Route Origin Authorization
$ rpki-client -vvf rpki.multacom.com/repo/MCOMCA/0/39362e34352e3136302e302f32302d3234203d3e203335393136.roa
File: 39362e34352e3136302e302f32302d3234203d3e203335393136.roa (raw, json)
Hash identifier: IC3WCE/w8glu9TG96phBRNzO4UTDZ+jSUkdFTzPPo5c=
Subject key identifier: E8:88:80:F5:B3:8E:7E:44:F0:3D:F7:19:E2:B1:56:8A:DE:6F:BA:6C
Certificate issuer: /CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Certificate serial: 44983CE4EDE29245D031F09DC3B7BCBA6E5F0EA2
Authority key identifier: DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject info access: rsync://rpki.multacom.com/repo/MCOMCA/0/39362e34352e3136302e302f32302d3234203d3e203335393136.roa
Signing time: Sun 30 Jul 2023 02:00:01 +0000
ROA not before: Sun 30 Jul 2023 01:55:01 +0000
ROA not after: Tue 30 Jul 2024 02:00:01 +0000
asID: 35916
IP address blocks: 96.45.160.0/20 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:98:3c:e4:ed:e2:92:45:d0:31:f0:9d:c3:b7:bc:ba:6e:5f:0e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1
Validity
Not Before: Jul 30 01:55:01 2023 GMT
Not After : Jul 30 02:00:01 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9f:53:fe:37:f2:9c:bd:6c:f9:b5:58:69:6c:
8c:45:1e:a8:cd:c4:46:e8:00:08:ed:03:68:92:2e:
3d:3b:04:6d:56:ba:ba:a8:09:6d:93:7c:53:46:72:
f4:ea:d0:6c:3a:50:a7:11:54:12:14:33:bd:51:cd:
05:01:a5:98:ee:7a:b9:aa:2b:42:05:02:87:61:cc:
a2:ac:3f:32:65:e8:92:5a:e8:1f:be:10:ef:52:e9:
f5:8d:94:75:8d:c9:64:5d:60:77:47:78:f2:6b:f0:
e4:50:85:36:64:c4:ad:64:43:9e:37:9b:94:6b:c6:
01:b0:aa:03:52:eb:4d:a7:02:56:e5:d6:61:35:e8:
0a:4c:a1:30:e7:16:18:f6:f4:96:03:de:ac:87:12:
02:dd:5c:0e:c5:16:2a:7d:be:23:a7:fa:2c:78:d9:
b1:c3:4a:b2:58:72:fa:9f:e8:e4:b8:2a:be:77:c2:
42:51:7a:03:7e:9a:09:87:2f:98:ae:fa:4f:8e:fe:
a0:c7:c4:17:38:6f:bf:7e:ce:68:6b:b3:35:b4:ea:
34:0e:e5:8b:68:57:4c:c1:e3:5e:db:96:cc:2f:61:
b6:74:72:02:2b:b7:6d:04:71:68:10:6b:c7:f5:e3:
25:54:2c:4e:2c:c4:ed:1d:13:03:ae:ff:2b:33:05:
cc:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:88:80:F5:B3:8E:7E:44:F0:3D:F7:19:E2:B1:56:8A:DE:6F:BA:6C
X509v3 Authority Key Identifier:
keyid:DC:62:76:88:30:B1:B1:20:17:16:51:8D:5E:6A:65:25:B0:23:59:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.multacom.com/repo/MCOMCA/0/DC62768830B1B1201716518D5E6A6525B023593A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/4dc07ba6-d360-4ca5-a860-62e4e5476f84/8901940597c48f785a91d7212b9ca71b1f1f20ade68568e5b1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.multacom.com/repo/MCOMCA/0/39362e34352e3136302e302f32302d3234203d3e203335393136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.45.160.0/20
Signature Algorithm: sha256WithRSAEncryption
83:23:0f:44:81:85:ff:f0:d5:27:96:48:b3:61:82:a0:fd:73:
a0:22:6a:a3:ee:89:fc:9e:50:1c:f5:aa:8a:b4:93:14:74:47:
f6:00:7b:36:f9:e9:a9:22:86:de:b6:b5:24:bf:6f:ac:d8:b0:
04:35:6a:0a:e3:6a:a4:9f:e8:6f:38:55:22:29:85:a6:8e:39:
3f:97:d7:94:78:f0:dc:1f:ee:37:40:d4:e7:e2:3e:40:3c:20:
8b:68:e5:cc:67:10:62:7f:76:ff:52:76:b8:a7:b1:68:72:c0:
85:f2:b5:09:84:86:8e:fb:42:fa:70:fe:43:11:93:92:3f:a8:
b4:52:43:5d:58:67:bb:01:84:15:39:9e:d4:c5:a2:45:3c:89:
4f:64:ad:c5:95:cb:c9:14:05:4a:83:d4:c8:4d:fa:7e:7d:d5:
13:71:79:3b:a7:79:92:cb:ba:40:14:ac:0e:9e:f7:62:e8:35:
26:48:91:77:20:34:87:09:4a:70:77:1b:7d:57:05:e6:3d:9c:
a5:00:21:96:0a:71:14:5e:16:7d:85:6c:b1:33:4d:ea:3f:6d:
9d:64:a9:0a:4d:1b:58:c9:c2:19:44:7c:0a:b9:91:30:0f:3a:
4b:8b:5f:b4:ca:db:6f:04:27:1d:4e:f0:6e:77:a4:99:08:d0:
ea:3e:cb:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 9 22:55:20 2023 by rpki-client on console-fra.rpki-client.org