Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/BOLLdl_UCdHKpifeGMC_fnw5LF4.roa
File: BOLLdl_UCdHKpifeGMC_fnw5LF4.roa (raw, json)
Hash identifier: EoYljs3z32Ofe4ySUNTYIiEBgFz1kpjpKwoEQW4vBjs=
Subject key identifier: 04:E2:CB:76:5F:D4:09:D1:CA:A6:27:DE:18:C0:BF:7E:7C:39:2C:5E
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018A46D1BB2347BFC6B61AE88C3EFE6C912D
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/BOLLdl_UCdHKpifeGMC_fnw5LF4.roa
Signing time: Wed 30 Aug 2023 14:21:04 +0000
ROA not before: Wed 30 Aug 2023 14:21:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
195.88.227.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
193.56.239.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 31 Aug 2023 19:52:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:46:d1:bb:23:47:bf:c6:b6:1a:e8:8c:3e:fe:6c:91:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Aug 30 14:21:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04e2cb765fd409d1caa627de18c0bf7e7c392c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fd:85:d1:69:d6:61:ec:a9:e4:8f:6c:52:11:
ed:80:0f:27:1d:dc:df:d2:4d:3b:6a:8e:d9:1e:48:
46:e6:6a:5d:d9:36:1b:c6:bb:65:b3:05:4b:ab:bb:
e2:8f:ac:37:d0:d8:21:ce:d0:7a:3d:0a:53:c1:23:
e0:92:75:58:a6:b5:27:a9:b9:f9:e9:fb:4f:69:bd:
b8:37:f9:df:03:e9:14:f3:52:41:97:b6:6b:d5:a9:
8e:0b:a7:ab:45:95:77:ad:a3:cc:54:04:5b:a0:84:
24:e1:d9:23:46:4d:c9:a8:d3:ac:97:c7:ac:82:b9:
32:50:e1:c4:c6:6c:53:e4:26:9a:75:bc:eb:a1:6e:
53:62:1a:fb:6d:19:24:0b:6b:f9:ab:21:82:65:e2:
fc:b9:35:8c:dd:49:84:f8:2e:63:94:cd:6d:75:5d:
11:e0:91:08:54:f1:12:eb:4c:23:0b:63:2c:f0:bd:
c4:e5:3f:87:a5:ee:d2:f5:ef:b1:ce:72:81:44:2d:
b6:36:2a:e4:6c:67:e1:9f:b8:74:fa:f8:d5:33:2f:
4a:0e:8e:07:fc:3d:5b:0a:22:a9:39:a0:f1:75:c0:
36:4e:30:f2:2d:fb:82:a7:97:9b:13:46:f9:08:2b:
93:62:d2:da:70:45:a5:a0:6c:51:d2:4c:af:d1:ee:
75:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E2:CB:76:5F:D4:09:D1:CA:A6:27:DE:18:C0:BF:7E:7C:39:2C:5E
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/BOLLdl_UCdHKpifeGMC_fnw5LF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.244.0/23
45.151.156.0-45.151.158.255
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
193.56.239.0/24
194.146.48.0/24
195.26.6.0/23
195.88.227.0/24
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
3e:e0:92:24:66:7c:76:ff:60:10:4d:c8:96:21:0c:48:f2:1a:
