ba:59:a7:
24:70:6d:8d:e1:7b:4a:4c:6b:5d:61:7e:bc:91:79:
c7:ad:0e:6f:cd:e1:f0:26:55:30:60:1a:07:56:c2:
16:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:12:84:47:8C:B8:98:8B:9B:D1:72:7D:08:AC:FA:98:9F:F6:98:A3
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/39362e34332e38302e302f32302d3234203d3e203335393136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.43.80.0/20
Signature Algorithm: sha256WithRSAEncryption
2c:fb:00:83:91:4a:4c:cc:23:bd:74:79:e2:bf:6b:9c:3e:af:
52:b5:ae:36:26:e8:42:a0:18:97:88:37:3d:21:7f:fe:0a:20:
e6:61:90:ac:53:68:cd:ad:31:2b:b3:9b:12:36:50:34:62:98:
a0:84:9d:de:fe:ff:39:66:1b:ba:20:b0:dd:23:ac:50:9f:62:
57:3f:cf:c6:e1:8b:71:c0:49:f8:f3:be:5e:0b:a8:02:ea:76:
89:c9:a4:c5:62:38:9f:6c:4c:48:17:5d:bc:80:87:07:14:70:
99:a8:58:f5:ab:0b:d9:d4:05:66:4e:6c:37:16:83:44:ac:c1:
d4:c4:23:e0:cd:e7:68:03:9f:32:b0:75:73:e2:50:9f:da:b3:
32:ff:e7:d8:0d:aa:d1:13:f2:2c:43:c2:e2:cd:20:0a:90:d8:
8a:07:c6:55:10:7d:1e:25:ec:70:7e:1c:66:10:59:5a:68:00:
75:b7:a8:7e:4d:19:23:ac:3b:10:de:3a:e5:a0:3d:e4:fb:6a:
10:90:e1:0f:83:f9:d3:1d:82:60:59:9a:2f:59:eb:c1:9b:c2:
48:af:50:b6:b6:7e:e1:fc:b8:b5:d5:d3:9d:04:19:92:3a:e4:
ab:53:93:e6:c5:78:45:68:7f:dd:c8:77:7b:75:bd:2f:8a:03:
89:cd:87:23
-----BEGIN CERTIFICATE-----
MIIHZDCCBkygAwIBAgIUTrVWx/kVeIfHFXm28FDt+NVLp1kwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyODkwMTk0MDU5N2M0OGY3ODVhOTFkNzIxMmI5Y2E3MWIx
ZjFmMjBhZGU2ODU2OGU1YjEwHhcNMjMwNzMwMDE1NTAxWhcNMjQwNzMwMDIwMDAx
WjCCAi0xggIpMIICJQYDVQQDE4ICHDMwODIwMTBBMDI4MjAxMDEwMEFCMzk0RjdB
MDJGMDI0NDVCNzc0N0I4NUUwMTk0RjBFQjdDMTg0MTBGQTc0MjE2QUM4NTdFNzdE
RjIwN0Q3OEMxQzEyMkUzMjA1QUQ3NERBMkU5ODE2NjgyRDMxMTFGRTI0NURBQ0Ex
N0MxNEI4MDlGQ0UwRjNCNzU5NUYxRTI5NUQ3RDk3NDRBNzBERURDRDBGNzEyMEUy
OEVGQURCQTZENEU3REJFNDNGQTk1ODFBQzREQTUxMzcyREFFMDY5Q0M1QTIyRkI1
MDlFQkI1MjI1QzUyRTk3MDA3QjVBQ0YwRTA3REYwMUNGMkQ2QzZDQUM0QUEzMjk5
QkE2NzEwRjQ3MDBFRDFDQzAzRDA0NEVGQkY4OUZFMTk5OTBBNkMxQUEwQTVFNTky
NzVCMDYwMDUxOTAxMkYyMzVFQzM3NTkxODM1QTUyNEMxMTY5MkM2NTdBNTRBQ0JC
