Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/I6zK5iDp5J8atpoeaXnCiLwBNro.cer
File: I6zK5iDp5J8atpoeaXnCiLwBNro.cer (raw, json)
Hash identifier: PjY+WGzhnxG9fnZ99q33GhDuXKM5JHUrISr9o5x4elY=
Subject key identifier: 23:AC:CA:E6:20:E9:E4:9F:1A:B6:9A:1E:69:79:C2:88:BC:01:36:BA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856F41599EEF47AA3FC2FEBB2CAE5B0ACC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ee/b8070d-b598-4440-b424-1162f027218f/1/I6zK5iDp5J8atpoeaXnCiLwBNro.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ee/b8070d-b598-4440-b424-1162f027218f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 21:33:51 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 25288
AS: 47926
IP: 86.111.230.0/23
IP: 91.193.192.0/22
IP: 185.121.108.0/22
IP: 185.143.144.0/22
IP: 185.181.164.0/22
IP: 185.212.236.0/22
IP: 185.218.200.0/22
IP: 185.235.216.0/22
IP: 185.253.216.0/22
IP: 194.145.227.0/24
IP: 195.38.8.0/22
IP: 195.140.176.0/22
IP: 2a06:9dc0::/29
IP: 2a07:35c0::/29
IP: 2a0a:5c80::/29
IP: 2a0a:cec0::/29
IP: 2a0b:4a40::/29
IP: 2a0b:c540::/29
IP: 2a0d:7700::/29
IP: 2a0d:9880::/29
Validation: Failed, certificate revoked on Thu 05 Jan 2023 13:38:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:41:59:9e:ef:47:aa:3f:c2:fe:bb:2c:ae:5b:0a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:33:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23accae620e9e49f1ab69a1e6979c288bc0136ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8f:11:95:fa:05:57:58:37:93:14:c8:d6:b2:
0b:63:ec:50:50:e7:db:b2:a5:1d:33:f9:a0:69:ff:
1f:09:c8:50:a6:33:35:13:3c:10:95:ad:ff:eb:d1:
d2:65:5c:af:ee:2f:39:9a:af:0b:b2:6f:8e:c0:da:
01:ed:25:c6:27:2b:10:5a:45:cd:2a:53:41:9b:3f:
a6:80:2f:c2:cc:f3:99:f1:0a:5b:51:05:47:81:04:
67:33:a7:51:ac:4f:0a:f3:8c:ff:ff:36:1d:15:da:
a8:70:a8:a7:ec:c9:b1:f4:95:76:82:54:34:c7:90:
23:f8:b6:d2:d1:58:08:59:b5:c2:11:23:b1:36:0f:
a8:c0:c2:50:7a:3f:91:2c:d0:e0:5c:aa:6c:81:7a:
5a:30:60:25:55:4b:16:e3:4a:62:b0:b9:79:e5:bd:
fd:68:fe:18:7d:9e:c5:60:3a:4a:56:85:e2:06:53:
f3:ba:5b:ca:f8:eb:52:ce:42:a1:d5:e3:a2:cd:d2:
88:4a:ad:cb:49:da:00:91:19:db:65:98:a4:c7:15:
c0:ab:90:3c:b1:8e:da:90:86:d5:48:e5:44:e1:a3:
db:0e:db:69:ad:70:a9:7e:2d:13:5f:7d:48:b0:ed:
79:49:22:e2:95:89:2b:c9:52:e8:57:c8:ce:18:d2:
00:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:AC:CA:E6:20:E9:E4:9F:1A:B6:9A:1E:69:79:C2:88:BC:01:36:BA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b8070d-b598-4440-b424-1162f027218f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b8070d-b598-4440-b424-1162f027218f/1/I6zK5iDp5J8atpoeaXnCiLwBNro.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.230.0/23
91.193.192.0/22
185.121.108.0/22
185.143.144.0/22
185.181.164.0/22
185.212.236.0/22
185.218.200.0/22
185.235.216.0/22
185.253.216.0/22
194.145.227.0/24
195.38.8.0/22
