Certificate

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/B6ivK1_oMf9YnrOK48AlzocfI-c.cer
File:                     B6ivK1_oMf9YnrOK48AlzocfI-c.cer (raw, json)
Hash identifier:          /x/NxApWghlRhxFfilRDOgY3lhvFz5nsbqWMJ4xlKww=
Subject key identifier:   07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer:       /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial:       01856AFBBC2DD3563E439EBFC1CC0125EA63
Authority info access:    rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest:                 rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.mft
caRepository:             rsync://rpki1.terratransit.de/repo/TerraTransit/2
Notify URL:               https://rpki1.terratransit.de/rrdp/notification.xml
Certificate not before:   Sun 01 Jan 2023 01:39:20 +0000
Certificate not after:    Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources:    IP: 2.58.36.0/22
                          IP: 5.104.76.0/22
                          IP: 5.180.148.0/22
                          IP: 5.182.16.0/22
                          IP: 5.253.232.0/22
                          IP: 31.40.212.0/23
                          IP: 31.40.215.0/24
                          IP: 31.132.60.0/22
                          IP: 45.8.148.0/22
                          IP: 45.10.156.0/22
                          IP: 45.13.56.0/22
                          IP: 45.15.24.0/22
                          IP: 45.67.220.0 -- 45.67.222.255
                          IP: 45.81.4.0/22
                          IP: 45.85.144.0/22
                          IP: 45.88.188.0/22
                          IP: 45.90.220.0/22
                          IP: 45.93.0.0/22
                          IP: 45.129.32.0/22
                          IP: 45.132.156.0/22
                          IP: 45.134.224.0/22
                          IP: 45.137.192.0/22
                          IP: 45.140.184.0/22
                          IP: 45.147.172.0/22
                          IP: 45.148.136.0/22
                          IP: 77.73.20.0/22
                          IP: 77.243.84.0/22
                          IP: 83.171.200.0/22
                          IP: 85.202.80.0/22
                          IP: 85.209.92.0/22
                          IP: 91.90.80.0/22
                          IP: 91.214.64.0/22
                          IP: 92.119.80.0/22
                          IP: 92.242.188.0/22
                          IP: 93.185.168.0/22
                          IP: 147.78.128.0/22
                          IP: 149.62.36.0/22
                          IP: 185.97.144.0/22
                          IP: 185.240.244.0/22
                          IP: 185.243.12.0/22
                          IP: 185.245.152.0/22
                          IP: 185.249.96.0/22
                          IP: 185.250.212.0/22
                          IP: 185.252.148.0/22
                          IP: 185.255.128.0/22
                          IP: 192.166.244.0/22
                          IP: 193.22.24.0/22
                          IP: 193.22.153.0 -- 193.22.155.255
                          IP: 193.42.96.0/22
                          IP: 193.46.196.0/22
                          IP: 193.142.200.0/22
                          IP: 193.187.128.0/22
                          IP: 193.203.12.0/22
                          IP: 194.34.232.0/22
                          IP: 194.35.12.0/22
                          IP: 194.36.184.0/22
                          IP: 194.59.164.0/22
                          IP: 194.59.252.0/22
                          IP: 194.110.84.0/22
                          IP: 194.147.56.0/22
                          IP: 194.242.48.0/23
                          IP: 194.242.56.0/23
                          IP: 195.16.64.0/22
                          IP: 212.103.60.0/23
                          IP: 212.103.63.0/24
                          IP: 213.232.84.0/22
                          IP: 2a0c:fc80::/29

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6a:fb:bc:2d:d3:56:3e:43:9e:bf:c1:cc:01:25:ea:63
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
        Validity
            Not Before: Jan  1 01:39:20 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=07a8af2b5fe831ff589eb38ae3c025ce871f23e7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:4f:32:f3:4c:7f:70:99:47:27:23:de:65:c2:
                    a5:0d:20:49:ba:49:c4:58:3e:0b:43:cb:0a:b1:db:
                    ea:ad:50:7a:7f:99:96:9d:ec:66:fc:6b:e1:c2:bd:
                    3b:80:4a:3d:7c:eb:dd:17:b4:e3:16:10:c8:64:4d:
                    a8:6b:b9:78:94:d4:2f:67:c5:6d:fa:a3:0c:d9:aa:
                    40:76:28:e3:6a:ab:be:d3:49:2d:73:e8:2d:59:1e:
                    f4:b4:30:3b:3b:24:4a:e3:03:b9:3f:07:fd:43:19:
                    c8:c6:bd:ac:15:fd:2e:1f:0d:a6:62:98:04:09:96:
                    f2:15:8e:f3:90:42:4d:2a:9c:52:4c:44:7c:dd:26:
                    f4:33:91:17:f3:48:40:dd:0a:c9:f5:d9:e1:76:94:
                    77:6e:9b:d6:d3:b4:3b:bc:ab:df:48:bc:91:fa:31:
                    fd:df:bc:68:dd:27:02:55:ec:27:a7:07:ca:60:d4:
                    f1:33:8d:ee:8a:89:aa:f6:06:d5:64:9a:63:e8:2a:
                    03:9b:88:07:c9:71:52:6c:0c:9f:14:a9:2b:2b:e3:
                    19:c2:26:0b:8b:5c:44:c7:40:e2:24:c5:97:9b:a2:
                    11:f9:33:3c:5a:d9:1a:3f:34:03:6b:15:91:4b:69:
                    82:60:d7:c7:b6:92:d1:3c:72:16:34:c0:4c:30:f6:
                    89:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:A8:AF:2B:5F:E8:31:FF:58:9E:B3:8A:E3:C0:25:CE:87:1F:23:E7
            X509v3 Authority Key Identifier:
                keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer

