Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XZDBy5AErwhTkzY8-AJRgDVvrZ4.cer
File: XZDBy5AErwhTkzY8-AJRgDVvrZ4.cer (raw, json)
Hash identifier: bHKQ3VoZgFPswWXSYght+peLS9Zvder0vZKcDCcf+l8=
Subject key identifier: 5D:90:C1:CB:90:04:AF:08:53:93:36:3C:F8:02:51:80:35:6F:AD:9E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0185716868FCF78452A53F3B9FFDB544A2EA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/98/f4d2d6-1d9e-4787-b978-38f3922ed114/1/XZDBy5AErwhTkzY8-AJRgDVvrZ4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/98/f4d2d6-1d9e-4787-b978-38f3922ed114/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 07:35:46 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 193.3.182.0/24
IP: 2a11:f6c0::/29
Validation: Failed, certificate revoked on Tue 21 Nov 2023 10:28:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:68:68:fc:f7:84:52:a5:3f:3b:9f:fd:b5:44:a2:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 07:35:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d90c1cb9004af085393363cf8025180356fad9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cf:63:b0:36:57:5c:36:b8:15:d2:57:21:f8:
8b:e8:9c:e3:ff:1f:33:bc:cd:8d:25:8e:a6:e8:f8:
23:8e:dc:9b:f3:1e:f3:c8:4a:9b:69:ab:3d:68:ac:
af:87:90:42:f0:eb:c3:c5:97:95:c8:19:6b:78:5c:
8a:34:3e:9a:4a:8f:5b:0c:3f:b3:ea:c2:4d:b4:a3:
b4:91:64:50:99:cb:2d:70:b0:6d:53:08:8e:36:f4:
41:d5:76:95:e8:04:85:3f:ab:8f:32:c7:19:32:30:
c2:3e:f3:e9:df:b6:10:39:57:30:eb:e1:88:f6:cf:
6b:a6:c8:4e:a9:05:94:16:22:df:e7:c5:bc:33:68:
bb:43:a8:85:03:71:be:d7:fb:bf:2b:fe:e6:a7:0c:
06:e1:91:f9:69:a4:7c:41:6d:a3:55:02:eb:ff:78:
cb:56:09:03:2e:a1:9d:fe:fe:3b:78:cb:fc:7e:2e:
31:63:40:9f:b5:da:3b:84:72:cf:61:06:0d:a3:17:
7f:34:67:11:e1:d5:2b:6b:f6:3e:b3:95:e9:87:63:
93:b8:3c:9b:ab:9f:57:2f:6d:76:a2:a7:fb:e2:96:
9e:97:b9:90:87:62:41:a4:0c:76:e4:68:a8:17:b0:
85:ff:2a:b7:56:4a:12:5c:3f:a0:58:fb:72:99:15:
bc:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:90:C1:CB:90:04:AF:08:53:93:36:3C:F8:02:51:80:35:6F:AD:9E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f4d2d6-1d9e-4787-b978-38f3922ed114/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f4d2d6-1d9e-4787-b978-38f3922ed114/1/XZDBy5AErwhTkzY8-AJRgDVvrZ4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.182.0/24
IPv6:
2a11:f6c0::/29
Signature Algorithm: sha256WithRSAEncryption
5f:fc:e9:0a:54:5e:43:42:b4:62:fd:a4:c1:77:ca:c9:79:21:
16:09:dc:bb:8b:e3:a6:30:58:bb:a8:f0:db:44:70:5c:22:4c:
1b:50:aa:c4:9b:6c:ec:29:15:94:e9:e3:20:6d:2c:09:a5:20:
d4:67:58:2d:2c:38:7e:ea:36:56:9e:81:eb:ef:06:54:66:9b:
29:72:ba:d6:e4:9a:e9:00:f3:8a:bc:b4:d2:f0:04:d5:9f:26:
59:ea:11:e5:66:3e:01:e0:aa:09:12:45:d0:1d:1b:ad:5d:7c:
15:8c:d5:5f:7b:4b:bf:00:d8:09:34:68:bc:d3:ac:11:72:ae:
6c:a0:e4:2f:a2:3d:b7:2c:e4:0f:bf:7e:b9:2e:53:e1:4a:63:
ec:07:42:ba:af:90:d3:64:b6:2c:33:fa:3d:c5:4b:0e:1b:8e:
98:2d:46:a3:3e:bc:b8:27:84:1a:4f:53:b8:6b:6a:1e:1b:2a:
64:8a:30:c7:fb:d4:73:a2:6b:5f:4e:3c:17:28:9d:ae:66:04:
c9:9f:08:64:97:e2:ef:c8:96:15:49:9b:c3:b4:15:16:d4:ce:
80:80:c7:df:9f:1f:a6:9c:09:0a:ae:d3:62:99:81:c4:47:92:
92:24:a2:fe:92:e0:15:a8:fa:af:2e:3d:ad:9d:ba:1f:ef:8a:
bb:02:a9:80
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgISAYVxaGj894RSpT87n/21RKLqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMwMTAyMDczNTQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZDkwYzFjYjkwMDRhZjA4NTM5MzM2M2NmODAyNTE4MDM1NmZhZDllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzM9jsDZXXDa4FdJXIfiL6Jzj/x8z
vM2NJY6m6Pgjjtyb8x7zyEqbaas9aKyvh5BC8OvDxZeVyBlreFyKND6aSo9bDD+z
6sJNtKO0kWRQmcstcLBtUwiONvRB1XaV6ASFP6uPMscZMjDCPvPp37YQOVcw6+GI
9s9rpshOqQWUFiLf58W8M2i7Q6iFA3G+1/u/K/7mpwwG4ZH5aaR8QW2jVQLr/3jL
VgkDLqGd/v47eMv8fi4xY0Cftdo7hHLPYQYNoxd/NGcR4dUra/Y+s5Xph2OTuDyb
q59XL212oqf74pael7mQh2JBpAx25GioF7CF/yq3VkoSXD+gWPtymRW8OQIDAQAB
o4ICkzCCAo8wHQYDVR0OBBYEFF2QwcuQBK8IU5M2PPgCUYA1b62eMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk4L2Y0ZDJk
Ni0xZDllLTQ3ODctYjk3OC0zOGYzOTIyZWQxMTQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgvZjRkMmQ2
LTFkOWUtNDc4Ny1iOTc4LTM4ZjM5MjJlZDExNC8xL1haREJ5NUFFcndoVGt6WTgt
QUpSZ0RWdnJaNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAwQO2MA0EAgACMAcDBQMqEfbAMA0GCSqGSIb3
DQEBCwUAA4IBAQBf/OkKVF5DQrRi/aTBd8rJeSEWCdy7i+OmMFi7qPDbRHBcIkwb
UKrEm2zsKRWU6eMgbSwJpSDUZ1gtLDh+6jZWnoHr7wZUZpspcrrW5JrpAPOKvLTS
8ATVnyZZ6hHlZj4B4KoJEkXQHRutXXwVjNVfe0u/ANgJNGi806wRcq5soOQvoj23
LOQPv365LlPhSmPsB0K6r5DTZLYsM/o9xUsOG46YLUajPry4J4QaT1O4a2oeGypk
ijDH+9RzomtfTjwXKJ2uZgTJnwhkl+LvyJYVSZvDtBUW1M6AgMffnx+mnAkKrtNi
mYHER5KSJKL+kuAVqPqvLj2tnbof74q7AqmA
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:57 2024 by rpki-client on console-fra.rpki-client.org