Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Y7qeSRmYmfBggsjCY8-7Mp4j-Eo.cer
File: Y7qeSRmYmfBggsjCY8-7Mp4j-Eo.cer (raw, json)
Hash identifier: YFo+bs8U8IQV9cnIsoH1QhhbnbTARyRLg0TMdw3mpEc=
Subject key identifier: 63:BA:9E:49:19:98:99:F0:60:82:C8:C2:63:CF:BB:32:9E:23:F8:4A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018616B31DBE7FB0BDFCB88747FAEA3F1D13
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f7/d0a974-a48d-4520-ae1f-27197e46ca06/1/Y7qeSRmYmfBggsjCY8-7Mp4j-Eo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f7/d0a974-a48d-4520-ae1f-27197e46ca06/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 03 Feb 2023 09:54:42 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 3265
IP: 62.216.0.0/19
IP: 62.251.0.0/17
IP: 80.100.0.0/15
IP: 80.126.0.0/15
IP: 82.92.0.0/14
IP: 82.161.0.0/16
IP: 83.68.0.0/19
IP: 83.160.0.0/14
IP: 194.109.0.0/16
IP: 195.64.80.0/20
IP: 212.238.0.0/16
IP: 213.84.0.0/16
IP: 213.222.0.0/19
IP: 2001:888::/29
IP: 2001:980::/29
Validation: Failed, certificate revoked on Thu 06 Apr 2023 06:25:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:16:b3:1d:be:7f:b0:bd:fc:b8:87:47:fa:ea:3f:1d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 3 09:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63ba9e49199899f06082c8c263cfbb329e23f84a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:45:0d:e3:02:bf:3f:02:86:ee:72:c0:13:4b:
97:32:2c:2d:73:dd:0e:e5:49:fa:f1:7b:09:2b:1b:
ec:a6:7e:77:fa:03:6d:7f:4e:a8:b2:bd:29:d8:48:
03:69:ee:bd:74:a6:4e:66:d6:f0:4f:50:2a:99:1c:
e7:0c:13:ec:f6:9c:3b:9c:87:f7:3c:fb:53:3b:a0:
17:09:3e:30:58:32:5f:de:25:35:54:03:4b:0a:24:
79:7f:03:c9:71:68:55:d2:c2:26:cf:d0:55:fa:8d:
d6:64:0f:87:28:bd:73:ca:ec:d6:c7:99:3d:d8:c6:
91:a3:b5:80:ad:d0:fa:35:16:3f:d9:9d:18:5b:6f:
28:f9:87:69:bb:68:18:ca:b0:e7:18:b9:7c:3e:6a:
48:cb:a3:ca:3f:17:cf:54:30:32:7c:45:2d:a6:8b:
86:57:c9:d3:92:ec:a4:27:2a:6d:89:72:bc:79:8c:
8d:1d:20:f0:24:c4:47:47:a3:e8:ff:49:94:29:e5:
d2:c2:35:56:78:2e:06:1b:fb:9c:60:0a:17:95:00:
67:66:0e:70:18:fe:74:c6:61:f1:cc:10:96:63:39:
0a:7f:e2:79:6a:17:56:c9:20:84:5a:17:ea:29:f7:
bd:8a:73:e1:c8:01:bf:dc:04:ac:24:5b:53:6f:91:
2c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:BA:9E:49:19:98:99:F0:60:82:C8:C2:63:CF:BB:32:9E:23:F8:4A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d0a974-a48d-4520-ae1f-27197e46ca06/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d0a974-a48d-4520-ae1f-27197e46ca06/1/Y7qeSRmYmfBggsjCY8-7Mp4j-Eo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.216.0.0/19
62.251.0.0/17
80.100.0.0/15
80.126.0.0/15
82.92.0.0/14
82.161.0.0/16
83.68.0.0/19
83.160.0.0/14
194.109.0.0/16
195.64.80.0/20
212.238.0.0/16
213.84.0.0/16
213.222.0.0/19
IPv6:
2001:888::/29
2001:980::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
3265
Signature Algorithm: sha256WithRSAEncryption
5d:3b:9d:7f:0d:4f:11:29:db:4b:68:fd:70:9f:d0:16:3e:88:
f0:b1:6d:c1:7c:7f:85:20:3a:5e:b1:fa:61:5e:c0:cc:ac:28:
08:40:a7:1c:8c:d2:29:03:08:69:19:5f:2c:c3:b4:fd:3d:fc:
d9:80:33:f2:f2:ed:36:50:5b:00:29:b1:ee:29:44:c0:11:a2:
2b:d7:ce:ff:0a:7f:0b:95:4c:53:13:ce:9a:c5:30:84:b5:be:
80:2f:46:47:ac:ca:ea:34:0f:bb:05:b7:f7:6e:16:b2:17:fc:
5b:15:19:00:c6:9a:63:56:c2:bf:a4:41:c2:ec:da:52:c6:bc:
ec:59:13:bf:37:c6:18:9f:ad:59:d0:32:93:d2:ba:23:3e:3b:
49:a2:28:c9:61:1d:c3:3a:84:8e:26:53:ec:ff:1d:af:92:a3:
5a:e0:47:05:bd:78:8c:5a:e5:f6:c4:c6:ef:50:36:88:16:27:
57:94:01:6a:fc:ec:2f:4c:9b:cb:ad:80:5d:ed:47:56:9b:a6:
b8:ab:49:c9:37:86:6a:d6:26:f2:48:f1:88:62:e6:87:19:92:
79:f7:18:42:37:ce:38:64:b7:54:0e:fd:f0:61:5e:a7:54:30:
85:81:93:cc:f1:4b:85:27:dd:a5:3a:2f:77:7b:6d:00:70:16:
b5:f3:28:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:34:46 2024 by rpki-client on console-ams.rpki-client.org