Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2AYuTMJvLfdu8wjOem48g0TJ0DE.cer
File: 2AYuTMJvLfdu8wjOem48g0TJ0DE.cer (raw, json)
Hash identifier: GAQINqW/2kTaFT4dt77Qoz4/J2CsPeoTFaeEZ55pDwA=
Subject key identifier: D8:06:2E:4C:C2:6F:2D:F7:6E:F3:08:CE:7A:6E:3C:83:44:C9:D0:31
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D829F992D62474D9211BA414331081301
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2a/8774b5-5710-4e32-9850-4e265d8965ea/1/2AYuTMJvLfdu8wjOem48g0TJ0DE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2a/8774b5-5710-4e32-9850-4e265d8965ea/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 07 Feb 2024 08:11:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 62177
AS: 204306
IP: 31.222.239.0/24
IP: 62.233.60.0/24
IP: 87.236.151.0/24
IP: 91.247.183.0/24
IP: 93.157.111.0/24
IP: 94.143.226.0/24
IP: 146.19.68.0/24
IP: 146.19.185.0/24
IP: 152.89.199.0/24
IP: 176.97.222.0/24
IP: 185.46.175.0/24
IP: 194.26.137.0/24
IP: 195.64.111.0/24
IP: 195.64.114.0/24
IP: 195.96.149.0/24
IP: 212.52.25.0/24
IP: 213.109.196.0/24
IP: 2a0a:cf00::/29
IP: 2a11:4180::/29
IP: 2a11:5740::/29
IP: 2a11:6f40::/29
IP: 2a11:7280::/29
IP: 2a11:82c0::/29
IP: 2a11:a9c0::/29
IP: 2a11:c9c0::/29
IP: 2a11:de40::/29
IP: 2a12:1c00::/29
IP: 2a12:6680::/29
IP: 2a12:7d00::/29
IP: 2a12:8f80::/29
IP: 2a12:ba80::/29
IP: 2a12:e880::/29
IP: 2a12:ea00::/29
IP: 2a12:f500::/29
Validation: Failed, certificate revoked on Fri 08 Mar 2024 13:57:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:82:9f:99:2d:62:47:4d:92:11:ba:41:43:31:08:13:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 7 08:11:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8062e4cc26f2df76ef308ce7a6e3c8344c9d031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:13:c4:ce:5e:06:d2:42:c5:18:3e:2c:66:20:
87:1f:d7:21:de:50:21:83:78:b5:ca:9c:57:d4:a6:
8a:71:8a:f1:88:97:29:7a:5c:da:ec:ab:cd:11:e9:
e0:27:9b:93:69:4f:0d:0e:82:c7:50:7d:66:ac:6b:
2c:92:c3:de:cd:1e:f8:40:66:b1:57:01:14:c6:de:
01:3b:8d:d4:80:d0:47:57:3a:e8:68:45:1d:29:35:
18:43:aa:98:ff:5b:26:fe:85:73:ad:ad:ba:02:51:
75:63:8a:b6:51:34:ff:65:e6:4c:ae:c8:4c:d1:2c:
57:a8:10:c0:a2:f8:4c:52:10:d1:e9:20:d0:f7:b3:
f9:af:e5:35:eb:8b:f2:48:67:ec:0a:6c:95:75:46:
61:21:b4:c0:2b:7c:2f:86:3d:24:92:fe:42:10:e7:
ed:95:db:87:c7:d4:66:53:54:f2:b4:99:11:15:39:
50:0b:3f:89:9c:a0:8f:a9:58:24:3c:44:81:28:a8:
4c:1a:09:9f:37:14:54:4c:01:6d:fd:72:3e:6a:b3:
9a:1c:8b:01:34:9e:32:3b:5b:03:a0:1a:df:10:7e:
03:ab:dc:b7:c4:3b:8e:58:61:24:40:52:09:3f:3d:
8d:a3:bc:0b:18:8e:0d:68:a5:f7:c0:29:13:84:b2:
c0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:06:2E:4C:C2:6F:2D:F7:6E:F3:08:CE:7A:6E:3C:83:44:C9:D0:31
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8774b5-5710-4e32-9850-4e265d8965ea/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8774b5-5710-4e32-9850-4e265d8965ea/1/2AYuTMJvLfdu8wjOem48g0TJ0DE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.239.0/24
62.233.60.0/24
87.236.151.0/24
91.247.183.0/24
93.157.111.0/24
94.143.226.0/24
146.19.68.0/24
146.19.185.0/24
152.89.199.0/24
176.97.222.0/24
185.46.175.0/24
194.26.137.0/24
195.64.111.0/24
195.64.114.0/24
195.96.149.0/24
212.52.25.0/24
213.109.196.0/24
IPv6:
2a0a:cf00::/29
2a11:4180::/29
2a11:5740::/29
2a11:6f40::/29
2a11:7280::/29
2a11:82c0::/29
2a11:a9c0::/29
2a11:c9c0::/29
2a11:de40::/29
2a12:1c00::/29
2a12:6680::/29
2a12:7d00::/29
2a12:8f80::/29
2a12:ba80::/29
2a12:e880::/29
2a12:ea00::/29
2a12:f500::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62177
204306
Signature Algorithm: sha256WithRSAEncryption
1d:00:33:aa:08:47:ba:63:19:a3:2b:6a:d6:af:92:75:a7:d8:
23:68:4c:ce:43:78:a5:0c:02:36:99:2d:e3:68:79:35:46:7c:
c9:ba:a8:75:19:4b:15:b9:f7:0d:4a:72:c1:d2:2f:74:9c:38:
ae:b0:92:26:98:8c:91:23:1b:13:c8:fe:8a:d7:c8:ab:4f:dc:
3c:60:73:e3:f2:df:7b:bd:30:57:d2:9a:27:e5:df:c0:68:d2:
47:c4:9e:29:f9:30:d2:97:ff:51:38:ff:4e:72:bc:13:24:62:
6c:28:f7:0d:d9:4f:99:0a:14:f2:25:66:74:25:3d:92:ac:59:
46:9a:ea:9f:bf:8b:52:7c:68:75:0d:25:b0:ae:fd:7a:7d:33:
87:04:90:35:07:87:94:9a:0c:54:07:28:45:b6:d6:b1:69:83:
02:49:06:a2:48:b7:55:08:d5:69:fc:c0:91:3e:26:d5:1f:7a:
c9:30:67:3c:51:b5:92:37:bb:e3:21:9b:2f:76:3f:ab:5c:de:
41:91:c8:17:75:cf:f8:b9:76:05:c1:03:04:3b:6c:50:a3:ef:
d5:6a:aa:e2:dd:21:37:f3:dc:69:9b:45:23:ef:4d:23:9b:5d:
5f:15:94:0c:10:c8:d2:4e:5f:35:82:3e:55:e1:8f:34:04:c2:
8a:53:96:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 8 17:08:27 2024 by rpki-client on console-fra.rpki-client.org