Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/39362e34332e39352e302f32342d3234203d3e20333935363831.roa
File: 39362e34332e39352e302f32342d3234203d3e20333935363831.roa (raw, json)
Hash identifier: sZ1eAHqORVQ/7qYCCHm2YTrUYn7oyxswXWE4smKQDhw=
Subject key identifier: 19:06:32:23:E7:2C:95:41:B7:F8:34:80:47:89:DD:BB:62:82:A8:DB
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 7BBED84DA269F902D8ED58F13B7430209778C4C0
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/39362e34332e39352e302f32342d3234203d3e20333935363831.roa
Signing time: Wed 24 May 2023 20:00:01 +0000
ROA not before: Wed 24 May 2023 19:55:01 +0000
ROA not after: Fri 24 May 2024 20:00:01 +0000
asID: 395681
IP address blocks: 96.43.95.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:be:d8:4d:a2:69:f9:02:d8:ed:58:f1:3b:74:30:20:97:78:c4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: May 24 19:55:01 2023 GMT
Not After : May 24 20:00:01 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7c:1e:b8:2a:a5:3b:2c:12:c9:f4:67:36:4d:
dc:ca:43:de:67:d0:ea:e4:fc:0a:e6:db:f6:2e:49:
2b:66:0e:84:b4:64:34:64:9a:d0:47:74:71:4f:15:
01:0d:7b:9d:3b:d9:d4:71:90:54:ea:4d:45:70:06:
00:43:b3:22:57:ac:eb:3f:7e:3c:ed:eb:53:1d:cf:
a3:88:e0:d1:ec:01:08:0a:a4:86:d0:ba:12:2b:75:
d5:24:4a:8a:57:3a:1f:76:90:2b:a1:5c:4c:9c:54:
74:41:c2:d4:21:ca:24:b4:06:07:2b:16:34:ed:81:
a3:c9:7a:d7:83:8f:fe:a7:70:05:b6:4b:35:2d:33:
bb:bb:5b:eb:00:a2:75:90:7d:d9:c6:59:ac:93:7b:
e5:6c:7a:33:3d:6e:28:33:68:2c:9e:db:f8:28:67:
c6:0a:e4:34:8c:2d:68:f5:33:a1:0a:47:7b:6c:1f:
1e:41:b2:24:4f:5a:51:5e:97:93:b5:01:91:14:0e:
be:1c:c1:e7:79:24:57:cb:0b:b7:1f:04:97:0b:82:
b2:95:3d:4d:99:ac:dc:b2:93:50:10:a1:11:00:11:
0c:47:7c:b3:5e:31:8b:cc:56:38:d1:53:c0:80:d0:
0f:83:88:d6:70:e5:82:68:e8:b7:14:ef:00:d8:c5:
a1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:06:32:23:E7:2C:95:41:B7:F8:34:80:47:89:DD:BB:62:82:A8:DB
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/39362e34332e39352e302f32342d3234203d3e20333935363831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.43.95.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:0e:bf:bc:04:dc:0d:11:99:eb:e6:04:08:b8:54:7d:c5:b5:
d1:fa:0f:9a:8f:c0:ce:cb:cf:fa:77:1d:97:2b:84:7c:2d:83:
89:0f:2a:aa:6c:bf:80:c6:66:e9:1a:f1:a0:07:01:3d:64:44:
8b:75:b2:bd:b5:85:ef:f9:57:2a:ba:4c:82:78:57:66:57:3d:
92:c5:d4:0b:7c:0f:ac:14:04:0f:90:6f:0b:fe:7f:f4:e2:2c:
ce:c5:b4:db:54:e6:e2:95:7f:57:fb:f3:66:bd:10:df:a1:4b:
38:a5:23:bf:51:da:a5:68:d9:44:65:6d:36:a8:86:0b:41:c4:
24:71:d4:6c:3d:ee:b1:fe:03:8f:fc:ee:ab:37:d4:fa:24:4e:
56:7b:00:38:d7:ca:34:e3:e6:63:cd:01:a3:78:84:d0:97:69:
6a:f8:40:8e:8b:23:89:a4:b6:65:0e:34:2b:66:51:74:73:28:
19:1b:ea:4f:3d:ff:e0:b6:ad:2c:05:ce:a1:d8:21:51:d8:b2:
93:47:bb:6d:54:1b:c6:ef:f1:5f:59:3c:3d:58:ee:b6:4d:95:
dc:95:42:b8:14:88:47:4e:a0:70:dd:54:f7:54:11:cc:aa:6f:
21:9e:e3:ff:80:62:e0:41:b1:b4:b8:cf:b2:aa:4d:5b:22:84:
e6:15:2c:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 9 22:55:20 2023 by rpki-client on console-fra.rpki-client.org