c6:70:70:4b:93:96:4d:a2:08:1d:ad:2b:1d:88:fa:f7:1d:72:
c5:6a:16:b8:95:e9:89:9f:35:e2:47:5c:08:a7:07:b0:fc:01:
43:41:67:1b:e4:3f:c3:1f:5a:fc:29:f4:ab:e2:f2:f8:1b:06:
af:22:05:c9:e3:a3:86:9e:7d:e5:b8:d6:c1:00:f7:b2:2e:5f:
f0:20:45:1c:f6:83:d2:34:75:31:8a:3c:e3:ca:7e:2c:a3:9b:
5a:0e:e6:72:8c:93:f2:69:94:ff:6b:6e:06:38:a4:b3:d4:44:
c7:4e:c2:80:b5:ce:16:18:90:e0:0e:41:bd:ef:9f:2e:aa:59:
86:89:a3:bc:bb:c9:1a:4f:ec:f8:7e:e0:6f:b4:fb:e8:a1:c7:
13:6d:9a:3a:61:e1:62:77:7b:ef:eb:2e:2b:36:c1:9b:57:fa:
ed:58:b3:ed:0e:6e:ea:e6:f6:93:8c:dd:f5:c1:ff:2e:fe:29:
de:59:8f:3e:26:4f:60:d2:56:de:e4:8a:21:fc:cd:f8:12:16:
4d:7c:a9:fd:0e:de:13:a0:af:53:33:84:fc:48:b7:34:47:7b:
31:55:78:93:d2:26:9a:66:d9:21:11:41:5e:27:de:35:5b:89:
61:04:1a:3a
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgISAYpG0bsjR7/GthrojD7+bJEtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjMwODMwMTQyMTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNGUyY2I3NjVmZDQwOWQxY2FhNjI3ZGUxOGMwYmY3ZTdjMzkyYzVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzf2F0WnWYeyp5I9sUhHtgA8nHdzf
0k07ao7ZHkhG5mpd2TYbxrtlswVLq7vij6w30NghztB6PQpTwSPgknVYprUnqbn5
6ftPab24N/nfA+kU81JBl7Zr1amOC6erRZV3raPMVARboIQk4dkjRk3JqNOsl8es
grkyUOHExmxT5CaadbzroW5TYhr7bRkkC2v5qyGCZeL8uTWM3UmE+C5jlM1tdV0R
4JEIVPES60wjC2Ms8L3E5T+Hpe7S9e+xznKBRC22NirkbGfhn7h0+vjVMy9KDo4H
/D1bCiKpOaDxdcA2TjDyLfuCp5ebE0b5CCuTYtLacEWloGxR0kyv0e51VQIDAQAB
o4ICzjCCAsowHQYDVR0OBBYEFATiy3Zf1AnRyqYn3hjAv358OSxeMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvQk9MTGRsX1VDZEhLcGlmZUdNQ19mbnc1TEY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHjBggrBgEFBQcBBwEB/wSB0zCB0DBKBAIAATBEAwQBLZD0
MAwDBAItl5wDBAAtl54DBAK50NADBAC541IDBAC55FMDBAG583ADBADBOO8DBADC
kjADBAHDGgYDBADDWOMwgYEEAgACMHsDBwAqCzxAAAEDBwAqCzxAAAkwEgMHACoL
PEAAEQMHACoLPEAAEjASAwcAKgs8QAAVAwcDKgs8QAAQAwcBKgs8QAAgAwcAKgs8
QAAlAwcAKgs8QPymAwcAKg5VQAAAMBIDBwQqDlVAABADBwAqDlVAABIDBwAqDlVA
AQAwDQYJKoZIhvcNAQELBQADggEBAD7gkiRmfHb/YBBNyJYhDEjyGsZwcEuTlk2i
CB2tKx2I+vcdcsVqFriV6YmfNeJHXAinB7D8AUNBZxvkP8MfWvwp9Kvi8vgbBq8i
Bcnjo4aefeW41sEA97IuX/AgRRz2g9I0dTGKPOPKfiyjm1oO5nKMk/JplP9rbgY4
pLPURMdOwoC1zhYYkOAOQb3vny6qWYaJo7y7yRpP7Ph+4G+0++ihxxNtmjph4WJ3
e+/rLis2wZtX+u1Ys+0Oburm9pOM3fXB/y7+Kd5Zjz4mT2DSVt7kiiH8zfgSFk18
qf0O3hOgr1MzhPxItzRHezFVeJPSJppm2SERQV4n3jVbiWEEGjo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org