Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/K5O4mvu01oHePDFjgqY_JXcUNNs.cer
File: K5O4mvu01oHePDFjgqY_JXcUNNs.cer (raw, json)
Hash identifier: kx6EKETcEn8cAmSUEQrQUsaCGdlaMDNXvzRaGmYNzSQ=
Subject key identifier: 2B:93:B8:9A:FB:B4:D6:81:DE:3C:31:63:82:A6:3F:25:77:14:34:DB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0187222C00728F8B3EFA63F34C4FF29ACA29
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/176/2B93B89AFBB4D681DE3C316382A63F25771434DB.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/176
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Mon 27 Mar 2023 08:25:21 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 45.87.8.0/22
IP: 45.94.56.0/22
IP: 45.94.64.0/22
IP: 45.95.160.0/22
IP: 45.130.224.0/22
IP: 45.137.76.0/22
IP: 45.140.200.0/22
IP: 45.148.188.0 -- 45.148.195.255
IP: 45.157.184.0/22
IP: 194.39.142.0/24
IP: 194.39.157.0/24
IP: 194.39.174.0/24
IP: 194.39.176.0/24
IP: 2a0e:ec80::/29
Validation: Failed, certificate revoked on Thu 31 Aug 2023 13:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:22:2c:00:72:8f:8b:3e:fa:63:f3:4c:4f:f2:9a:ca:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 27 08:25:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b93b89afbb4d681de3c316382a63f25771434db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f6:7b:21:9d:91:ef:69:31:ce:0a:37:d0:bd:
92:1d:b2:55:69:2d:c4:d0:fc:e0:c5:e5:fe:15:0a:
b3:5b:17:76:18:39:69:c1:03:3b:b7:d2:e8:c2:e7:
5e:94:cf:77:6d:0d:c5:f6:ca:b5:69:89:82:ee:ab:
e8:21:a4:7a:b3:32:91:fc:ee:3e:2c:83:e6:48:31:
48:13:6a:7b:b3:c0:32:9a:88:bb:99:4d:11:59:15:
bb:60:9c:b7:aa:f4:88:a3:b3:cf:5e:90:36:c2:79:
44:65:a4:fd:cb:57:00:6f:aa:f3:13:36:e4:03:06:
98:fe:d0:2c:ba:68:46:28:ee:7c:5b:38:2b:c1:d7:
72:e3:84:4a:ed:b8:17:95:8c:b1:22:a2:94:2f:47:
07:54:fc:53:3e:e8:11:48:24:e1:41:5b:74:63:de:
33:ec:c9:39:50:37:95:6d:48:ab:d6:fe:7d:70:c8:
55:97:71:d0:26:91:5a:64:62:75:57:fa:f9:61:63:
68:2b:3e:85:66:70:d1:4d:3b:0a:5c:35:6f:6f:c7:
9a:d2:fb:64:50:e0:d2:15:83:6b:d5:f2:af:d8:45:
c8:e6:84:e9:c9:af:77:35:26:73:b4:cc:79:25:4b:
b1:27:40:27:98:93:b2:ac:0c:01:ee:9a:5a:5c:61:
ed:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:93:B8:9A:FB:B4:D6:81:DE:3C:31:63:82:A6:3F:25:77:14:34:DB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/176
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/176/2B93B89AFBB4D681DE3C316382A63F25771434DB.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.8.0/22
45.94.56.0/22
45.94.64.0/22
45.95.160.0/22
45.130.224.0/22
45.137.76.0/22
45.140.200.0/22
45.148.188.0-45.148.195.255
45.157.184.0/22
194.39.142.0/24
194.39.157.0/24
194.39.174.0/24
194.39.176.0/24
IPv6:
2a0e:ec80::/29
Signature Algorithm: sha256WithRSAEncryption
0c:c0:62:34:a5:34:81:4e:4f:a3:d0:0a:6c:31:0a:4a:6b:55:
4c:5c:82:68:c9:4b:07:5d:38:7a:ce:54:f8:11:bc:e3:f9:6b:
2d:85:b2:f3:86:c9:cb:9d:70:98:68:45:28:a6:94:db:61:af:
31:54:4c:b6:c7:cb:2e:06:f5:65:cd:af:08:27:59:9c:bc:a6:
9c:fc:4f:25:05:db:59:71:4a:7b:ec:0d:ad:a7:5b:c6:80:25:
2c:73:b4:22:57:a5:21:07:6a:f4:c4:a3:95:6a:c9:b1:a5:8d:
82:ed:82:1f:62:84:32:d4:2a:ef:f9:ca:d5:21:ed:94:ef:7c:
31:ac:44:8d:71:1e:37:b1:7f:8d:c9:e8:3a:60:00:97:86:ab:
c8:c1:e8:d6:e9:7f:11:b1:2f:77:c1:86:c3:79:ff:86:3b:cd:
8c:7a:65:f8:db:bd:08:1d:30:34:49:f7:1e:3f:e4:82:66:da:
38:0b:ea:ba:54:23:a5:64:02:85:60:14:d7:95:63:5b:ef:1f:
c5:38:9c:88:c7:72:e3:85:b9:19:58:f2:fc:7f:38:a0:c8:b3:
ea:c0:50:04:a8:01:f6:81:e1:c3:3b:04:01:4a:5c:5a:7a:9b:
79:22:6b:0c:da:74:9d:28:4e:bc:1f:c7:da:5c:c8:51:2b:18:
ba:a1:a2:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:43 2024 by rpki-client on console-fra.rpki-client.org