Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Q2bEOHJzGiaL9clj3fZhd075yuE.cer
File: Q2bEOHJzGiaL9clj3fZhd075yuE.cer (raw, json)
Hash identifier: yjBFRa6y6g6bxB8dxXX6cylcJL3T9Dy9r3+PWRBAiXg=
Subject key identifier: 43:66:C4:38:72:73:1A:26:8B:F5:C9:63:DD:F6:61:77:4E:F9:CA:E1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BC7B37F8412545ED02EEAA83052B8F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/Q2bEOHJzGiaL9clj3fZhd075yuE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 62.68.76.0/24
IP: 2a13:f500::/29
Validation: Failed, certificate revoked on Thu 29 Feb 2024 09:21:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:7b:37:f8:41:25:45:ed:02:ee:aa:83:05:2b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4366c43872731a268bf5c963ddf661774ef9cae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3b:94:28:5d:e9:71:1d:4f:58:d4:26:af:dc:
eb:0e:b8:26:8b:57:79:07:70:8c:ec:bb:94:ef:bd:
83:ab:96:fc:4e:04:84:b6:ca:ff:85:9b:80:e7:4d:
36:42:c1:38:0f:73:a3:6a:2c:51:6c:5e:82:11:cc:
60:a2:55:2b:0e:7e:c1:fc:4b:bc:b6:d5:09:e6:3e:
cf:a8:16:16:70:08:79:77:cd:ce:3a:3c:81:73:f8:
68:a0:57:6f:c6:bc:62:c3:04:00:68:2f:6e:50:45:
32:65:ef:75:a3:a1:85:be:03:bf:88:8e:52:04:63:
73:fa:d8:1d:d0:c1:8a:8f:71:01:87:27:4b:5e:a3:
d8:04:90:53:c9:02:9e:b4:b0:43:75:dc:75:43:00:
1d:9a:3d:33:82:d1:95:a9:48:aa:0b:ea:25:3f:47:
86:7c:2c:f9:cd:2c:76:04:db:b8:e0:7f:cd:cb:bb:
65:f9:48:98:b4:8a:97:bd:4b:df:3a:d3:1f:03:71:
fb:db:90:1c:6d:83:37:4c:98:69:45:4f:f8:90:df:
29:a2:15:d2:ec:77:3d:d9:89:01:49:7d:8c:ab:66:
0a:7f:35:85:ef:3d:c4:ca:b1:ab:b1:f2:71:2a:ea:
19:d2:ee:5f:11:ff:88:d9:8c:01:36:c6:42:6f:56:
a4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:66:C4:38:72:73:1A:26:8B:F5:C9:63:DD:F6:61:77:4E:F9:CA:E1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/Q2bEOHJzGiaL9clj3fZhd075yuE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.76.0/24
IPv6:
2a13:f500::/29
Signature Algorithm: sha256WithRSAEncryption
2f:a8:d6:ef:ed:6f:43:a5:c4:a4:46:a2:23:d9:bc:57:5a:36:
33:40:af:08:e0:fc:7a:2f:65:80:9e:87:cc:86:17:74:ee:af:
db:55:03:c8:99:5e:07:c0:71:5f:ab:3d:6e:d0:bb:d1:9a:7a:
41:00:14:83:b1:87:0b:60:d7:5b:d2:2b:ac:2b:57:42:0a:60:
ed:bb:33:b2:90:a9:f9:52:f0:90:68:10:b5:29:5a:cb:69:a1:
64:d2:9f:56:13:41:88:60:43:ff:3c:22:be:c7:ce:a4:74:eb:
63:6e:7d:19:15:3d:62:e5:e8:09:7c:09:a6:a8:01:1d:19:05:
94:09:58:b6:be:35:7f:db:0f:9a:71:4a:fd:b3:7b:c2:0c:4f:
1e:c8:22:e4:1d:fe:5f:e4:d4:d5:b1:2b:ae:0f:9b:d9:7e:99:
2e:8c:fb:a3:c7:11:19:80:0d:59:03:37:47:3b:15:e9:a0:0b:
9c:0c:1b:c5:94:62:98:c8:80:e1:c4:3e:cf:a5:68:de:d2:50:
64:b7:4e:f8:91:66:b3:de:9f:ac:71:c9:aa:9e:35:ef:7e:a5:
a0:10:27:67:62:7c:9e:d5:e8:81:9b:ae:76:c6:a7:16:55:e7:
ab:5e:ca:73:79:d4:30:9b:42:4b:b3:f6:58:e1:f8:a9:b3:83:
7f:22:06:06
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgISAYzJvHs3+EElRe0C7qqDBSuPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTAzMzQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzY2YzQzODcyNzMxYTI2OGJmNWM5NjNkZGY2NjE3NzRlZjljYWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjuUKF3pcR1PWNQmr9zrDrgmi1d5
B3CM7LuU772Dq5b8TgSEtsr/hZuA5002QsE4D3OjaixRbF6CEcxgolUrDn7B/Eu8
ttUJ5j7PqBYWcAh5d83OOjyBc/hooFdvxrxiwwQAaC9uUEUyZe91o6GFvgO/iI5S
BGNz+tgd0MGKj3EBhydLXqPYBJBTyQKetLBDddx1QwAdmj0zgtGVqUiqC+olP0eG
fCz5zSx2BNu44H/Ny7tl+UiYtIqXvUvfOtMfA3H725AcbYM3TJhpRU/4kN8pohXS
7Hc92YkBSX2Mq2YKfzWF7z3EyrGrsfJxKuoZ0u5fEf+I2YwBNsZCb1akRQIDAQAB
o4ICkzCCAo8wHQYDVR0OBBYEFENmxDhycxomi/XJY932YXdO+crhMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcwLzlmYTU4
MC1jZmQ5LTQ0MmItOTQzZi1kODQzZWU1NTFlYjIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAvOWZhNTgw
LWNmZDktNDQyYi05NDNmLWQ4NDNlZTU1MWViMi8xL1EyYkVPSEp6R2lhTDljbGoz
ZlpoZDA3NXl1RS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAPkRMMA0EAgACMAcDBQMqE/UAMA0GCSqGSIb3
DQEBCwUAA4IBAQAvqNbv7W9DpcSkRqIj2bxXWjYzQK8I4Px6L2WAnofMhhd07q/b
VQPImV4HwHFfqz1u0LvRmnpBABSDsYcLYNdb0iusK1dCCmDtuzOykKn5UvCQaBC1
KVrLaaFk0p9WE0GIYEP/PCK+x86kdOtjbn0ZFT1i5egJfAmmqAEdGQWUCVi2vjV/
2w+acUr9s3vCDE8eyCLkHf5f5NTVsSuuD5vZfpkujPujxxEZgA1ZAzdHOxXpoAuc
DBvFlGKYyIDhxD7PpWje0lBkt074kWaz3p+sccmqnjXvfqWgECdnYnye1eiBm652
xqcWVeerXspzedQwm0JLs/ZY4fips4N/IgYG
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:32:05 2024 by rpki-client on console-ams.rpki-client.org