Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/T5lI2Cx09bgGZ7Sjc5TIpWt_5IQ.cer
File: T5lI2Cx09bgGZ7Sjc5TIpWt_5IQ.cer (raw, json)
Hash identifier: 3qo01gdwJYEU3pHfIh/UjaJZ8h5fJrwHpuVuuOUau5s=
Subject key identifier: 4F:99:48:D8:2C:74:F5:B8:06:67:B4:A3:73:94:C8:A5:6B:7F:E4:84
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01888FF3D69A3A12838D0CC73AB61D568E28
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/4F9948D82C74F5B80667B4A37394C8A56B7FE484.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Tue 06 Jun 2023 09:05:02 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 9125
AS: 48164
AS: 50781
AS: 52021
AS: 56681
IP: 5.172.32.0/21
IP: 89.23.64.0/19
IP: 91.193.75.0/24
IP: 92.42.248.0/21
IP: 93.93.192.0/21
IP: 95.140.112.0/20
IP: 109.111.224.0/19
IP: 178.254.128.0/18
IP: 185.157.44.0/22
IP: 193.104.68.0/24
IP: 217.169.208.0/20
IP: 2a02:b58::/32
Validation: Failed, certificate revoked on Wed 07 Jun 2023 11:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8f:f3:d6:9a:3a:12:83:8d:0c:c7:3a:b6:1d:56:8e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 6 09:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f9948d82c74f5b80667b4a37394c8a56b7fe484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4a:ec:06:81:1f:a3:1d:a5:6a:df:32:1b:fd:
e0:34:5d:7d:1f:78:74:7f:39:eb:25:d4:03:ef:83:
e0:7d:06:f6:36:c0:db:e4:ee:92:bf:2f:63:e2:c0:
12:be:be:fe:a9:b6:4d:55:1c:55:c3:41:c1:2e:3b:
07:5a:f8:0f:54:ba:1d:e0:d3:6a:43:66:07:29:f3:
21:32:6d:5d:09:9c:ea:bc:bb:54:80:e5:29:53:7b:
fd:a1:bc:3b:9b:09:63:83:7e:63:45:dc:ee:8a:bf:
1a:f8:ce:9c:b4:42:81:b2:2b:81:32:cf:13:31:4f:
68:8d:79:32:60:9f:1f:ff:e3:6c:5a:54:2f:2a:33:
39:a5:8f:2a:be:1c:15:b1:d3:98:ee:6b:51:a4:d3:
ea:c5:82:2b:a4:c1:83:10:16:c7:72:1c:99:67:e8:
66:d0:5e:f8:86:db:42:66:eb:b9:b1:69:a1:19:cb:
ef:d8:a5:9e:db:46:5f:95:21:1c:04:82:88:68:a3:
cd:88:f8:ae:04:0e:ea:76:5b:f8:e9:b9:62:65:99:
e7:32:28:c7:5a:e2:38:07:67:71:f2:b5:8f:23:25:
9b:10:b9:11:47:2e:af:3a:97:a0:d8:a0:c2:51:1e:
b9:d5:0c:10:bf:c6:bf:78:86:9f:97:3f:32:95:cd:
b4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:99:48:D8:2C:74:F5:B8:06:67:B4:A3:73:94:C8:A5:6B:7F:E4:84
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/4556f416-aad6-41bf-aebf-80a2cc67a466/0/4F9948D82C74F5B80667B4A37394C8A56B7FE484.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.32.0/21
89.23.64.0/19
91.193.75.0/24
92.42.248.0/21
93.93.192.0/21
95.140.112.0/20
109.111.224.0/19
178.254.128.0/18
185.157.44.0/22
193.104.68.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9125
48164
50781
52021
56681
Signature Algorithm: sha256WithRSAEncryption
a4:f4:32:52:c3:54:53:dc:35:17:67:13:85:b1:54:bd:c4:30:
f9:20:57:92:65:25:43:19:ae:e2:a1:fb:fe:93:8e:fb:2e:57:
28:c7:df:a6:5e:69:4c:c6:68:3f:96:e4:56:2b:ee:a1:74:f9:
da:cc:1d:25:38:4a:a1:8c:a8:37:b4:ea:de:d8:4c:98:86:f3:
99:84:da:94:fb:7f:7b:cb:27:50:25:8c:d2:a4:93:19:dd:a1:
2c:3c:12:66:df:5e:73:93:d5:c4:d2:80:21:b4:32:aa:ae:b7:
be:99:14:78:f4:a6:da:73:5a:ca:8a:6f:ae:3c:94:7b:50:a0:
ad:e1:62:3c:ad:75:fd:86:1a:f8:2a:07:2e:8e:df:27:c3:ad:
2b:1b:af:20:11:ba:52:71:29:55:4a:7e:c1:b3:c2:33:92:d9:
1b:f1:90:01:39:e8:e1:8e:ab:a5:6a:b8:e3:26:d6:a7:e8:e9:
01:32:6a:dc:c6:3f:53:ef:84:83:18:84:32:ed:de:e1:01:91:
b4:c4:0a:01:77:db:30:0f:a7:4e:31:8d:8d:8d:9a:68:7d:1c:
12:0d:aa:6d:0a:52:fd:ac:46:bd:62:08:06:1f:50:77:98:41:
47:36:c9:c7:53:db:71:09:74:d1:9c:67:fb:d5:a4:0e:c6:4b:
98:36:df:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:33:05 2024 by rpki-client on console-ams.rpki-client.org