            Subject Information Access:
                CA Repository - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2
                RPKI Manifest - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/2/07A8AF2B5FE831FF589EB38AE3C025CE871F23E7.mft
                RPKI Notify - URI:https://rpki1.terratransit.de/rrdp/notification.xml

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  2.58.36.0/22
                  5.104.76.0/22
                  5.180.148.0/22
                  5.182.16.0/22
                  5.253.232.0/22
                  31.40.212.0/23
                  31.40.215.0/24
                  31.132.60.0/22
                  45.8.148.0/22
                  45.10.156.0/22
                  45.13.56.0/22
                  45.15.24.0/22
                  45.67.220.0-45.67.222.255
                  45.81.4.0/22
                  45.85.144.0/22
                  45.88.188.0/22
                  45.90.220.0/22
                  45.93.0.0/22
                  45.129.32.0/22
                  45.132.156.0/22
                  45.134.224.0/22
                  45.137.192.0/22
                  45.140.184.0/22
                  45.147.172.0/22
                  45.148.136.0/22
                  77.73.20.0/22
                  77.243.84.0/22
                  83.171.200.0/22
                  85.202.80.0/22
                  85.209.92.0/22
                  91.90.80.0/22
                  91.214.64.0/22
                  92.119.80.0/22
                  92.242.188.0/22
                  93.185.168.0/22
                  147.78.128.0/22
                  149.62.36.0/22
                  185.97.144.0/22
                  185.240.244.0/22
                  185.243.12.0/22
                  185.245.152.0/22
                  185.249.96.0/22
                  185.250.212.0/22
                  185.252.148.0/22
                  185.255.128.0/22
                  192.166.244.0/22
                  193.22.24.0/22
                  193.22.153.0-193.22.155.255
                  193.42.96.0/22
                  193.46.196.0/22
                  193.142.200.0/22
                  193.187.128.0/22
                  193.203.12.0/22
                  194.34.232.0/22
                  194.35.12.0/22
                  194.36.184.0/22
                  194.59.164.0/22
                  194.59.252.0/22
                  194.110.84.0/22
                  194.147.56.0/22
                  194.242.48.0/23
                  194.242.56.0/23
                  195.16.64.0/22
                  212.103.60.0/23
                  212.103.63.0/24
                  213.232.84.0/22
                IPv6:
                  2a0c:fc80::/29

    Signature Algorithm: sha256WithRSAEncryption
         23:ea:aa:97:5f:87:29:14:a0:11:d1:00:6e:78:5f:15:4b:22:
         e4:3b:4b:83:45:ec:b0:ca:36:1a:82:ad:07:d9:76:be:8d:99:
         c0:8e:a6:ca:b8:84:63:b2:b3:07:e8:95:c2:6e:bb:ca:15:19:
         e7:6a:7a:65:d0:a2:d3:7e:63:d3:d3:e4:7b:43:14:a8:09:b1:
         90:0d:4b:9d:7f:57:53:0d:03:75:48:c2:c8:57:01:ef:c5:94:
         4a:59:43:10:92:48:b1:3c:a6:6d:56:eb:9a:e3:62:d3:4a:2f:
         e3:8e:20:98:25:66:b2:14:f1:18:37:b9:98:7a:a9:0b:38:24:
         54:e5:fd:6b:e3:dc:c6:83:f5:35:29:4d:96:8f:88:59:88:d2:
         83:f2:dc:1e:23:14:7c:94:8a:ae:d3:76:31:86:ed:26:e3:5e:
         b9:4d:d5:ff:98:00:ad:c1:37:e5:91:66:ab:e6:67:70:38:35:
         56:e1:9b:35:3a:33:02:50:07:cb:87:34:5f:fe:a9:2f:94:ef:
         b7:4a:f3:dc:f6:45:d4:02:df:70:b4:b9:45:c0:a1:a9:72:17:
         cc:ff:c8:03:26:a4:58:d9:8e:e4:b9:c8:a5:35:41:8d:4a:b3:
         80:47:53:f6:fe:33:6c:56:81:eb:40:78:08:da:af:ca:8f:3a:
         5a:57:fe:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:14 2023 by rpki-client on console-fra.rpki-client.org