Certificate

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4vaEFPysoHyBNVXlNpHbqE45iMg.cer
File:                     4vaEFPysoHyBNVXlNpHbqE45iMg.cer (raw, json)
Hash identifier:          cl9JruqQOrjKUnJNY5M15in0Mb0mu6GqnWq2FwTx9pQ=
Subject key identifier:   E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer:       /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial:       018CC726A695FA759099005C1E40D80FFA5C
Authority info access:    rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest:                 rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/4vaEFPysoHyBNVXlNpHbqE45iMg.mft
caRepository:             rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/
Notify URL:               https://rrdp.ripe.net/notification.xml
Certificate not before:   Mon 01 Jan 2024 22:30:48 +0000
Certificate not after:    Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources:    AS: 206476
                          IP: 185.137.224.0/22
                          IP: 185.255.184.0/22
                          IP: 2a07:780::/29
                          IP: 2a0c:bcc0::/29

Validation:               Failed, certificate revoked on Fri 04 Oct 2024 14:35:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8c:c7:26:a6:95:fa:75:90:99:00:5c:1e:40:d8:0f:fa:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
        Validity
            Not Before: Jan  1 22:30:48 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=e2f68414fcaca07c813555e53691dba84e3988c8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:98:02:39:9c:9e:c8:f8:26:29:0c:24:7c:ea:
                    d4:98:a3:d4:8e:99:10:ca:9b:51:d9:1d:77:a3:e5:
                    ab:db:0a:04:8b:aa:97:ce:bb:98:df:9b:e5:d7:bb:
                    46:6f:eb:f0:29:b7:e2:29:a1:ab:f7:21:0a:40:fd:
                    7f:f7:a0:92:1e:6c:cb:36:08:fa:68:58:9d:60:23:
                    17:11:f3:4a:05:51:c2:80:e3:54:85:e8:8b:ba:c4:
                    88:25:c4:fd:56:cb:4f:0f:ca:3e:b2:2a:01:20:16:
                    bd:21:49:4b:35:58:c4:0b:a2:10:b4:94:18:d9:48:
                    35:48:a7:db:76:92:f7:7b:74:43:a2:c1:5a:9b:3f:
                    2e:31:0a:04:13:5d:23:c7:2b:2d:a0:5b:ba:40:bc:
                    72:60:2d:4f:ca:72:29:0c:c4:49:78:e3:13:01:66:
                    3e:16:6b:86:11:2f:b9:f6:79:9d:9b:72:f9:83:a4:
                    4a:2c:52:c7:1e:65:aa:5e:24:8c:0b:93:ef:b9:eb:
                    a7:76:6d:4a:7a:a3:37:23:18:ed:69:18:28:c6:9c:
                    69:c0:f5:c1:47:8a:6e:7f:33:d9:33:cd:b4:58:28:
                    7b:37:05:36:ce:b4:c7:24:b7:88:3b:38:2a:48:3b:
                    bf:20:45:8b:de:e1:bc:38:4f:1d:28:5a:3d:f1:33:
                    35:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
            X509v3 Authority Key Identifier:
                keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer

            Subject Information Access:
                CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/
                RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/4vaEFPysoHyBNVXlNpHbqE45iMg.mft
                RPKI Notify - URI:https://rrdp.ripe.net/notification.xml

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.137.224.0/22
                  185.255.184.0/22
                IPv6:
                  2a07:780::/29
                  2a0c:bcc0::/29

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  206476

    Signature Algorithm: sha256WithRSAEncryption
         9f:68:5a:99:f1:c6:87:e8:67:3b:db:16:b8:9c:89:76:7c:7e:
         50:06:39:d5:9c:c8:c0:22:7c:ac:eb:ad:91:7f:e2:7b:7c:bc:
         65:c1:f2:06:6a:41:d7:1b:e5:dc:5b:c1:5d:6b:46:d4:9b:43:
         7f:f5:69:6f:09:4a:82:36:ee:ab:ab:bd:2c:38:11:f9:a4:e8:
         a4:19:d0:bb:40:58:ca:09:f7:98:3a:2c:b6:ee:b1:4f:e1:cb:
         36:09:0b:7e:ce:bf:d2:4b:0c:09:c0:bb:f4:df:aa:e8:01:36:
         df:8b:8d:80:ac:8f:08:b2:80:34:02:ee:33:da:04:51:1f:93:
         aa:90:68:e9:b0:08:72:b7:5b:02:1f:bd:f0:9f:54:e2:ff:0d:
         e9:18:16:c1:1f:f5:d1:22:ed:6c:58:75:f9:38:6a:b7:c9:e8:
         d5:55:57:64:f3:4c:86:e4:43:6c:46:67:d6:de:01:51:2a:10:
         cb:dd:d8:5a:f0:1a:7a:f8:18:37:69:de:af:00:06:5c:f8:5b:
         7c:9e:42:e9:e2:22:27:c6:10:a1:b4:5f:a1:b8:ee:0e:9f:89:
         8c:68:b1:85:1c:b8:bd:15:d6:25:80:e8:da:17:8e:48:c8:1b:
         43:fb:a6:e0:6a:4c:f5:45:65:3f:36:16:25:b3:45:58:1c:96:
         b7:a6:23:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 18:58:31 2024 by rpki-client on console-ams.rpki-client.org