Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/LPODTNq1q7zba8XPTlUD0W6EYjo.cer
File: LPODTNq1q7zba8XPTlUD0W6EYjo.cer (raw, json)
Hash identifier: wsJhBvrF/fKnbJNDTDYTthzLgM9AeBKh+WIVi7h/cKk=
Subject key identifier: 2C:F3:83:4C:DA:B5:AB:BC:DB:6B:C5:CF:4E:55:03:D1:6E:84:62:3A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D87B9EA6EAB37F67053145BDF562E2D94
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/LPODTNq1q7zba8XPTlUD0W6EYjo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 08 Feb 2024 07:58:44 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 61192
AS: 204183
IP: 31.222.240.0/24
IP: 84.246.87.0/24
IP: 88.151.15.0/24
IP: 91.242.225.0/24
IP: 94.124.75.0/24
IP: 146.19.15.0/24
IP: 146.19.126.0/24
IP: 176.97.199.0/24
IP: 185.11.63.0/24
IP: 185.164.173.0/24
IP: 193.141.53.0/24
IP: 194.26.216.0/24
IP: 194.26.233.0/24
IP: 195.64.109.0/24
IP: 195.64.117.0/24
IP: 212.52.4.0/24
IP: 213.109.204.0/24
IP: 217.198.178.0/24
IP: 2a11:2480::/29
IP: 2a11:5580::/29
IP: 2a11:5ac0::/29
IP: 2a11:70c0::/29
IP: 2a11:7d80::/29
IP: 2a11:8340::/29
IP: 2a11:a8c0::/29
IP: 2a11:d7c0::/29
IP: 2a12:4c0::/29
IP: 2a12:2300::/29
IP: 2a12:4200::/29
IP: 2a12:4380::/29
IP: 2a12:5c80::/29
IP: 2a12:6800::/29
IP: 2a12:a100::/29
IP: 2a12:b680::/29
IP: 2a12:db80::/29
IP: 2a12:f880::/29
Validation: Failed, certificate revoked on Tue 05 Mar 2024 13:47:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:87:b9:ea:6e:ab:37:f6:70:53:14:5b:df:56:2e:2d:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 8 07:58:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2cf3834cdab5abbcdb6bc5cf4e5503d16e84623a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:a1:71:ba:b6:c4:f0:38:e2:e6:58:b3:0e:3a:
8a:86:81:34:f4:19:39:ca:75:93:5d:8f:6b:d9:9a:
8e:09:f4:a8:1c:c7:de:54:1e:48:40:5f:b7:ed:4a:
78:59:a6:bc:f0:af:72:e5:a2:45:af:52:fc:08:3d:
42:51:29:e7:ff:2f:27:56:09:be:88:40:ca:ff:1e:
2e:3a:54:f3:d0:be:0c:c4:c1:ac:f7:ee:25:f4:5f:
bb:ac:bb:2f:92:25:77:a7:78:56:be:09:ac:f1:f6:
1a:92:84:4d:42:8d:a4:be:ce:2f:c4:8b:7c:9f:0e:
d6:1a:db:d9:cf:ea:dc:bd:9a:87:ef:08:6c:60:74:
a4:97:c1:51:07:95:fc:24:c8:13:b9:b5:a4:62:0a:
30:06:12:a3:df:ed:c6:3c:41:e0:f1:71:9e:47:e9:
b6:15:2c:d4:e1:e9:c7:81:51:73:35:f0:8e:93:ec:
4b:35:2d:a1:21:b7:2d:24:76:0e:a5:ce:7d:d3:d1:
75:39:e9:5f:27:4a:c2:bd:ea:8b:7d:9d:8e:90:f3:
cf:e6:2c:44:85:16:c0:f2:d6:f8:c5:47:a1:bb:a7:
17:da:62:99:33:8b:65:94:cb:de:9f:a0:8f:f4:de:
99:0a:7e:cd:85:2a:23:69:ad:53:c4:d1:bd:e9:f4:
e5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:F3:83:4C:DA:B5:AB:BC:DB:6B:C5:CF:4E:55:03:D1:6E:84:62:3A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/7e5552-0b7d-400c-95fd-856f43f69aa3/1/LPODTNq1q7zba8XPTlUD0W6EYjo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.240.0/24
84.246.87.0/24
88.151.15.0/24
91.242.225.0/24
94.124.75.0/24
146.19.15.0/24
146.19.126.0/24
176.97.199.0/24
185.11.63.0/24
185.164.173.0/24
193.141.53.0/24
194.26.216.0/24
194.26.233.0/24
195.64.109.0/24
195.64.117.0/24
212.52.4.0/24
213.109.204.0/24
217.198.178.0/24
IPv6:
2a11:2480::/29
2a11:5580::/29
2a11:5ac0::/29
2a11:70c0::/29
2a11:7d80::/29
2a11:8340::/29
2a11:a8c0::/29
2a11:d7c0::/29
2a12:4c0::/29
2a12:2300::/29
2a12:4200::/29
2a12:4380::/29
2a12:5c80::/29
2a12:6800::/29
2a12:a100::/29
2a12:b680::/29
2a12:db80::/29
2a12:f880::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61192
204183
Signature Algorithm: sha256WithRSAEncryption
08:42:9c:7d:9b:55:35:b8:24:1f:17:0e:77:23:f6:9d:15:88:
ae:e9:66:56:98:a7:27:38:28:a0:17:37:c2:46:4b:0b:fa:4c:
b4:66:e9:4b:66:02:a4:9f:f1:b3:c6:76:42:6f:ea:96:6d:09:
b6:3b:f5:66:a2:99:74:76:b5:56:d3:4a:7e:7f:31:5c:5d:cc:
c4:7b:6d:a5:1f:a2:34:e5:38:81:a7:18:7d:ca:7d:31:1f:8b:
31:fb:07:e8:61:54:7e:55:db:35:4f:ef:86:de:43:ca:1b:fa:
df:e3:fb:e8:e2:4c:6b:e5:db:00:43:02:ef:74:04:33:3e:2e:
45:3f:0b:e1:51:40:81:b2:28:ba:a1:ee:4c:91:4d:6d:07:a7:
d7:5a:ee:ee:f5:ec:93:34:91:00:71:38:11:95:56:2d:85:67:
68:85:39:9a:99:aa:09:50:a7:29:ff:68:8d:e7:be:ab:33:c3:
46:a0:0f:bd:63:5f:a7:7c:1c:de:f8:ae:28:26:8f:36:6b:8c:
cd:f0:52:25:e2:c5:dd:73:fe:b0:5c:fa:72:60:23:4a:ca:98:
59:0e:8e:8e:e3:76:f1:19:8b:68:0b:e5:2b:25:0d:e2:f7:82:
42:74:5d:3a:74:68:98:83:cc:1f:d3:3b:ed:74:fa:77:0f:ab:
4d:61:ed:a8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:30:36 2024 by rpki-client on console-ams.rpki-client.org