Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XclwdVgky5Z8rW87lkcJsJLUMGk.cer
File: XclwdVgky5Z8rW87lkcJsJLUMGk.cer (raw, json)
Hash identifier: aibH+BIr/9bWHVt+NgUrNrUT/tjfMVRUQ/lOfDmtRb4=
Subject key identifier: 5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856AD968A328054A818520A0594C27405C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki1.terratransit.de/repo/TerraTransit/7/5DC970755824CB967CAD6F3B964709B092D43069.mft
caRepository: rsync://rpki1.terratransit.de/repo/TerraTransit/7
Notify URL: https://rpki1.terratransit.de/rrdp/notification.xml
Certificate not before: Sun 01 Jan 2023 01:01:51 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 204644
IP: 2.58.72.0/22
IP: 5.133.116.0/22
IP: 5.181.64.0/22
IP: 31.169.120.0/22
IP: 45.10.152.0/22
IP: 45.13.232.0/22
IP: 45.67.224.0/22
IP: 45.80.184.0/22
IP: 45.84.136.0/22
IP: 45.92.8.0/22
IP: 45.94.208.0/22
IP: 45.130.104.0/22
IP: 45.134.116.0/22
IP: 45.137.140.0/22
IP: 45.141.20.0/22
IP: 45.151.120.0/22
IP: 45.155.40.0/22
IP: 80.245.108.0/22
IP: 83.97.112.0/22
IP: 85.255.80.0/22
IP: 91.132.0.0/22
IP: 91.196.220.0/22
IP: 92.118.60.0/22
IP: 130.185.116.0/22
IP: 152.89.120.0/22
IP: 160.238.36.0/22
IP: 176.227.240.0/22
IP: 185.196.0.0/22
IP: 185.244.120.0/22
IP: 185.249.224.0/22
IP: 185.252.232.0/22
IP: 192.145.116.0/22
IP: 193.31.120.0/22
IP: 193.32.172.0/22
IP: 193.36.236.0/22
IP: 193.58.188.0/22
IP: 193.160.244.0/22
IP: 194.34.192.0/22
IP: 194.35.120.0/22
IP: 194.60.86.0/23
IP: 194.60.200.0/23
IP: 194.110.92.0/22
IP: 194.113.64.0/22
IP: 194.156.224.0/22
IP: 195.158.204.0/22
IP: 2a0d:2d80::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6a:d9:68:a3:28:05:4a:81:85:20:a0:59:4c:27:40:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:01:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dc970755824cb967cad6f3b964709b092d43069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5c:ee:27:2d:2b:53:86:ca:dd:d7:4b:d3:9f:
c6:01:80:b4:85:a6:d5:b9:42:88:76:55:8a:d9:8d:
58:a8:55:7a:3c:cb:e8:53:75:5b:9f:d5:9e:6b:29:
35:2b:2f:b1:9f:8f:27:f8:93:ec:be:46:d1:e4:56:
7d:6c:98:85:af:27:cb:24:7a:3c:c2:eb:9b:38:f8:
c8:97:2f:88:41:dd:9a:c6:19:c3:2b:ec:38:69:a7:
ee:1c:7a:41:34:33:a3:98:de:27:02:c0:12:2a:60:
a6:64:6f:02:05:06:62:e3:28:4c:45:a8:42:8e:17:
18:f2:e3:fd:b0:bb:f6:8b:9d:26:6c:42:2d:76:89:
c2:05:3a:b8:bf:8a:1e:df:30:b5:29:66:5f:b1:57:
4a:5f:7e:7f:ae:26:db:b9:a5:3e:31:68:c7:d2:d1:
f4:6f:d9:d2:68:7b:f8:6f:ee:dc:20:ed:c5:dc:90:
c8:7a:58:84:58:e8:ea:4a:1d:f2:07:df:11:4c:e6:
de:15:6e:4c:36:49:c1:29:39:1d:d8:24:50:9d:e2:
30:95:b6:93:d3:d4:4e:b9:60:b2:73:d9:c5:ed:42:
80:d2:fb:bb:3c:47:6a:b9:06:93:a5:43:6b:c6:40:
74:7d:95:c8:b2:8d:b5:87:d5:9e:28:32:e9:f6:28:
6f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C9:70:75:58:24:CB:96:7C:AD:6F:3B:96:47:09:B0:92:D4:30:69
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7
RPKI Manifest - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/7/5DC970755824CB967CAD6F3B964709B092D43069.mft
RPKI Notify - URI:https://rpki1.terratransit.de/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.72.0/22
5.133.116.0/22
5.181.64.0/22
31.169.120.0/22
45.10.152.0/22
45.13.232.0/22
45.67.224.0/22
45.80.184.0/22
45.84.136.0/22
45.92.8.0/22
45.94.208.0/22
45.130.104.0/22
45.134.116.0/22
45.137.140.0/22
45.141.20.0/22
45.151.120.0/22
45.155.40.0/22
80.245.108.0/22
83.97.112.0/22
85.255.80.0/22
91.132.0.0/22
91.196.220.0/22
92.118.60.0/22
130.185.116.0/22
152.89.120.0/22
160.238.36.0/22
176.227.240.0/22
185.196.0.0/22
185.244.120.0/22
185.249.224.0/22
185.252.232.0/22
192.145.116.0/22
193.31.120.0/22
193.32.172.0/22
193.36.236.0/22
193.58.188.0/22
193.160.244.0/22
194.34.192.0/22
194.35.120.0/22
194.60.86.0/23
194.60.200.0/23
194.110.92.0/22
194.113.64.0/22
194.156.224.0/22
195.158.204.0/22
IPv6:
2a0d:2d80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204644
Signature Algorithm: sha256WithRSAEncryption
ac:27:52:ac:bd:b1:e3:b4:5e:ed:50:f0:c9:32:ad:ed:ee:ff:
a8:aa:ae:4e:35:07:2d:c3:fe:11:fa:71:82:bf:96:f4:90:93:
c2:00:7e:1f:ca:a9:bd:3b:93:40:42:1e:33:f0:c4:7f:94:fd:
fb:53:80:e2:89:c0:d4:70:79:ad:55:a2:81:62:7e:bd:34:13:
c9:b0:53:56:75:81:8e:50:d1:dc:25:68:fb:29:fd:63:4c:22:
ee:fc:49:0a:cd:f1:f4:3d:7a:1d:87:a1:9d:c4:b2:5d:17:58:
83:2b:54:a6:c6:99:89:dd:a9:37:f4:38:ef:f6:37:0e:a2:78:
b0:e5:8b:22:23:0d:42:02:0d:e0:9c:47:8a:69:af:42:ef:f8:
93:fa:7c:33:73:73:62:55:9c:18:d2:2b:1e:35:96:74:f7:09:
ba:85:61:13:02:f7:bf:d5:33:5d:32:20:2f:5d:d2:2f:9f:b8:
71:51:00:fb:8e:18:3c:39:af:eb:3f:01:0c:5e:43:8f:4d:fb:
26:97:43:16:4d:09:95:dd:5e:96:8b:43:01:47:9a:20:7b:f7:
e0:48:50:f1:cb:70:b3:3f:02:67:00:61:44:0b:12:24:42:7e:
3e:4d:14:ad:6a:00:7e:3c:7d:d3:4b:69:0e:a8:51:65:1e:9f:
c1:16:d5:e5
-----BEGIN CERTIFICATE-----
MIIGjTCCBXWgAwIBAgISAYVq2WijKAVKgYUgoFlMJ0BcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMwMTAxMDEwMTUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZGM5NzA3NTU4MjRjYjk2N2NhZDZmM2I5NjQ3MDliMDkyZDQzMDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2VzuJy0rU4bK3ddL05/GAYC0habV
uUKIdlWK2Y1YqFV6PMvoU3Vbn9Weayk1Ky+xn48n+JPsvkbR5FZ9bJiFryfLJHo8
wuubOPjIly+IQd2axhnDK+w4aafuHHpBNDOjmN4nAsASKmCmZG8CBQZi4yhMRahC
jhcY8uP9sLv2i50mbEItdonCBTq4v4oe3zC1KWZfsVdKX35/ribbuaU+MWjH0tH0
b9nSaHv4b+7cIO3F3JDIeliEWOjqSh3yB98RTObeFW5MNknBKTkd2CRQneIwlbaT
09ROuWCyc9nF7UKA0vu7PEdquQaTpUNrxkB0fZXIso21h9WeKDLp9ihvAQIDAQAB
o4IDmTCCA5UwHQYDVR0OBBYEFF3JcHVYJMuWfK1vO5ZHCbCS1DBpMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwgfwGCCsGAQUFBwELBIHvMIHsMD0GCCsGAQUFBzAFhjFyc3lu
YzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1RlcnJhVHJhbnNpdC83MGoG
CCsGAQUFBzAKhl5yc3luYzovL3Jwa2kxLnRlcnJhdHJhbnNpdC5kZS9yZXBvL1Rl
cnJhVHJhbnNpdC83LzVEQzk3MDc1NTgyNENCOTY3Q0FENkYzQjk2NDcwOUIwOTJE
NDMwNjkubWZ0MD8GCCsGAQUFBzANhjNodHRwczovL3Jwa2kxLnRlcnJhdHJhbnNp
dC5kZS9ycmRwL25vdGlmaWNhdGlvbi54bWwwWQYDVR0fBFIwUDBOoEygSoZIcnN5
bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9LcFNvM1ZWSzV3
RUhJSm5IQzJRSFZWM2Q1bWsuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
ggE+BggrBgEFBQcBBwEB/wSCAS0wggEpMIIBFgQCAAEwggEOAwQCAjpIAwQCBYV0
AwQCBbVAAwQCH6l4AwQCLQqYAwQCLQ3oAwQCLUPgAwQCLVC4AwQCLVSIAwQCLVwI
AwQCLV7QAwQCLYJoAwQCLYZ0AwQCLYmMAwQCLY0UAwQCLZd4AwQCLZsoAwQCUPVs
AwQCU2FwAwQCVf9QAwQCW4QAAwQCW8TcAwQCXHY8AwQCgrl0AwQCmFl4AwQCoO4k
AwQCsOPwAwQCucQAAwQCufR4AwQCufngAwQCufzoAwQCwJF0AwQCwR94AwQCwSCs
AwQCwSTsAwQCwTq8AwQCwaD0AwQCwiLAAwQCwiN4AwQBwjxWAwQBwjzIAwQCwm5c
AwQCwnFAAwQCwpzgAwQCw57MMA0EAgACMAcDBQMqDS2AMBoGCCsGAQUFBwEIAQH/
BAswCaAHMAUCAwMfZDANBgkqhkiG9w0BAQsFAAOCAQEArCdSrL2x47Re7VDwyTKt
7e7/qKquTjUHLcP+Efpxgr+W9JCTwgB+H8qpvTuTQEIeM/DEf5T9+1OA4onA1HB5
rVWigWJ+vTQTybBTVnWBjlDR3CVo+yn9Y0wi7vxJCs3x9D16HYehncSyXRdYgytU
psaZid2pN/Q47/Y3DqJ4sOWLIiMNQgIN4JxHimmvQu/4k/p8M3NzYlWcGNIrHjWW
dPcJuoVhEwL3v9UzXTIgL13SL5+4cVEA+44YPDmv6z8BDF5Dj037JpdDFk0Jld1e
lotDAUeaIHv34EhQ8ctwsz8CZwBhRAsSJEJ+Pk0UrWoAfjx900tpDqhRZR6fwRbV
5Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:21 2023 by rpki-client on console-fra.rpki-client.org