QTFGNkNGOUUyMzFGRUU5MkVBRENBNEJFMDk4MTA5NDVGOEE4RDI2QkI4MkQwNkMz
RDczMDQxNjhDRTMxQUNBRjI5MERGQTBDRjhDQkVCMjU5MEU4QUZGODE0RTk2RTEx
OURCQTU5QTcyNDcwNkQ4REUxN0I0QTRDNkI1RDYxN0VCQzkxNzlDN0FEMEU2RkNE
RTFGMDI2NTUzMDYwMUEwNzU2QzIxNkI3MDIwMzAxMDAwMTCCASIwDQYJKoZIhvcN
AQEBBQADggEPADCCAQoCggEBAKs5T3oC8CRFt3R7heAZTw63wYQQ+nQhashX533y
B9eMHBIuMgWtdNoumBZoLTER/iRdrKF8FLgJ/ODzt1lfHildfZdEpw3tzQ9xIOKO
+tum1Ofb5D+pWBrE2lE3La4GnMWiL7UJ67UiXFLpcAe1rPDgffAc8tbGysSqMpm6
ZxD0cA7RzAPQRO+/if4ZmQpsGqCl5ZJ1sGAFGQEvI17DdZGDWlJMEWksZXpUrLuh
9s+eIx/ukurcpL4JgQlF+KjSa7gtBsPXMEFozjGsrykN+gz4y+slkOiv+BTpbhGd
ulmnJHBtjeF7SkxrXWF+vJF5x60Ob83h8CZVMGAaB1bCFrcCAwEAAaOCAmgwggJk
MB0GA1UdDgQWBBRTEoRHjLiYi5vRcn0IrPqYn/aYozAfBgNVHSMEGDAWgBTcYnaI
MLGxIBcWUY1eamUlsCNZOjAOBgNVHQ8BAf8EBAMCB4AwZQYDVR0fBF4wXDBaoFig
VoZUcnN5bmM6Ly9ycGtpLm11bHRhY29tLmNvbS9yZXBvL01DT01DQS8wL0RDNjI3
Njg4MzBCMUIxMjAxNzE2NTE4RDVFNkE2NTI1QjAyMzU5M0EuY3JsMIHzBggrBgEF
BQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQv
cmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMt
MjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlh
OC80ZGMwN2JhNi1kMzYwLTRjYTUtYTg2MC02MmU0ZTU0NzZmODQvODkwMTk0MDU5
N2M0OGY3ODVhOTFkNzIxMmI5Y2E3MWIxZjFmMjBhZGU2ODU2OGU1YjEuY2VyMHoG
CCsGAQUFBwELBG4wbDBqBggrBgEFBQcwC4ZecnN5bmM6Ly9ycGtpLm11bHRhY29t
LmNvbS9yZXBvL01DT01DQS8wLzM5MzYyZTM0MzMyZTM4MzAyZTMwMmYzMjMwMmQz
MjM0MjAzZDNlMjAzMzM1MzkzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEYCtQMA0GCSqGSIb3DQEB
CwUAA4IBAQAs+wCDkUpMzCO9dHniv2ucPq9Sta42JuhCoBiXiDc9IX/+CiDmYZCs
U2jNrTErs5sSNlA0YpighJ3e/v85Zhu6ILDdI6xQn2JXP8/G4YtxwEn4875eC6gC
6naJyaTFYjifbExIF128gIcHFHCZqFj1qwvZ1AVmTmw3FoNErMHUxCPgzedoA58y
sHVz4lCf2rMy/+fYDarRE/IsQ8LizSAKkNiKB8ZVEH0eJexwfhxmEFlaaAB1t6h+
TRkjrDsQ3jrloD3k+2oQkOEPg/nTHYJgWZovWevBm8JIr1C2tn7h/Li11dOdBBmS
OuSrU5PmxXhFaH/dyHd7db0vigOJzYcj
-----END CERTIFICATE-----
Generated at Wed Aug 9 22:55:20 2023 by rpki-client on console-fra.rpki-client.org