Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OVAwNhWspuX29bVpHHwsjcpfI00.cer
File: OVAwNhWspuX29bVpHHwsjcpfI00.cer (raw, json)
Hash identifier: rY91m9mJkihFKdoec2qdK2mmq1P08x6A0yEZkMUaELA=
Subject key identifier: 39:50:30:36:15:AC:A6:E5:F6:F5:B5:69:1C:7C:2C:8D:CA:5F:23:4D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7274E4DCE46C711EBEA054FDCA123F0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/OVAwNhWspuX29bVpHHwsjcpfI00.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 15626
AS: 21100
AS: 24688
AS: 50979
AS: 59729
IP: 5.34.176.0/21
IP: 46.28.64.0/21
IP: 82.118.16.0/21
IP: 185.14.28.0/22
IP: 193.110.156.0/24
IP: 217.12.192.0/19
IP: 2001:7f8:51::/48
IP: 2a02:27a8::/29
Validation: Failed, certificate revoked on Fri 07 Jun 2024 07:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:4e:4d:ce:46:c7:11:eb:ea:05:4f:dc:a1:23:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3950303615aca6e5f6f5b5691c7c2c8dca5f234d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:78:50:83:33:06:7a:ac:35:22:64:7e:e7:e1:
b2:15:a5:15:a2:39:7e:b7:f6:ce:51:f1:0b:c5:0a:
f6:67:96:7d:34:bf:bd:f7:8f:61:a6:7e:06:43:83:
ef:4b:5e:24:62:bf:72:27:3f:6b:7f:58:4d:d9:67:
c6:ec:08:6a:82:bd:40:fe:07:e5:bc:7f:a8:7c:c0:
37:b8:86:f0:b0:c8:e2:7d:9e:8d:81:be:16:a4:12:
4d:cb:b0:6f:9d:6b:4d:2a:d4:af:32:f6:06:37:c4:
48:57:da:8d:ab:a1:8e:fb:fa:41:4c:e5:74:07:fb:
32:0e:8e:a0:b3:cf:2c:f6:41:31:11:0c:a1:e9:a5:
4b:1f:c5:45:e1:13:fc:da:49:aa:4f:45:81:34:96:
f6:eb:73:7e:ae:98:6c:b6:d6:93:63:0d:c7:11:99:
80:1f:04:af:8e:2f:46:0c:83:5c:21:13:41:f5:8c:
23:91:61:2e:b7:84:cd:1a:d4:9a:dd:8e:b5:d2:f0:
a3:34:b5:2d:d4:75:ff:5d:92:1f:9c:d2:e3:0f:ec:
ee:e0:2c:c2:c9:8e:3a:75:fc:df:65:8d:6c:a1:30:
f5:f0:48:ff:f8:fc:eb:2b:1e:e2:a6:2a:c7:71:56:
de:a3:1e:12:4c:5e:6b:4c:95:91:3f:03:98:f1:c4:
80:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:50:30:36:15:AC:A6:E5:F6:F5:B5:69:1C:7C:2C:8D:CA:5F:23:4D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/38c694-23a7-48b2-aaec-6c8fd0bc5b00/1/OVAwNhWspuX29bVpHHwsjcpfI00.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.176.0/21
46.28.64.0/21
82.118.16.0/21
185.14.28.0/22
193.110.156.0/24
217.12.192.0/19
IPv6:
2001:7f8:51::/48
2a02:27a8::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15626
21100
24688
50979
59729
Signature Algorithm: sha256WithRSAEncryption
24:79:b5:b4:95:b9:b7:d2:bd:da:ad:f1:9b:92:61:cd:d6:5a:
c9:b1:88:de:c9:11:d5:a1:80:e2:f8:0b:a4:6b:1f:b2:e7:24:
62:00:65:74:22:30:66:6a:51:23:60:42:bc:af:62:08:d1:98:
97:a3:c8:d2:bc:db:89:ef:f2:4d:ec:61:d1:75:c8:2f:d4:30:
b8:ef:a1:e0:5f:a7:0d:fe:1c:5c:27:9a:47:35:d6:a4:45:8b:
33:63:7f:b5:ed:37:30:15:9e:42:a8:bb:c1:3c:5a:2b:cc:49:
f6:c4:b3:b7:34:a2:9c:47:61:86:c3:48:3a:e4:b8:36:84:c3:
7d:94:11:1e:4e:b1:64:52:23:d2:64:88:0b:9b:76:61:2e:5c:
45:01:83:f2:38:a2:2d:1a:78:1c:59:cd:f5:15:e8:b0:2a:1f:
f6:da:8d:8a:6d:6c:d2:89:f0:86:4a:5e:d2:31:6e:0e:bb:01:
3a:53:23:a1:72:d8:78:ba:e7:78:5a:2e:8d:c7:bb:71:70:1a:
cd:7b:eb:ab:bd:bb:b5:d8:12:88:1c:f8:e6:1a:ed:dd:68:3c:
34:5f:3e:e3:e4:44:5d:57:2f:d0:98:9f:9d:75:f0:17:9e:51:
f5:1c:75:0c:19:ee:7f:b9:fe:1a:00:4a:3f:9d:67:cd:1e:e5:
e7:55:da:7a
-----BEGIN CERTIFICATE-----
MIIF2zCCBMOgAwIBAgISAYzHJ05NzkbHEevqBU/coSPwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjIzMTMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTUwMzAzNjE1YWNhNmU1ZjZmNWI1NjkxYzdjMmM4ZGNhNWYyMzRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3hQgzMGeqw1ImR+5+GyFaUVojl+
t/bOUfELxQr2Z5Z9NL+9949hpn4GQ4PvS14kYr9yJz9rf1hN2WfG7Ahqgr1A/gfl
vH+ofMA3uIbwsMjifZ6Ngb4WpBJNy7BvnWtNKtSvMvYGN8RIV9qNq6GO+/pBTOV0
B/syDo6gs88s9kExEQyh6aVLH8VF4RP82kmqT0WBNJb263N+rphsttaTYw3HEZmA
HwSvji9GDINcIRNB9YwjkWEut4TNGtSa3Y610vCjNLUt1HX/XZIfnNLjD+zu4CzC
yY46dfzfZY1soTD18Ej/+PzrKx7ipirHcVbeox4STF5rTJWRPwOY8cSAEwIDAQAB
o4IC5zCCAuMwHQYDVR0OBBYEFDlQMDYVrKbl9vW1aRx8LI3KXyNNMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFiLzM4YzY5
NC0yM2E3LTQ4YjItYWFlYy02YzhmZDBiYzViMDAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIvMzhjNjk0
LTIzYTctNDhiMi1hYWVjLTZjOGZkMGJjNWIwMC8xL09WQXdOaFdzcHVYMjliVnBI
SHdzamNwZkkwMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFUGCCsGAQUF
BwEHAQH/BEYwRDAqBAIAATAkAwQDBSKwAwQDLhxAAwQDUnYQAwQCuQ4cAwQAwW6c
AwQF2QzAMBYEAgACMBADBwAgAQf4AFEDBQMqAieoMCsGCCsGAQUFBwEIAQH/BBww
GqAYMBYCAj0KAgJSbAICYHACAwDHIwIDAOlRMA0GCSqGSIb3DQEBCwUAA4IBAQAk
ebW0lbm30r3arfGbkmHN1lrJsYjeyRHVoYDi+Aukax+y5yRiAGV0IjBmalEjYEK8
r2II0ZiXo8jSvNuJ7/JN7GHRdcgv1DC476HgX6cN/hxcJ5pHNdakRYszY3+17Tcw
FZ5CqLvBPForzEn2xLO3NKKcR2GGw0g65Lg2hMN9lBEeTrFkUiPSZIgLm3ZhLlxF
AYPyOKItGngcWc31FeiwKh/22o2KbWzSifCGSl7SMW4OuwE6UyOhcth4uud4Wi6N
x7txcBrNe+urvbu12BKIHPjmGu3daDw0Xz7j5ERdVy/QmJ+ddfAXnlH1HHUMGe5/
uf4aAEo/nWfNHuXnVdp6
-----END CERTIFICATE-----
Generated at Fri Jun 7 10:21:46 2024 by rpki-client on console-fra.rpki-client.org