Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
File: YIU5fyagRMrvamtmkoczGqTWhkU.cer (raw, json)
Hash identifier: F63RA87Z9cVqAU68vaWqrD9+C5pGzuoNZ7epWNxEcbs=
Subject key identifier: 60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856E65C6CA59EAD5BE7BE7E9F4BA2054B5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 17:34:01 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 207895
IP: 36.255.92.0/22
IP: 185.111.188.0/23
IP: 185.130.60.0/22
IP: 185.213.240.0/22
IP: 185.229.200.0/22
IP: 185.244.94.0/23
IP: 2a06:5ec0::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:65:c6:ca:59:ea:d5:be:7b:e7:e9:f4:ba:20:54:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 17:34:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6085397f26a044caef6a6b669287331aa4d68645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ac:50:ac:37:0a:22:b2:25:f7:0c:80:d9:b0:
3d:17:a4:33:02:eb:9f:60:d0:d5:0a:5e:c1:f4:73:
b3:3b:94:38:ad:b9:10:c3:7c:e1:15:02:05:09:9e:
f9:3f:c6:0b:10:7a:9b:3a:b7:94:20:2d:65:84:b4:
a3:9d:95:cd:57:a4:48:78:e7:23:42:c2:34:5f:94:
a6:06:3c:c3:75:6c:33:e3:e4:aa:61:c9:82:88:a9:
0c:83:30:39:6d:7f:10:68:50:31:f0:b6:d7:d8:f9:
29:b3:09:f0:a0:86:d0:79:c7:d4:ad:55:1f:66:06:
7d:9f:06:e5:34:da:17:fd:18:70:1c:1f:38:69:3a:
00:a2:45:89:c6:b0:5a:c4:3c:b4:7d:fd:ab:ab:00:
e0:18:ed:5c:ed:5f:d3:d1:2e:dc:31:75:38:51:17:
30:8c:25:f3:f3:46:90:6a:ef:66:6b:e7:22:ea:14:
a6:35:b1:e7:a5:b7:20:da:d1:66:cc:5f:cf:9e:33:
8a:3f:61:19:a4:83:77:9d:d7:5e:57:7c:03:d4:ce:
83:49:40:ac:67:d9:00:c2:c9:81:9d:04:13:0c:f4:
11:9f:95:93:43:c2:f2:a4:bd:1e:d5:24:9e:e1:ae:
f5:74:0f:d5:eb:d2:6e:da:d5:fc:83:78:61:28:e2:
65:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
36.255.92.0/22
185.111.188.0/23
185.130.60.0/22
185.213.240.0/22
185.229.200.0/22
185.244.94.0/23
IPv6:
2a06:5ec0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207895
Signature Algorithm: sha256WithRSAEncryption
6f:33:fb:a2:55:90:df:9c:f7:1f:40:07:ba:32:da:33:08:20:
a7:08:ee:45:55:bd:a2:8b:61:c4:f7:63:d9:32:d0:a7:10:5a:
01:a5:9b:29:00:fa:a0:a9:83:65:bb:6e:1c:77:29:05:eb:0a:
e7:57:49:f0:5d:db:ee:d4:ad:74:e4:97:3d:1a:94:d7:c3:4f:
e3:20:89:0a:63:27:58:13:96:29:b9:9e:48:ef:7f:8f:fe:96:
cd:0a:df:58:36:15:c2:be:e5:79:ea:00:83:2f:90:00:38:61:
fb:9f:89:58:71:16:d3:7b:0a:f6:c0:e7:cf:0d:dc:7a:51:13:
5a:e6:b3:ec:a3:f4:62:91:8b:b6:10:cf:6a:68:5c:cf:72:67:
8f:15:b3:07:57:9a:63:8c:e1:cb:c0:37:bf:74:5a:74:34:d6:
30:38:f4:c2:85:85:12:be:9c:00:4b:bb:9c:2a:2f:d7:28:46:
c3:2a:bc:bd:da:46:f1:3a:22:7e:bf:f6:22:4c:49:c1:d0:2b:
c9:ef:19:b8:e1:09:89:2a:92:b4:cf:37:05:a6:fd:28:81:c0:
43:5f:0a:a8:98:36:6c:c7:6d:1c:ea:56:ba:59:01:9d:90:3d:
bb:dd:4b:90:76:38:cb:95:b0:af:7d:96:40:c2:ad:f5:ff:c2:
6a:24:63:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:23 2023 by rpki-client on console-fra.rpki-client.org