Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
File: M_XOH8N5J8taTmexdsemOzL_bok.cer (raw, json)
Hash identifier: AQhC5plGZkJ+3Sv4fmgpHg4KoHftOvYE6P0qDw2Ez74=
Subject key identifier: 33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D7E7070AD990DF05F5A5E39906AC0FEF5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/M_XOH8N5J8taTmexdsemOzL_bok.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 06 Feb 2024 12:41:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 50896
AS: 203942
IP: 45.93.22.0/24
IP: 62.204.57.0/24
IP: 80.91.212.0/24
IP: 89.107.15.0/24
IP: 91.213.117.0/24
IP: 91.247.167.0/24
IP: 94.124.77.0/24
IP: 109.94.161.0/24
IP: 146.19.96.0/24
IP: 146.19.194.0/24
IP: 176.97.223.0/24
IP: 185.161.79.0/24
IP: 194.26.224.0/24
IP: 195.64.106.0/24
IP: 212.18.103.0/24
IP: 212.52.27.0/24
IP: 217.119.139.0/24
IP: 2a0b:3c00::/29
IP: 2a11:2680::/29
IP: 2a11:5940::/29
IP: 2a11:5b80::/29
IP: 2a11:7c40::/29
IP: 2a11:7e80::/29
IP: 2a11:98c0::/29
IP: 2a11:c340::/29
IP: 2a11:dec0::/29
IP: 2a12:4580::/29
IP: 2a12:6c00::/29
IP: 2a12:8300::/29
IP: 2a12:8d80::/29
IP: 2a12:9600::/29
IP: 2a12:bb80::/29
IP: 2a12:f080::/29
IP: 2a12:fb00::/29
Validation: Failed, certificate revoked on Mon 04 Mar 2024 07:51:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7e:70:70:ad:99:0d:f0:5f:5a:5e:39:90:6a:c0:fe:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 6 12:41:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c0:aa:94:a1:d9:f9:b7:60:7b:78:6a:74:87:
e5:11:11:2f:c7:ed:5b:db:16:1e:0b:52:20:6a:6b:
c9:ac:00:1b:8d:33:8e:bf:3d:c0:d8:87:d8:2c:a6:
a8:34:c0:16:c9:54:fb:ad:24:de:c2:6b:38:9d:69:
59:0f:d3:17:02:02:1a:d0:5c:7c:76:1f:a8:a1:66:
6b:22:cd:8b:ed:b1:1e:e4:6b:b0:1a:64:aa:6a:70:
f3:70:de:8e:c3:64:fe:98:ad:d1:73:f0:c9:b1:30:
0b:e2:82:2e:7c:d1:05:25:b8:b5:b1:e4:96:e7:ed:
ac:7d:4c:27:d0:81:92:43:49:38:de:ab:33:14:19:
e5:fb:34:4e:5b:92:6d:7d:05:d5:e5:9b:bd:ad:10:
e7:e5:d9:a2:38:1e:3e:cd:61:26:76:91:6e:0f:6e:
31:19:93:77:56:5d:e6:c4:e7:b2:97:64:b1:fa:81:
05:a4:61:99:24:b1:60:41:6d:cb:96:52:5f:da:46:
aa:66:4d:b0:6b:81:a9:68:27:98:c3:d0:d3:0c:a2:
c9:d5:f9:31:b9:c8:97:f1:c7:32:d5:e5:17:38:43:
00:52:7d:b1:de:5b:69:1f:18:c3:09:d5:d8:02:51:
91:8a:1c:57:ab:b7:ea:b9:32:ba:11:e4:49:b6:ca:
a5:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/M_XOH8N5J8taTmexdsemOzL_bok.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.22.0/24
62.204.57.0/24
80.91.212.0/24
89.107.15.0/24
91.213.117.0/24
91.247.167.0/24
94.124.77.0/24
109.94.161.0/24
146.19.96.0/24
146.19.194.0/24
176.97.223.0/24
185.161.79.0/24
194.26.224.0/24
195.64.106.0/24
212.18.103.0/24
212.52.27.0/24
217.119.139.0/24
IPv6:
2a0b:3c00::/29
2a11:2680::/29
2a11:5940::/29
2a11:5b80::/29
2a11:7c40::/29
2a11:7e80::/29
2a11:98c0::/29
2a11:c340::/29
2a11:dec0::/29
2a12:4580::/29
2a12:6c00::/29
2a12:8300::/29
2a12:8d80::/29