195.140.176.0/22
IPv6:
2a06:9dc0::/29
2a07:35c0::/29
2a0a:5c80::/29
2a0a:cec0::/29
2a0b:4a40::/29
2a0b:c540::/29
2a0d:7700::/29
2a0d:9880::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25288
47926
Signature Algorithm: sha256WithRSAEncryption
8e:79:5b:e8:7b:3a:76:ad:54:da:08:74:70:4a:29:2e:e4:43:
b4:c5:e0:7d:37:76:fb:7e:14:0f:94:d9:16:7f:44:b6:74:cf:
11:b8:a3:e5:f0:f1:fb:2a:7e:63:0e:99:53:a5:0c:63:aa:81:
ce:2e:30:89:32:04:98:5e:b3:6d:77:db:30:7f:9c:d1:14:b7:
82:4e:1d:4c:01:8c:08:38:56:2e:d0:15:8e:76:e2:37:6f:d9:
68:0c:6a:90:63:43:b4:63:37:e1:36:37:53:02:d7:4a:69:e1:
a2:76:00:c4:a2:76:57:95:fa:a0:e1:d1:5b:5e:05:8c:97:da:
b1:ac:f5:42:ee:21:3d:40:93:cc:64:95:05:de:6f:9d:2a:49:
db:8b:35:91:5f:be:a7:27:b3:00:76:73:bc:c3:0b:18:41:40:
b2:f1:fa:59:67:64:60:36:af:e0:a9:aa:e0:d2:77:c2:b1:6b:
77:9d:0f:4b:0c:38:1d:e0:be:1f:b4:c3:16:ef:60:d9:65:01:
f4:7b:88:2e:a2:b6:96:64:e0:7a:1d:fe:a9:d5:81:fb:b3:2d:
be:8f:6d:12:d8:b3:b4:a7:f1:09:f6:10:a4:95:fc:13:9f:be:
e5:c6:5f:1f:ea:31:6f:fb:db:dc:f6:f6:36:3c:04:1b:80:89:
12:b8:63:07
-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgISAYVvQVme70eqP8L+uyyuWwrMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMwMTAxMjEzMzUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyM2FjY2FlNjIwZTllNDlmMWFiNjlhMWU2OTc5YzI4OGJjMDEzNmJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqY8RlfoFV1g3kxTI1rILY+xQUOfb
sqUdM/mgaf8fCchQpjM1EzwQla3/69HSZVyv7i85mq8Lsm+OwNoB7SXGJysQWkXN
KlNBmz+mgC/CzPOZ8QpbUQVHgQRnM6dRrE8K84z//zYdFdqocKin7Mmx9JV2glQ0
x5Aj+LbS0VgIWbXCESOxNg+owMJQej+RLNDgXKpsgXpaMGAlVUsW40pisLl55b39
aP4YfZ7FYDpKVoXiBlPzulvK+OtSzkKh1eOizdKISq3LSdoAkRnbZZikxxXAq5A8
sY7akIbVSOVE4aPbDttprXCpfi0TX31IsO15SSLilYkryVLoV8jOGNIAzQIDAQAB
o4IDKTCCAyUwHQYDVR0OBBYEFCOsyuYg6eSfGraaHml5woi8ATa6MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VlL2I4MDcw
ZC1iNTk4LTQ0NDAtYjQyNC0xMTYyZjAyNzIxOGYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWUvYjgwNzBk
LWI1OTgtNDQ0MC1iNDI0LTExNjJmMDI3MjE4Zi8xL0k2eks1aURwNUo4YXRwb2Vh
WG5DaUx3Qk5yby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIGjBggrBgEF
BQcBBwEB/wSBkzCBkDBOBAIAATBIAwQBVm/mAwQCW8HAAwQCuXlsAwQCuY+QAwQC
ubWkAwQCudTsAwQCudrIAwQCuevYAwQCuf3YAwQAwpHjAwQCwyYIAwQCw4ywMD4E
AgACMDgDBQMqBp3AAwUDKgc1wAMFAyoKXIADBQMqCs7AAwUDKgtKQAMFAyoLxUAD
BQMqDXcAAwUDKg2YgDAeBggrBgEFBQcBCAEB/wQPMA2gCzAJAgJiyAIDALs2MA0G
CSqGSIb3DQEBCwUAA4IBAQCOeVvoezp2rVTaCHRwSiku5EO0xeB9N3b7fhQPlNkW
f0S2dM8RuKPl8PH7Kn5jDplTpQxjqoHOLjCJMgSYXrNtd9swf5zRFLeCTh1MAYwI
OFYu0BWOduI3b9loDGqQY0O0YzfhNjdTAtdKaeGidgDEonZXlfqg4dFbXgWMl9qx
rPVC7iE9QJPMZJUF3m+dKknbizWRX76nJ7MAdnO8wwsYQUCy8fpZZ2RgNq/gqarg
0nfCsWt3nQ9LDDgd4L4ftMMW72DZZQH0e4guoraWZOB6Hf6p1YH7sy2+j20S2LO0
p/EJ9hCklfwTn77lxl8f6jFv+9vc9vY2PAQbgIkSuGMH
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:29:32 2024 by rpki-client on console-ams.rpki-client.org