Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WzTfYRNMCrlEWmzLs-xj6vD6AlU.cer
File: WzTfYRNMCrlEWmzLs-xj6vD6AlU.cer (raw, json)
Hash identifier: RGjggk1wU6YTqBfVtWuWWAdDdjDfgvRRkVdcoSRr+5U=
Subject key identifier: 5B:34:DF:61:13:4C:0A:B9:44:5A:6C:CB:B3:EC:63:EA:F0:FA:02:55
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856B6327B7269D25110BBB7E3FF6F253CE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bd/192617-961b-4300-b142-b239f50f0029/1/WzTfYRNMCrlEWmzLs-xj6vD6AlU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bd/192617-961b-4300-b142-b239f50f0029/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 03:32:18 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 25400
AS: 41164
AS: 47853
AS: 49455
AS: 51135
IP: 46.249.224.0/19
IP: 62.97.160.0/19
IP: 62.141.128.0/19
IP: 78.156.0.0/19
IP: 82.194.192.0/19
IP: 84.208.0.0/13
IP: 109.108.192.0/19
IP: 176.74.208.0/21
IP: 178.17.144.0/20
IP: 185.46.224.0/22
IP: 185.71.208.0/22
IP: 185.138.32.0/22
IP: 188.113.64.0/18
IP: 188.126.192.0/19
IP: 2a02:fe0::/29
IP: 2a02:2200::/32
Validation: Failed, certificate revoked on Tue 02 May 2023 14:50:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:63:27:b7:26:9d:25:11:0b:bb:7e:3f:f6:f2:53:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:32:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b34df61134c0ab9445a6ccbb3ec63eaf0fa0255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9b:68:52:a8:6f:a7:13:5e:71:a8:9f:df:f4:
b1:98:71:82:a6:e3:8c:c5:fe:fd:75:3d:9c:de:5a:
05:cf:d1:86:c5:53:4d:c8:19:6d:67:cf:46:fc:29:
ca:29:d2:82:36:9d:4b:64:52:32:21:41:ec:c8:39:
80:42:75:8b:ef:94:7d:49:e1:c2:9b:e2:5a:c4:5a:
81:d3:85:8b:bc:83:ee:b8:60:f4:ec:fa:d9:4e:43:
5e:01:81:a0:50:5d:35:6b:86:bb:1b:a6:2e:b0:2c:
81:7a:1b:8b:4c:f0:85:7b:6c:f7:55:b3:a5:d0:c7:
d9:39:ed:d9:89:ad:2d:b8:d0:9c:b4:9c:40:75:3d:
79:16:0a:45:37:2d:5c:81:1b:e8:4b:69:df:e0:bd:
0d:1a:4b:13:8b:7d:8b:8e:9a:3b:45:ae:4d:f4:ef:
ef:d6:e3:83:94:6a:6b:7d:23:42:a1:e1:dc:6a:2b:
00:55:e8:d8:26:81:7c:10:cb:a7:d5:63:fd:6f:dd:
32:d6:90:c2:3e:7b:28:a6:b0:11:d8:5d:1d:f5:5f:
06:38:2b:44:95:11:ac:2c:01:74:c5:71:2c:d9:d4:
b1:f8:68:e6:81:04:42:b0:95:84:94:3d:1e:93:a9:
5f:f6:2b:cf:23:40:37:b5:e4:af:2d:74:7a:7f:fc:
da:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:34:DF:61:13:4C:0A:B9:44:5A:6C:CB:B3:EC:63:EA:F0:FA:02:55
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/192617-961b-4300-b142-b239f50f0029/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/192617-961b-4300-b142-b239f50f0029/1/WzTfYRNMCrlEWmzLs-xj6vD6AlU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.249.224.0/19
62.97.160.0/19
62.141.128.0/19
78.156.0.0/19
82.194.192.0/19
84.208.0.0/13
109.108.192.0/19
176.74.208.0/21
178.17.144.0/20
185.46.224.0/22
185.71.208.0/22
185.138.32.0/22
188.113.64.0/18
188.126.192.0/19
IPv6:
2a02:fe0::/29
2a02:2200::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25400
41164
47853
49455
51135
Signature Algorithm: sha256WithRSAEncryption
68:8c:31:ac:58:56:be:fa:81:45:d1:6e:9b:97:bf:10:ef:9b:
58:99:b3:6d:7d:07:df:e6:e9:95:3c:7f:49:81:c3:6c:aa:43:
f4:62:e6:22:d7:58:e9:e1:e9:7b:b8:a4:4a:91:e5:ab:2a:2c:
2d:7e:0e:ab:b5:25:ec:ae:87:bf:02:02:cf:5f:2c:e7:c1:a9:
84:f2:3a:93:aa:ac:6c:fb:53:ea:3e:2b:f6:50:db:50:4e:40:
28:78:b8:f1:08:3d:5f:4a:ad:bb:4c:0e:39:ff:00:b5:e9:39:
bf:96:c3:5f:63:ae:71:3f:01:4c:ed:07:0b:49:28:9a:12:36:
81:12:f5:de:6a:b5:da:d1:c8:b1:96:57:a6:0e:a5:02:7d:ac:
5b:94:9c:cf:19:d9:10:3d:73:57:34:22:7a:cc:de:1b:22:36:
48:c6:97:7f:08:f4:d8:49:74:75:7c:6c:f6:4d:6d:83:6b:be:
e1:88:d2:20:53:dd:91:b1:60:88:c8:09:83:7d:a9:6e:cc:6b:
3a:f4:10:dc:f5:34:07:49:55:da:97:8a:8f:14:e7:88:8e:8a:
a6:f2:92:30:c4:35:03:05:49:a1:c1:92:a8:3e:c5:df:f0:8b:
2e:fb:0e:50:9f:70:60:2d:cc:0c:d0:77:92:5a:1f:61:b4:a3:
27:c9:f7:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:48 2024 by rpki-client on console-fra.rpki-client.org