2a12:9600::/29
2a12:bb80::/29
2a12:f080::/29
2a12:fb00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50896
203942
Signature Algorithm: sha256WithRSAEncryption
31:bf:01:83:7e:39:8f:7c:42:ab:10:d7:81:ba:f7:d8:b1:2a:
bd:c9:34:96:bf:4e:3b:0d:36:29:ac:fb:1d:32:c5:31:7b:9a:
9e:8b:b2:82:5d:ce:d0:de:33:64:9e:4a:a0:38:e1:cd:69:46:
41:02:1a:73:e8:d6:8c:42:95:96:ad:f3:b7:e4:d7:eb:a4:9b:
85:ec:02:df:25:af:30:4b:b7:ee:9b:9c:e1:1b:fa:de:aa:f8:
54:88:e3:04:2b:ae:39:0d:04:99:55:04:00:53:52:17:01:84:
fb:e5:c8:ec:03:ec:77:22:61:38:6d:33:bf:4b:10:ff:92:fe:
2e:83:ad:0d:c7:8e:db:24:2a:82:26:d6:22:95:54:13:c6:71:
ae:08:3b:e2:94:e0:17:a4:18:b1:52:d9:7a:73:9d:ae:c0:59:
64:74:6c:2f:89:fb:e1:4b:8e:17:77:3c:4b:3d:df:3e:02:51:
f6:76:1e:a0:67:11:d3:d3:39:6c:da:9b:20:d2:29:04:a7:ed:
35:e8:21:7f:dc:d4:88:d3:62:40:ad:03:a3:3e:11:65:ba:49:
0b:fe:1c:e9:28:d1:88:9e:91:95:a8:53:75:fb:9a:a2:8c:f1:
98:72:4f:69:b4:5d:42:2a:09:ab:7c:92:90:f4:a5:00:99:29:
60:3a:99:9b
-----BEGIN CERTIFICATE-----
MIIGfDCCBWSgAwIBAgISAY1+cHCtmQ3wX1peOZBqwP71MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMjA2MTI0MTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2Y1Y2UxZmMzNzkyN2NiNWE0ZTY3YjE3NmM3YTYzYjMyZmY2ZTg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8CqlKHZ+bdge3hqdIflEREvx+1b
2xYeC1IgamvJrAAbjTOOvz3A2IfYLKaoNMAWyVT7rSTewms4nWlZD9MXAgIa0Fx8
dh+ooWZrIs2L7bEe5GuwGmSqanDzcN6Ow2T+mK3Rc/DJsTAL4oIufNEFJbi1seSW
5+2sfUwn0IGSQ0k43qszFBnl+zROW5JtfQXV5Zu9rRDn5dmiOB4+zWEmdpFuD24x
GZN3Vl3mxOeyl2Sx+oEFpGGZJLFgQW3LllJf2kaqZk2wa4GpaCeYw9DTDKLJ1fkx
uciX8ccy1eUXOEMAUn2x3ltpHxjDCdXYAlGRihxXq7fquTK6EeRJtsqlIQIDAQAB
o4IDiDCCA4QwHQYDVR0OBBYEFDP1zh/DeSfLWk5nsXbHpjsy/26JMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg0LzNiYjlk
OC1iZjU0LTRlOGYtODNlNS0zZmZjMDFmY2JmYjYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODQvM2JiOWQ4
LWJmNTQtNGU4Zi04M2U1LTNmZmMwMWZjYmZiNi8xL01fWE9IOE41Sjh0YVRtZXhk
c2VtT3pMX2Jvay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBAAYIKwYB
BQUHAQcBAf8EgfAwge0wbAQCAAEwZgMEAC1dFgMEAD7MOQMEAFBb1AMEAFlrDwME
AFvVdQMEAFv3pwMEAF58TQMEAG1eoQMEAJITYAMEAJITwgMEALBh3wMEALmhTwME
AMIa4AMEAMNAagMEANQSZwMEANQ0GwMEANl3izB9BAIAAjB3AwUDKgs8AAMFAyoR
JoADBQMqEVlAAwUDKhFbgAMFAyoRfEADBQMqEX6AAwUDKhGYwAMFAyoRw0ADBQMq
Ed7AAwUDKhJFgAMFAyoSbAADBQMqEoMAAwUDKhKNgAMFAyoSlgADBQMqEruAAwUD
KhLwgAMFAyoS+wAwHwYIKwYBBQUHAQgBAf8EEDAOoAwwCgIDAMbQAgMDHKYwDQYJ
KoZIhvcNAQELBQADggEBADG/AYN+OY98QqsQ14G699ixKr3JNJa/TjsNNims+x0y
xTF7mp6LsoJdztDeM2SeSqA44c1pRkECGnPo1oxClZat87fk1+ukm4XsAt8lrzBL
t+6bnOEb+t6q+FSI4wQrrjkNBJlVBABTUhcBhPvlyOwD7HciYThtM79LEP+S/i6D
rQ3HjtskKoIm1iKVVBPGca4IO+KU4BekGLFS2Xpzna7AWWR0bC+J++FLjhd3PEs9
3z4CUfZ2HqBnEdPTOWzamyDSKQSn7TXoIX/c1IjTYkCtA6M+EWW6SQv+HOko0Yie
kZWoU3X7mqKM8ZhyT2m0XUIqCat8kpD0pQCZKWA6mZs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:31:00 2024 by rpki-client on console-ams.rpki-client.org