Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MAqwpALjzkE7R0HPOgo2Y45MJpk.cer
File: MAqwpALjzkE7R0HPOgo2Y45MJpk.cer (raw, json)
Hash identifier: cIRMEELxrsOkavvyOjz8u5BRBM3olmzkK3mJMkp/RPE=
Subject key identifier: 30:0A:B0:A4:02:E3:CE:41:3B:47:41:CF:3A:0A:36:63:8E:4C:26:99
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856EFBD6201DCA0D7454D373BB0392D10A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/13/82ab60-910e-4772-a722-68948f1d3efa/1/MAqwpALjzkE7R0HPOgo2Y45MJpk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/13/82ab60-910e-4772-a722-68948f1d3efa/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 20:17:56 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 210009
IP: 193.148.76.0/22
Validation: Failed, certificate revoked on Thu 20 Apr 2023 12:32:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:fb:d6:20:1d:ca:0d:74:54:d3:73:bb:03:92:d1:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:17:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=300ab0a402e3ce413b4741cf3a0a36638e4c2699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d2:c0:41:3d:83:5f:58:42:1b:80:2e:64:32:
e4:2a:f6:df:02:d4:0f:c5:c0:6a:78:3c:77:6a:51:
6c:51:c8:32:a1:11:e2:b2:d8:33:4a:ac:45:94:81:
47:25:11:7b:1f:80:cf:a4:c2:91:dc:29:79:03:a1:
c0:0f:c3:7f:3a:f3:3e:86:62:45:be:6a:a6:71:24:
c8:ca:40:42:1c:47:5d:be:30:4e:7f:ae:a7:82:7a:
eb:53:40:3e:8d:50:ab:9a:4c:b5:ed:ed:64:9c:0e:
a3:e8:fa:f7:6a:02:11:b9:22:4a:62:8b:06:b5:62:
f4:60:6b:5b:83:75:77:ca:a8:5f:c4:e4:25:54:4d:
b7:92:d8:ce:d4:a5:4a:1b:a1:aa:f8:69:0d:ba:a4:
2a:3e:a8:f4:34:cc:27:dd:c0:4f:0b:52:0f:9f:e8:
e6:57:6b:d3:94:46:50:f9:2b:27:53:c0:b8:22:24:
9d:3f:7f:59:5a:66:92:8b:3d:ac:47:21:a1:03:42:
ef:54:a7:53:65:3e:21:84:2c:db:f1:5b:fe:c4:e3:
f6:47:66:26:f7:64:0a:cd:30:27:30:0d:77:61:3a:
6d:51:42:16:65:8e:3f:4f:7a:a4:e6:56:aa:bb:1d:
39:69:f7:61:61:79:b6:38:dd:ec:fb:8b:7f:f3:9b:
12:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:0A:B0:A4:02:E3:CE:41:3B:47:41:CF:3A:0A:36:63:8E:4C:26:99
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/82ab60-910e-4772-a722-68948f1d3efa/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/82ab60-910e-4772-a722-68948f1d3efa/1/MAqwpALjzkE7R0HPOgo2Y45MJpk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.148.76.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210009
Signature Algorithm: sha256WithRSAEncryption
46:14:b4:98:9f:9f:ad:4f:76:e1:5f:34:2e:50:27:2c:04:1b:
a5:5d:b5:23:ba:41:b3:50:e3:f6:5e:39:eb:17:71:0f:3a:73:
42:e4:db:de:a0:d1:b6:6b:3e:c8:7d:97:18:f4:fb:db:4c:a1:
4c:0e:f1:b1:c7:59:90:02:4c:a4:fd:89:d6:69:93:5a:b1:09:
a6:46:ba:34:37:52:37:7e:28:ea:70:71:f2:25:6f:22:42:8f:
ee:e8:d5:6c:c2:b0:0c:74:f1:b0:e4:1d:fe:2b:88:4c:9e:86:
96:b6:0b:a9:98:6e:7a:1b:e4:93:c7:d8:7c:f1:8a:75:c2:93:
28:60:2c:95:62:e7:4b:8f:43:04:31:41:ad:4d:bf:be:9c:04:
0e:2e:52:5a:19:83:fc:6a:52:90:f1:34:56:11:41:4c:59:df:
15:5f:b3:c9:33:1d:a6:77:ce:28:f8:b0:10:d2:52:cc:96:16:
1b:4a:ca:2e:b9:5e:45:41:f3:ff:c8:6d:c8:3d:76:5b:9e:68:
7d:00:e6:74:d8:e5:93:62:80:e1:91:8f:ea:b5:99:e5:0e:27:
30:36:37:37:76:e3:7c:fd:8e:ea:c9:08:60:f3:45:30:49:91:
3c:0a:9b:21:54:a4:27:83:db:3a:dd:51:47:aa:47:4e:79:84:
fe:65:75:37
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAYVu+9YgHcoNdFTTc7sDktEKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMwMTAxMjAxNzU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDBhYjBhNDAyZTNjZTQxM2I0NzQxY2YzYTBhMzY2MzhlNGMyNjk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9LAQT2DX1hCG4AuZDLkKvbfAtQP
xcBqeDx3alFsUcgyoRHistgzSqxFlIFHJRF7H4DPpMKR3Cl5A6HAD8N/OvM+hmJF
vmqmcSTIykBCHEddvjBOf66ngnrrU0A+jVCrmky17e1knA6j6Pr3agIRuSJKYosG
tWL0YGtbg3V3yqhfxOQlVE23ktjO1KVKG6Gq+GkNuqQqPqj0NMwn3cBPC1IPn+jm
V2vTlEZQ+SsnU8C4IiSdP39ZWmaSiz2sRyGhA0LvVKdTZT4hhCzb8Vv+xOP2R2Ym
92QKzTAnMA13YTptUUIWZY4/T3qk5laqux05afdhYXm2ON3s+4t/85sSCwIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFDAKsKQC485BO0dBzzoKNmOOTCaZMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzEzLzgyYWI2
MC05MTBlLTQ3NzItYTcyMi02ODk0OGYxZDNlZmEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTMvODJhYjYw
LTkxMGUtNDc3Mi1hNzIyLTY4OTQ4ZjFkM2VmYS8xL01BcXdwQUxqemtFN1IwSFBP
Z28yWTQ1TUpway5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQCwZRMMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC
AwM0WTANBgkqhkiG9w0BAQsFAAOCAQEARhS0mJ+frU924V80LlAnLAQbpV21I7pB
s1Dj9l456xdxDzpzQuTb3qDRtms+yH2XGPT720yhTA7xscdZkAJMpP2J1mmTWrEJ
pka6NDdSN34o6nBx8iVvIkKP7ujVbMKwDHTxsOQd/iuITJ6GlrYLqZhuehvkk8fY
fPGKdcKTKGAslWLnS49DBDFBrU2/vpwEDi5SWhmD/GpSkPE0VhFBTFnfFV+zyTMd
pnfOKPiwENJSzJYWG0rKLrleRUHz/8htyD12W55ofQDmdNjlk2KA4ZGP6rWZ5Q4n
MDY3N3bjfP2O6skIYPNFMEmRPAqbIVSkJ4PbOt1RR6pHTnmE/mV1Nw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:44:12 2024 by rpki-client on console-fra.rpki-client.org