Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4TOvC9Hn_qkipUUSUVQiHm-0Fa0.cer
File: 4TOvC9Hn_qkipUUSUVQiHm-0Fa0.cer (raw, json)
Hash identifier: 786e4pyPOcDr3EmHtlWgmoVLUSoN19nKBtbSUMf+dz8=
Subject key identifier: E1:33:AF:0B:D1:E7:FE:A9:22:A5:45:12:51:54:22:1E:6F:B4:15:AD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018B44B3C2511DEC98B346A0C1B7FC0053CA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/11/36b36e-f7f2-416f-ae42-07404c27c9eb/1/4TOvC9Hn_qkipUUSUVQiHm-0Fa0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/11/36b36e-f7f2-416f-ae42-07404c27c9eb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 18 Oct 2023 21:31:53 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 35075
IP: 45.11.48.0/22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:44:b3:c2:51:1d:ec:98:b3:46:a0:c1:b7:fc:00:53:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 18 21:31:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e133af0bd1e7fea922a545125154221e6fb415ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b1:69:65:96:5a:ca:96:aa:e8:f5:4a:0e:0d:
ba:70:da:74:a2:54:79:9c:5b:11:d9:d4:9f:e8:00:
08:56:c3:e1:8d:34:66:12:55:db:d7:02:61:41:cb:
9d:15:41:f4:de:ca:5f:04:5c:c2:c6:f5:39:6c:0d:
16:89:41:fd:03:f8:d7:db:80:f9:c9:f6:b3:4f:f5:
5f:78:b4:2b:6a:27:e7:b8:9c:71:ba:1d:ab:3b:1f:
81:33:05:32:39:ef:cc:94:bb:d9:e0:71:4c:d4:7f:
60:06:ea:0e:ce:49:bf:c7:e5:d2:bd:cb:df:49:a1:
3b:69:cc:58:26:29:33:07:21:75:fb:ec:4b:97:7a:
6a:cb:9a:cf:c2:a8:41:f6:55:a7:24:0d:42:0b:2e:
a1:52:00:72:78:14:8e:45:aa:d9:b2:1e:c8:a3:87:
94:c7:e1:02:43:dd:64:94:73:38:cb:8b:fd:6c:7a:
14:01:21:bd:e0:9f:24:89:64:d2:d5:24:5e:f9:a2:
39:54:20:a7:a8:a3:ef:c3:3f:2f:f4:a2:29:13:ce:
a5:98:a8:bd:27:70:c4:3a:4e:f5:b3:05:3b:40:34:
9b:ad:8a:f7:ea:3b:ab:82:b6:66:9d:e6:98:32:b8:
ce:6a:ac:7d:37:0d:ef:89:56:e5:51:db:13:9c:27:
16:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:33:AF:0B:D1:E7:FE:A9:22:A5:45:12:51:54:22:1E:6F:B4:15:AD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36b36e-f7f2-416f-ae42-07404c27c9eb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36b36e-f7f2-416f-ae42-07404c27c9eb/1/4TOvC9Hn_qkipUUSUVQiHm-0Fa0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.48.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35075
Signature Algorithm: sha256WithRSAEncryption
8d:3b:7f:48:b2:dd:61:d5:b0:15:28:8d:64:ec:37:dc:88:10:
8c:c1:fd:08:95:43:3d:da:04:35:5c:90:00:f1:95:aa:97:ad:
e0:2f:88:8e:32:32:ad:a2:ef:a5:77:7e:86:d0:54:fe:97:05:
f4:4f:b9:26:c8:61:ca:a4:55:0a:a9:74:87:0d:e3:51:0f:95:
0b:a4:fd:41:82:68:dd:1a:d9:d7:5d:fb:8b:30:79:ca:27:c9:
25:5d:12:4d:05:b2:ef:55:10:60:41:c5:2f:06:44:c6:c3:a3:
ea:a7:32:8d:85:4e:67:e8:ac:64:96:2f:14:af:97:cf:19:a1:
55:a5:59:c6:f7:7f:b7:41:71:42:92:b1:f0:08:ad:31:de:0a:
cc:51:e0:e2:33:f6:c9:05:a4:c5:e6:6d:5b:f6:6c:97:58:b2:
d2:d8:c4:d0:e1:78:2a:d7:84:98:7a:3f:70:81:68:af:b9:83:
15:9c:fe:ef:7b:d3:84:fe:51:29:d1:6d:e8:d7:85:46:a4:0f:
41:82:b5:ce:d5:1a:6d:ae:8d:53:d9:8e:75:4b:b9:59:64:ed:
d4:b1:1a:98:bb:2d:bb:21:78:9b:92:1f:b5:cc:70:b9:6a:50:
ea:f4:02:f5:d5:9f:f3:cf:8f:b4:4a:bf:fd:52:82:95:17:b2:
7f:52:fb:bd
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAYtEs8JRHeyYs0agwbf8AFPKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMxMDE4MjEzMTUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTMzYWYwYmQxZTdmZWE5MjJhNTQ1MTI1MTU0MjIxZTZmYjQxNWFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3bFpZZZaypaq6PVKDg26cNp0olR5
nFsR2dSf6AAIVsPhjTRmElXb1wJhQcudFUH03spfBFzCxvU5bA0WiUH9A/jX24D5
yfazT/VfeLQraifnuJxxuh2rOx+BMwUyOe/MlLvZ4HFM1H9gBuoOzkm/x+XSvcvf
SaE7acxYJikzByF1++xLl3pqy5rPwqhB9lWnJA1CCy6hUgByeBSORarZsh7Io4eU
x+ECQ91klHM4y4v9bHoUASG94J8kiWTS1SRe+aI5VCCnqKPvwz8v9KIpE86lmKi9
J3DEOk71swU7QDSbrYr36jurgrZmneaYMrjOaqx9Nw3viVblUdsTnCcWLwIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFOEzrwvR5/6pIqVFElFUIh5vtBWtMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzExLzM2YjM2
ZS1mN2YyLTQxNmYtYWU0Mi0wNzQwNGMyN2M5ZWIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEvMzZiMzZl
LWY3ZjItNDE2Zi1hZTQyLTA3NDA0YzI3YzllYi8xLzRUT3ZDOUhuX3FraXBVVVNV
VlFpSG0tMEZhMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQCLQswMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC
AwCJAzANBgkqhkiG9w0BAQsFAAOCAQEAjTt/SLLdYdWwFSiNZOw33IgQjMH9CJVD
PdoENVyQAPGVqpet4C+IjjIyraLvpXd+htBU/pcF9E+5JshhyqRVCql0hw3jUQ+V
C6T9QYJo3RrZ1137izB5yifJJV0STQWy71UQYEHFLwZExsOj6qcyjYVOZ+isZJYv
FK+XzxmhVaVZxvd/t0FxQpKx8AitMd4KzFHg4jP2yQWkxeZtW/Zsl1iy0tjE0OF4
KteEmHo/cIFor7mDFZz+73vThP5RKdFt6NeFRqQPQYK1ztUaba6NU9mOdUu5WWTt
1LEamLstuyF4m5IftcxwuWpQ6vQC9dWf88+PtEq//VKClReyf1L7vQ==
-----END CERTIFICATE-----
Generated at Mon Nov 20 07:36:33 2023 by rpki-client on console-fra.rpki-client.org