Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ml1_VrcXpYFHobuq3vC7b0V9NdY.cer
File: Ml1_VrcXpYFHobuq3vC7b0V9NdY.cer (raw, json)
Hash identifier: GLdC0hwa2jFv1UPYZMlh7LwEEtxek74kAv7nssIeI0Q=
Subject key identifier: 32:5D:7F:56:B7:17:A5:81:47:A1:BB:AA:DE:F0:BB:6F:45:7D:35:D6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DAC96329B8C816B347F6BD113A4EEE19D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/1e00c6-46fb-499d-bff3-09874befd4bb/1/Ml1_VrcXpYFHobuq3vC7b0V9NdY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/1e00c6-46fb-499d-bff3-09874befd4bb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 15 Feb 2024 11:45:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 6849
AS: 6877
AS: 16124
AS: 24937
IP: 37.52.0.0/14
IP: 46.200.0.0/14
IP: 82.207.0.0/17
IP: 91.124.0.0/16
IP: 92.112.0.0/15
IP: 94.178.0.0/15
IP: 95.132.0.0/14
IP: 178.92.0.0/14
IP: 185.36.56.0/22
IP: 195.5.0.0/18
IP: 212.113.32.0/19
IP: 213.179.224.0/19
IP: 213.186.96.0/19
IP: 2a00:70e0::/32
IP: 2a02:28d0::/32
Validation: Failed, certificate revoked on Tue 20 Feb 2024 14:17:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ac:96:32:9b:8c:81:6b:34:7f:6b:d1:13:a4:ee:e1:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 15 11:45:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=325d7f56b717a58147a1bbaadef0bb6f457d35d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4c:dd:d5:13:b4:00:5f:c8:c2:38:03:01:9d:
d6:2d:34:8b:be:01:8b:59:60:2c:c3:5c:3f:29:05:
f4:6e:a9:66:5c:0a:41:4d:c4:d7:2c:c3:f8:32:f8:
d8:d3:10:cd:a3:94:80:88:b5:48:b5:1e:fa:f1:76:
92:3c:f7:93:7f:05:28:08:ca:83:07:dd:30:4a:fb:
0f:6c:57:8c:89:72:f0:18:23:ba:bb:33:c6:9f:38:
73:98:0b:09:a6:dc:83:fd:a3:43:4b:06:50:0a:32:
a5:8b:c3:45:fa:a4:75:b2:b4:bc:75:05:ae:3d:41:
a1:b8:f3:32:c5:e2:d9:7b:f5:c5:be:55:c8:c2:13:
c8:ad:63:fb:27:b2:9c:09:e4:de:0b:74:3e:b3:e7:
1b:6f:44:4b:18:0c:b9:de:7d:aa:60:bc:2a:e4:53:
cd:84:90:81:eb:94:5b:73:f2:5d:0c:ab:9c:7c:cb:
6e:a1:db:21:1e:a6:a0:80:b1:29:86:4d:a0:70:7c:
7b:24:18:d4:e7:8c:d3:65:98:11:36:1c:cd:99:a9:
e6:ee:28:68:c3:ac:13:44:f6:58:2a:ff:b5:8a:da:
b0:21:ad:35:6d:58:40:e3:4f:3c:d1:89:94:57:73:
b2:e6:5a:36:c1:e0:fb:64:c3:ff:94:52:14:d5:38:
a5:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:5D:7F:56:B7:17:A5:81:47:A1:BB:AA:DE:F0:BB:6F:45:7D:35:D6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/1e00c6-46fb-499d-bff3-09874befd4bb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/1e00c6-46fb-499d-bff3-09874befd4bb/1/Ml1_VrcXpYFHobuq3vC7b0V9NdY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.52.0.0/14
46.200.0.0/14
82.207.0.0/17
91.124.0.0/16
92.112.0.0/15
94.178.0.0/15
95.132.0.0/14
178.92.0.0/14
185.36.56.0/22
195.5.0.0/18
212.113.32.0/19
213.179.224.0/19
213.186.96.0/19
IPv6:
2a00:70e0::/32
2a02:28d0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
6849
6877
16124
24937
Signature Algorithm: sha256WithRSAEncryption
7c:fc:9b:97:c0:51:75:38:4d:93:3e:24:f2:93:27:2e:38:b4:
83:4c:4e:a6:7c:07:ac:a8:3a:49:20:83:0c:67:44:40:90:b5:
13:d1:08:62:27:47:e8:00:ee:13:93:ee:56:7f:79:b2:62:be:
f8:5c:af:83:16:34:34:f0:52:0f:3f:2d:0d:95:ca:1c:fc:d9:
13:19:25:08:81:55:a4:6b:92:10:b5:2a:8e:d2:fd:71:91:69:
bb:08:c0:c1:c6:c6:59:59:e9:0e:5f:27:26:68:21:18:44:f9:
3a:6b:9a:16:c7:d4:30:b1:f6:04:13:05:d0:a6:d3:5b:af:e5:
56:35:af:fc:2f:b0:23:99:3e:cb:68:d7:a2:bd:b2:54:c3:67:
52:e4:b0:b8:f1:44:ca:dc:a7:f8:d3:d1:b7:10:a8:13:09:ef:
25:ca:c5:b4:37:71:c7:25:8a:2f:44:81:91:37:db:3c:bb:8c:
ef:e2:17:3b:93:c6:3e:8b:5e:7e:d4:0e:c8:3f:c5:e4:de:bf:
5e:d4:bb:93:9b:4a:da:98:a9:05:39:e1:1b:c6:61:15:97:1c:
05:eb:d1:8e:1a:14:c1:87:cb:13:c4:66:05:c8:14:72:c0:62:
66:ca:65:9f:9f:74:a8:bf:8a:2d:ae:55:0e:f8:7b:d5:d7:03:
05:ca:3f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:36:49 2025 by rpki-client