Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1GYMK1_mmAYfHgqlfVXfbPBChU0.cer
File: 1GYMK1_mmAYfHgqlfVXfbPBChU0.cer (raw, json)
Hash identifier: gGLPybjrfiNn+JE092bjPhzS1vl5Dosg8ab2dvvYNVw=
Subject key identifier: D4:66:0C:2B:5F:E6:98:06:1F:1E:0A:A5:7D:55:DF:6C:F0:42:85:4D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019425219668D3F4BC981816523DBD1444EC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cd/1f50e1-e7a9-4769-887f-708038bb9816/1/1GYMK1_mmAYfHgqlfVXfbPBChU0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cd/1f50e1-e7a9-4769-887f-708038bb9816/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:49:05 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 195.95.149.0/24
Validation: Failed, certificate revoked on Mon 27 Jan 2025 12:34:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:96:68:d3:f4:bc:98:18:16:52:3d:bd:14:44:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d4660c2b5fe698061f1e0aa57d55df6cf042854d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:05:de:56:fa:c0:e4:41:0c:1e:5a:cd:32:ba:
e8:94:d0:bc:85:2c:e3:29:29:a5:26:c9:6e:1c:e9:
37:f2:68:e5:cd:4d:7e:b1:e6:57:68:ce:61:47:80:
57:5b:8c:13:f6:59:e8:cf:8d:b2:91:6b:df:3a:93:
3a:ca:8e:18:9c:7e:77:08:5a:61:df:f3:7b:17:4d:
a4:3e:62:1b:0b:4f:78:31:98:d6:33:ed:f5:28:bb:
ec:32:9b:b0:33:d7:28:31:34:a5:e9:09:cf:08:66:
91:59:79:42:ee:06:c6:26:1f:f7:03:45:35:87:07:
32:c2:97:fe:98:8d:01:90:e5:e7:b8:37:c3:58:61:
02:18:5e:6c:3c:f6:44:e1:8b:60:13:be:51:89:c1:
da:d9:5a:3d:63:42:13:d3:ff:89:c2:b8:6d:bd:cb:
10:10:ed:b0:14:90:4a:b0:0e:f7:cb:19:7f:a1:66:
47:19:8b:d0:7a:98:1e:52:9f:92:a0:e2:c3:a2:e0:
db:5d:16:48:01:5f:10:ac:ab:c6:e6:a2:d6:87:ea:
26:27:62:0a:f9:98:0d:05:ef:0c:e8:a7:8e:50:4b:
4b:16:94:e2:b2:07:1e:84:97:ba:3d:45:58:b8:97:
93:93:d6:8a:19:3a:98:e0:0b:a7:c0:6b:47:75:16:
fb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:66:0C:2B:5F:E6:98:06:1F:1E:0A:A5:7D:55:DF:6C:F0:42:85:4D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1f50e1-e7a9-4769-887f-708038bb9816/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1f50e1-e7a9-4769-887f-708038bb9816/1/1GYMK1_mmAYfHgqlfVXfbPBChU0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.149.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:a3:30:b1:64:d7:6a:38:8c:27:cc:18:82:e2:b8:6c:da:89:
96:ed:9c:9e:5f:f2:e7:24:45:6c:fc:65:3a:57:72:53:36:d9:
86:eb:d3:75:ca:4a:62:ca:2d:46:cb:1d:f9:55:52:c8:fc:13:
91:a1:d5:b9:01:b6:9b:e6:80:68:8f:48:e1:d6:6b:78:d3:23:
59:4e:98:e8:1d:7e:90:23:29:1c:46:c2:0a:5f:f8:2a:1b:bf:
65:2c:7b:09:43:37:e0:9b:27:79:bc:e6:b6:d5:67:22:fa:84:
65:ef:a8:59:22:ed:ab:2d:98:7f:d1:78:16:a9:66:4c:0c:4a:
74:a3:68:7d:25:94:ba:38:5f:88:e9:b0:33:21:72:56:3b:2b:
27:e6:80:08:01:27:77:c1:12:bf:9f:76:fa:34:f8:77:37:f6:
4d:5e:31:07:06:3f:45:0f:22:f1:de:c7:05:91:b7:c7:1e:3c:
3a:6f:0a:2c:a9:81:70:7d:91:1d:68:68:ea:fe:fc:f1:6b:25:
76:6a:85:43:11:77:68:09:26:46:4a:34:6b:55:e3:aa:a1:3e:
ec:de:32:e4:65:b7:f1:e8:b1:28:79:b1:80:a8:f8:44:75:ad:
ea:6c:57:94:d2:33:c2:f8:28:88:20:b2:b9:2b:9c:40:dd:8d:
a2:1b:85:67
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgISAZQlIZZo0/S8mBgWUj29FETsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMDM0OTA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNDY2MGMyYjVmZTY5ODA2MWYxZTBhYTU3ZDU1ZGY2Y2YwNDI4NTRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1AXeVvrA5EEMHlrNMrrolNC8hSzj
KSmlJsluHOk38mjlzU1+seZXaM5hR4BXW4wT9lnoz42ykWvfOpM6yo4YnH53CFph
3/N7F02kPmIbC094MZjWM+31KLvsMpuwM9coMTSl6QnPCGaRWXlC7gbGJh/3A0U1
hwcywpf+mI0BkOXnuDfDWGECGF5sPPZE4YtgE75RicHa2Vo9Y0IT0/+JwrhtvcsQ
EO2wFJBKsA73yxl/oWZHGYvQepgeUp+SoOLDouDbXRZIAV8QrKvG5qLWh+omJ2IK
+ZgNBe8M6KeOUEtLFpTisgcehJe6PUVYuJeTk9aKGTqY4AunwGtHdRb77wIDAQAB
o4IChDCCAoAwHQYDVR0OBBYEFNRmDCtf5pgGHx4KpX1V32zwQoVNMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NkLzFmNTBl
MS1lN2E5LTQ3NjktODg3Zi03MDgwMzhiYjk4MTYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2QvMWY1MGUx
LWU3YTktNDc2OS04ODdmLTcwODAzOGJiOTgxNi8xLzFHWU1LMV9tbUFZZkhncWxm
VlhmYlBCQ2hVMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAw1+VMA0GCSqGSIb3DQEBCwUAA4IBAQCcozCx
ZNdqOIwnzBiC4rhs2omW7ZyeX/LnJEVs/GU6V3JTNtmG69N1ykpiyi1Gyx35VVLI
/BORodW5Abab5oBoj0jh1mt40yNZTpjoHX6QIykcRsIKX/gqG79lLHsJQzfgmyd5
vOa21Wci+oRl76hZIu2rLZh/0XgWqWZMDEp0o2h9JZS6OF+I6bAzIXJWOysn5oAI
ASd3wRK/n3b6NPh3N/ZNXjEHBj9FDyLx3scFkbfHHjw6bwosqYFwfZEdaGjq/vzx
ayV2aoVDEXdoCSZGSjRrVeOqoT7s3jLkZbfx6LEoebGAqPhEda3qbFeU0jPC+CiI
ILK5K5xA3Y2iG4Vn
-----END CERTIFICATE-----
Generated at Mon Apr 21 04:03:03 2025 by rpki-client