Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer
File: Rdq1B8CJdswp0Xc3PeYnoc6G764.cer (raw, json)
Hash identifier: AS6qeSU3Iveebf3ww8WD9D2v6GoVEJvDIZ1Wxpd7oyk=
Subject key identifier: 45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856EFA79014BDFEBFBCF79B042C4EABEBF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/Rdq1B8CJdswp0Xc3PeYnoc6G764.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 20:16:26 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 8952
AS: 204670
IP: 5.158.208.0/21
IP: 62.73.160.0/19
IP: 81.19.96.0/20
IP: 81.20.64.0/20
IP: 81.25.192.0/20
IP: 81.93.176.0/20
IP: 81.93.208.0/20
IP: 82.112.96.0/19
IP: 83.217.224.0/19
IP: 83.231.128.0/17
IP: 91.186.160.0/19
IP: 158.181.56.0/21
IP: 185.84.16.0/22
IP: 194.32.71.0/24
IP: 212.119.0.0/19
IP: 213.130.32.0/19
IP: 213.198.0.0/17
IP: 2001:728::/32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:fa:79:01:4b:df:eb:fb:cf:79:b0:42:c4:ea:be:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:16:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45dab507c08976cc29d177373de627a1ce86efae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:21:5e:47:fa:96:a4:e7:fd:62:94:fd:9e:99:
a7:00:ef:47:43:48:c6:7b:08:df:23:f4:32:72:b2:
b5:39:1d:4c:c2:2f:6c:14:88:ba:b7:5c:0f:d3:d3:
63:fc:75:bb:4d:4d:36:c4:3b:91:60:84:1b:b6:3d:
28:ce:0a:74:0d:7f:c2:52:34:c2:4f:f9:8b:4f:37:
64:2b:5d:8a:1f:f8:97:b7:e0:83:5f:7b:eb:04:5a:
aa:42:71:28:b9:3d:4e:9b:d1:33:18:36:e1:af:e4:
be:fa:7e:ea:53:3f:45:de:b0:bf:92:38:f2:4c:a9:
f2:50:fa:86:24:52:9d:91:2f:22:81:b6:cc:73:64:
d5:e9:d3:30:cd:87:44:53:0e:95:ea:4c:12:4f:64:
14:70:21:59:9a:40:e2:d7:d3:10:77:ed:5b:98:e9:
bd:44:ec:96:22:29:01:b6:80:ab:f4:1a:87:ba:1e:
10:00:2b:46:49:f7:0d:45:bf:fd:0d:ea:3b:6f:e5:
bb:98:b3:ec:8e:99:5f:4d:33:3c:82:3e:1e:e6:5d:
52:14:3c:fd:78:24:4b:5e:53:3a:2f:9f:b1:a4:9e:
82:12:72:74:d1:07:b2:c3:b4:82:1c:a0:d4:d3:26:
af:f5:23:f7:72:88:88:f4:d4:74:dc:74:58:bc:4d:
d4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/Rdq1B8CJdswp0Xc3PeYnoc6G764.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.158.208.0/21
62.73.160.0/19
81.19.96.0/20
81.20.64.0/20
81.25.192.0/20
81.93.176.0/20
81.93.208.0/20
82.112.96.0/19
83.217.224.0/19
83.231.128.0/17
91.186.160.0/19
158.181.56.0/21
185.84.16.0/22
194.32.71.0/24
212.119.0.0/19
213.130.32.0/19
213.198.0.0/17
IPv6:
2001:728::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8952
204670
Signature Algorithm: sha256WithRSAEncryption
16:bb:03:5e:cf:7a:cb:80:f0:c3:d9:21:88:a3:76:f9:65:b0:
be:07:50:c4:af:94:ef:6a:e4:92:f5:e2:85:51:b8:63:14:99:
2a:a4:ce:81:35:25:a2:0e:fa:e1:86:4c:e4:70:73:32:be:79:
91:d4:8d:d7:ea:00:2a:52:09:59:26:90:ad:52:09:c1:07:7f:
3f:e6:b1:51:25:ee:07:d0:d2:00:b9:1a:46:e3:ba:3f:29:cb:
86:07:6b:28:80:f5:9c:35:96:57:70:65:1b:8a:b0:78:b4:fa:
59:f5:1c:37:f5:70:3c:27:f3:46:3c:bd:86:b0:38:47:d2:f0:
ae:29:95:3c:ab:f0:d0:6a:55:6e:f9:6c:dd:9c:02:af:0d:26:
f8:23:72:49:6b:4f:45:3c:06:2e:7e:aa:3d:6c:4a:b1:7d:8d:
25:ea:9f:d6:d1:42:c2:c3:6b:d0:64:13:36:c4:c0:3d:66:df:
14:52:e3:42:c0:45:dc:07:b2:dc:bf:89:fb:40:4d:c7:c8:42:
fc:bc:75:dc:82:10:74:d9:78:79:56:7b:b3:23:07:6c:6e:b6:
e6:c4:84:f9:ea:cd:90:1a:7e:0a:61:2c:89:62:9d:a0:74:74:
37:3c:48:20:a6:76:f0:2b:c0:81:c4:e4:3c:38:03:31:16:78:
fd:6d:55:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:54 2023 by rpki-client on console-ams.rpki-client.org