Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Yvwu1lV9DOgOgVBbH51YBpiIfG4.cer
File: Yvwu1lV9DOgOgVBbH51YBpiIfG4.cer (raw, json)
Hash identifier: kLDtU977RCxJbWlFCyMfTIB96jvab9Somz/Aix843IQ=
Subject key identifier: 62:FC:2E:D6:55:7D:0C:E8:0E:81:50:5B:1F:9D:58:06:98:88:7C:6E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856F40B1C4EACE431AE6836B85A9BAAC73
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a1/f68113-73a7-400d-8c99-99befa476a8f/1/Yvwu1lV9DOgOgVBbH51YBpiIfG4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a1/f68113-73a7-400d-8c99-99befa476a8f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 21:33:08 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 47857
AS: 49058
AS: 56857
AS: 57290
AS: 199622 -- 199624
AS: 199647
IP: 91.208.171.0/24
IP: 95.131.176.0/21
IP: 185.8.4.0/22
IP: 185.25.8.0/22
IP: 185.166.240.0/22
IP: 2a00:7b60::/32
IP: 2a03:13c0::/32
IP: 2a0a:2100::/29
Validation: Failed, certificate revoked on Wed 20 Dec 2023 13:17:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:40:b1:c4:ea:ce:43:1a:e6:83:6b:85:a9:ba:ac:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:33:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62fc2ed6557d0ce80e81505b1f9d580698887c6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d9:37:b9:80:2f:c5:2c:d4:42:0c:b6:6b:dc:
9d:fe:66:2a:73:8d:55:7e:d8:8b:30:21:bd:3a:97:
e0:00:e2:db:d7:72:97:61:c6:30:71:12:d2:36:00:
86:ec:1d:51:18:5e:c1:4f:e7:14:3d:e9:f2:02:65:
c2:9a:e8:ea:ad:c0:f0:98:9c:87:2a:24:d6:4c:c1:
a8:8e:e6:e0:f2:ac:ff:b1:6c:7b:32:4d:3f:3d:f3:
8d:25:ca:8a:6b:d8:53:de:d0:12:8a:65:ab:62:a9:
1c:b0:0a:f6:95:f9:d7:2f:e5:d6:0e:d6:3d:73:a6:
70:8c:b6:0b:e2:bb:4f:e8:a1:43:b2:d6:cc:38:ea:
30:65:f1:f3:77:3f:c4:bb:02:51:f7:bd:84:13:d2:
8e:80:82:ce:71:ce:01:df:71:e0:ed:3c:ad:67:1e:
34:88:0f:d2:ab:b5:47:dc:02:2b:93:6f:b5:e9:5d:
ce:3a:38:72:2a:b9:55:4c:8a:81:e8:98:29:35:2e:
72:a9:e7:56:6c:e5:b5:5d:fe:4a:e2:d2:e5:2a:91:
9a:db:52:ee:bc:b6:49:38:a3:0a:8e:4f:a1:8b:df:
ad:5e:d7:81:90:0d:00:b2:f1:3d:f9:3f:7f:4b:91:
d0:9c:91:55:a8:bd:03:22:ce:df:ba:d4:10:b0:89:
a8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:FC:2E:D6:55:7D:0C:E8:0E:81:50:5B:1F:9D:58:06:98:88:7C:6E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f68113-73a7-400d-8c99-99befa476a8f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f68113-73a7-400d-8c99-99befa476a8f/1/Yvwu1lV9DOgOgVBbH51YBpiIfG4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.171.0/24
95.131.176.0/21
185.8.4.0/22
185.25.8.0/22
185.166.240.0/22
IPv6:
2a00:7b60::/32
2a03:13c0::/32
2a0a:2100::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47857
49058
56857
57290
199622-199624
199647
Signature Algorithm: sha256WithRSAEncryption
54:ef:4b:ec:22:5a:9f:93:72:55:7c:3b:52:90:2f:1d:af:6c:
14:bb:e5:cc:00:21:5f:8a:dc:42:ad:41:da:06:bd:34:9e:d6:
fa:29:be:ce:5f:94:0c:75:04:27:fa:d3:0f:1a:1a:61:e3:d0:
8a:a7:7d:80:ae:19:90:14:e6:46:b1:c9:ed:1a:17:3a:61:32:
80:43:b2:12:b9:51:96:e3:37:81:ea:cd:90:8f:3a:18:2d:d9:
0a:19:c7:6c:c1:29:b4:92:69:3b:ee:11:5b:8a:0c:aa:08:a4:
66:d7:e3:28:70:0b:58:72:84:60:51:8b:89:a2:9d:4a:13:6c:
85:6b:a6:f6:67:3d:7f:70:a9:eb:1d:83:be:46:66:0a:76:ab:
08:5a:78:68:c9:bf:c4:1c:45:73:94:2f:74:d5:48:10:c5:56:
6f:ac:40:a7:a6:e9:17:0a:13:cf:b1:ce:67:26:00:7a:f6:90:
61:79:3e:46:e6:8c:a4:8a:cc:69:7b:94:6a:17:e6:87:e4:8b:
9d:1d:3e:d1:ba:ba:e4:57:60:05:93:fa:a1:a7:9d:ab:0e:8b:
fd:2c:f8:cc:a7:d8:4d:97:0b:34:ce:19:2c:0d:8f:c2:3f:08:
6b:10:68:1f:16:8b:7c:e9:55:0e:29:ae:d8:70:52:8a:5a:d1:
c6:fa:ce:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:17 2024 by rpki-client on console-fra.rpki-client.org