Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DroFQi1N1HjI8kt_QwIhO_-CdPI.cer
File: DroFQi1N1HjI8kt_QwIhO_-CdPI.cer (raw, json)
Hash identifier: 9t5xiCu28hCC8jpg42UofY3VSUyiQoCFkgwJ3fEKGHk=
Subject key identifier: 0E:BA:05:42:2D:4D:D4:78:C8:F2:4B:7F:43:02:21:3B:FF:82:74:F2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86EFF702163AF2A518737C69CB05724
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f9/8f2144-bde4-4650-9903-a72f7a292fb5/1/DroFQi1N1HjI8kt_QwIhO_-CdPI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f9/8f2144-bde4-4650-9903-a72f7a292fb5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 31.222.253.0/24
IP: 37.72.139.0/24
IP: 62.233.47.0/24
IP: 80.68.150.0/24
IP: 84.246.82.0/24
IP: 91.224.140.0/24
IP: 91.247.78.0/24
IP: 91.247.166.0/24
IP: 94.103.179.0/24
IP: 130.255.169.0/24
IP: 146.19.137.0/24
IP: 176.116.20.0/24
IP: 185.202.107.0/24
IP: 185.217.131.0/24
IP: 185.222.41.0/24
IP: 193.3.22.0/24
IP: 193.163.16.0/24
IP: 194.56.180.0/24
IP: 195.69.150.0/24
IP: 212.18.100.0/24
IP: 2a11:1740::/29
IP: 2a11:1d80::/29
IP: 2a11:30c0::/29
IP: 2a11:3200::/29
IP: 2a11:40c0::/29
IP: 2a11:63c0::/29
IP: 2a11:6680::/29
IP: 2a11:7800::/29
IP: 2a11:8a40::/29
IP: 2a11:a080::/29
IP: 2a11:a1c0::/29
IP: 2a11:bd00::/29
IP: 2a11:c3c0::/29
IP: 2a11:e200::/29
IP: 2a11:ebc0::/29
IP: 2a11:f280::/29
IP: 2a12:2880::/29
IP: 2a12:5400::/29
IP: 2a12:8600::/29
IP: 2a12:b100::/29
Validation: Failed, certificate revoked on Wed 07 Feb 2024 08:56:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6e:ff:70:21:63:af:2a:51:87:37:c6:9c:b0:57:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0eba05422d4dd478c8f24b7f4302213bff8274f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a8:0e:c0:5f:db:4d:29:3a:17:7d:ba:a1:40:
9b:04:c3:8e:2b:ad:2b:34:98:a6:ed:a1:0a:27:9f:
6a:da:62:a9:b9:79:d0:a2:aa:7e:1a:23:c2:bc:29:
35:71:b6:00:3e:bd:9b:ca:b8:e4:53:64:fe:d8:68:
f4:db:ef:95:cb:43:4c:93:56:fe:d6:de:24:7a:81:
88:a0:82:aa:99:7e:d2:b8:1e:03:a1:57:b0:90:ac:
7f:95:b3:e7:77:23:73:7a:3e:2c:45:e7:94:2b:0a:
30:94:38:28:e2:b8:e7:1a:74:57:1b:1e:73:1a:a5:
ae:99:16:9a:c4:91:9d:2d:1f:41:d1:cc:92:56:93:
69:76:c2:70:e1:06:a9:ac:a6:a5:b3:db:eb:a8:2e:
19:9b:c7:59:ad:59:9c:04:b7:80:f4:12:ec:e3:43:
d1:1a:d7:fc:81:18:75:4e:70:1e:61:a6:f3:85:ff:
3c:0e:cb:b4:0f:b5:7f:9f:e7:b6:88:ad:89:ea:d8:
45:66:51:05:f3:b7:fe:fa:d1:7e:ba:32:0b:35:65:
48:6a:92:6a:5d:98:35:b4:fe:a4:c3:92:00:ab:79:
cc:8c:e5:85:48:12:2c:6f:b5:0b:ff:64:39:0d:a2:
e6:45:d3:55:32:fd:ec:c0:b0:23:c4:25:1b:43:11:
80:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BA:05:42:2D:4D:D4:78:C8:F2:4B:7F:43:02:21:3B:FF:82:74:F2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8f2144-bde4-4650-9903-a72f7a292fb5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8f2144-bde4-4650-9903-a72f7a292fb5/1/DroFQi1N1HjI8kt_QwIhO_-CdPI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.253.0/24
37.72.139.0/24
62.233.47.0/24
80.68.150.0/24
84.246.82.0/24
91.224.140.0/24
91.247.78.0/24
91.247.166.0/24
94.103.179.0/24
130.255.169.0/24
146.19.137.0/24
176.116.20.0/24
185.202.107.0/24
185.217.131.0/24
185.222.41.0/24
193.3.22.0/24
193.163.16.0/24
194.56.180.0/24
195.69.150.0/24
212.18.100.0/24
IPv6:
2a11:1740::/29
2a11:1d80::/29
2a11:30c0::/29
2a11:3200::/29
2a11:40c0::/29
2a11:63c0::/29
2a11:6680::/29
2a11:7800::/29
2a11:8a40::/29
2a11:a080::/29
2a11:a1c0::/29
2a11:bd00::/29
2a11:c3c0::/29
2a11:e200::/29
2a11:ebc0::/29
2a11:f280::/29
2a12:2880::/29
2a12:5400::/29
2a12:8600::/29
2a12:b100::/29
Signature Algorithm: sha256WithRSAEncryption
6e:cc:0c:4d:89:41:63:cf:40:cc:d7:cf:da:93:bf:0f:ff:2c:
2a:fd:93:75:a4:87:a0:2e:f1:e5:02:1e:7d:ad:2b:3d:81:0c:
e6:2f:fe:40:c5:ad:14:d7:fa:a1:ef:c6:f9:0b:a3:14:94:c7:
9a:ab:29:4e:68:6b:12:6b:02:16:7e:da:8e:48:22:ea:23:00:
b3:bb:51:1b:a7:76:e5:0a:9d:7f:b2:a4:51:50:7d:9f:cc:03:
e5:1b:80:47:ae:d9:93:38:ce:d8:82:a3:51:85:bc:ab:e6:42:
60:3c:45:eb:11:6d:6a:11:e3:d1:1c:1f:5e:89:67:aa:37:9d:
e2:bb:a2:3c:b5:2a:bd:a2:af:1d:c9:dd:e4:15:c4:d4:51:a8:
99:1b:22:2a:1a:d3:6a:91:aa:f1:42:6b:65:7b:94:24:64:c1:
a3:4f:8e:9f:1f:2e:47:86:b8:61:6e:9e:3b:ca:73:05:47:de:
ca:95:46:36:dc:8d:05:a0:6b:bd:23:3e:b8:47:e8:7b:65:38:
c1:be:11:92:65:bd:83:83:ca:dc:61:31:16:2f:86:ab:6f:ec:
e6:a5:c1:8b:73:00:6d:7a:42:f8:e8:a6:4e:a2:33:51:3e:ad:
bc:b7:c8:53:ef:64:91:08:33:dd:95:4a:ee:b3:90:1d:3f:b2:
11:c7:f8:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 7 11:48:33 2024 by rpki-client on console-fra.rpki-client.org