Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XSEl9i9QkIV1O6eeFKtoXWj7SY0.cer
File: XSEl9i9QkIV1O6eeFKtoXWj7SY0.cer (raw, json)
Hash identifier: /NJw/SYMDNuLrZ/tjS5g3aVjXeh65kmx7VGYyMsbU6I=
Subject key identifier: 5D:21:25:F6:2F:50:90:85:75:3B:A7:9E:14:AB:68:5D:68:FB:49:8D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0187222C92944644017E39FEF9A02694F465
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/164/5D2125F62F509085753BA79E14AB685D68FB498D.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/164
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Mon 27 Mar 2023 08:25:59 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 209013
IP: 45.10.212.0/22
IP: 45.14.212.0/22
IP: 45.82.20.0/22
IP: 45.86.128.0/22
IP: 45.94.160.0/22
IP: 45.134.68.0/22
IP: 45.138.240.0/22
IP: 176.119.195.0/24
IP: 193.160.100.0/23
IP: 193.160.118.0/23
IP: 195.200.210.0/24
IP: 195.200.215.0/24
IP: 195.200.221.0/24
IP: 195.216.219.0/24
IP: 2a0e:4700::/29
Validation: Failed, certificate revoked on Wed 31 May 2023 09:34:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:22:2c:92:94:46:44:01:7e:39:fe:f9:a0:26:94:f4:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 27 08:25:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d2125f62f509085753ba79e14ab685d68fb498d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ad:66:b7:c7:35:c1:ee:31:cf:4c:85:64:89:
42:3c:9d:7e:50:bc:52:cc:91:8d:ef:66:ef:c0:8e:
75:6b:0d:9c:6d:6f:82:1e:fe:6e:57:7b:30:8f:b9:
7a:d1:74:a5:46:9d:4c:22:39:65:ce:5c:52:91:c3:
9d:84:d3:df:5f:cf:5d:00:ad:b0:5f:fa:1e:81:82:
06:63:6d:cd:6a:1b:ff:d4:9a:aa:7c:55:26:9d:3b:
22:b3:57:41:f7:08:f6:63:4b:6c:cd:68:b1:a0:2b:
9a:28:28:1b:dc:aa:9a:b3:50:cc:a6:e0:56:7c:7c:
17:a7:42:7a:3f:3a:26:04:d0:30:63:dc:7a:80:67:
4a:61:93:bb:14:de:85:bf:6e:f3:45:41:dd:b1:7d:
f3:b7:3b:7e:ad:d9:d0:8b:37:35:14:fe:05:90:06:
2b:d2:72:b4:4c:dc:f1:b0:90:8c:1c:d0:ce:20:70:
a5:ab:09:c0:64:3d:04:85:e5:68:34:1e:4e:c4:34:
5d:20:9f:48:ee:44:00:7f:56:d5:e7:03:44:16:2c:
9e:b0:85:37:d1:b8:d0:e2:30:4e:14:8c:ea:40:44:
d0:7b:88:c5:ca:17:be:3a:ce:34:cb:36:bb:8a:b7:
dd:31:af:1c:de:ee:39:18:05:f1:28:7c:2a:7a:74:
ba:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:21:25:F6:2F:50:90:85:75:3B:A7:9E:14:AB:68:5D:68:FB:49:8D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/164
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/164/5D2125F62F509085753BA79E14AB685D68FB498D.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.212.0/22
45.14.212.0/22
45.82.20.0/22
45.86.128.0/22
45.94.160.0/22
45.134.68.0/22
45.138.240.0/22
176.119.195.0/24
193.160.100.0/23
193.160.118.0/23
195.200.210.0/24
195.200.215.0/24
195.200.221.0/24
195.216.219.0/24
IPv6:
2a0e:4700::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209013
Signature Algorithm: sha256WithRSAEncryption
24:18:6e:54:c0:65:64:c8:7d:10:d6:af:e1:7c:e1:2a:01:cb:
50:c6:5f:6b:ec:e1:dd:38:87:3a:b3:1a:bc:3b:79:c0:2d:e5:
41:0b:7c:fd:a1:61:d5:3f:d8:8e:d1:28:c1:c1:8e:d8:2d:d1:
64:92:cc:b1:c6:43:8f:0c:9f:da:78:d3:5c:7e:da:fc:b6:da:
88:b6:7d:8d:76:b5:17:f3:2c:b2:87:b9:1d:3c:19:50:a8:b8:
b7:b7:1d:46:05:14:59:1a:90:0c:56:f6:63:f2:fd:7e:12:eb:
b3:3e:55:90:7c:18:0f:14:8a:a0:2e:56:3a:0b:ba:dd:9b:38:
cd:16:2f:a2:f7:b5:47:ad:df:c7:ba:7c:9d:34:11:92:b7:00:
a7:e0:44:91:85:f4:57:6c:82:c4:91:85:42:2f:2f:52:66:8c:
49:f2:0e:44:1d:3e:ea:a3:2c:91:88:5b:98:20:87:b8:43:7c:
62:1c:d1:9b:8e:82:ff:eb:12:b1:e6:00:53:c1:f3:e6:a5:19:
ba:17:1d:e3:f2:fe:c9:e5:4c:e4:49:2c:c6:37:f3:51:fe:c3:
43:55:7d:7b:8b:56:83:47:a9:a4:f1:0d:1d:2e:83:6a:13:c8:
3e:f6:c3:1f:0e:96:61:8d:8a:fa:2d:ab:d5:0c:03:88:ca:31:
4f:77:3d:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:56 2024 by rpki-client on console-fra.rpki-client.org