Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZnICtlohkCqa24Lnf4d-o4e8Qcg.cer
File: ZnICtlohkCqa24Lnf4d-o4e8Qcg.cer (raw, json)
Hash identifier: ezzEUmjxcf/YxxFbntu8SEKdlB+g8YI/KOVDPzc+2DQ=
Subject key identifier: 66:72:02:B6:5A:21:90:2A:9A:DB:82:E7:7F:87:7E:A3:87:BC:41:C8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC726DA8C047A90D77D991DD6EEB0C48A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/83bee0-e006-4f27-a0d3-839cd610528a/1/ZnICtlohkCqa24Lnf4d-o4e8Qcg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/83bee0-e006-4f27-a0d3-839cd610528a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 192.109.73.0/24
IP: 193.17.27.0/24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 13:24:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:da:8c:04:7a:90:d7:7d:99:1d:d6:ee:b0:c4:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=667202b65a21902a9adb82e77f877ea387bc41c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e0:2c:c2:97:aa:10:17:a6:5d:8c:20:02:91:
86:13:55:12:d0:f6:01:f0:6a:2b:fd:c6:c9:9b:f1:
31:1f:60:e8:22:49:34:10:98:e5:aa:52:c6:f0:46:
80:84:fa:31:89:21:80:25:fd:b9:aa:1f:91:b8:97:
c4:20:3c:4d:55:a7:1a:3e:22:0c:ed:fd:ba:f6:91:
4d:ad:8f:5c:8b:a7:6c:a7:e1:af:b0:ef:4a:08:10:
f6:ff:c5:68:3a:7e:32:89:a0:52:f1:67:e6:50:4b:
32:ec:06:a7:7f:11:e9:83:2c:25:22:4f:c5:20:2b:
0d:3b:80:17:33:26:6c:23:d1:fc:eb:46:f3:73:e7:
ea:54:18:9c:5f:4e:37:2d:8a:25:fe:02:86:e3:54:
91:2a:34:1a:51:b5:25:6e:f0:f5:77:a0:fb:68:96:
d7:48:c3:dc:27:5f:38:c1:ba:e3:d0:5a:92:5f:a6:
c7:cd:fe:62:53:81:0d:c2:18:8f:d5:f9:94:d5:cd:
1b:08:db:2e:06:c3:bd:d3:85:58:88:e7:5a:64:97:
17:c7:eb:a8:fc:14:60:f0:2f:14:e8:da:c1:80:cc:
03:8e:2e:aa:9f:a0:6c:84:27:13:2b:5a:f5:45:26:
5f:2f:a7:b1:d0:c8:a7:7b:0c:c0:5b:c9:1b:19:4d:
32:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:72:02:B6:5A:21:90:2A:9A:DB:82:E7:7F:87:7E:A3:87:BC:41:C8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/83bee0-e006-4f27-a0d3-839cd610528a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/83bee0-e006-4f27-a0d3-839cd610528a/1/ZnICtlohkCqa24Lnf4d-o4e8Qcg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.73.0/24
193.17.27.0/24
Signature Algorithm: sha256WithRSAEncryption
17:bd:28:db:60:13:20:c5:a5:8b:f2:77:5d:73:57:cb:70:a0:
5b:5c:9e:80:f0:7d:81:11:9c:6a:f6:48:15:81:50:8e:91:41:
9d:c0:8c:e0:19:75:37:49:b2:8f:5e:09:ac:20:ed:17:1d:41:
5d:7d:89:04:a0:50:23:e3:06:9f:3c:25:71:7f:31:2c:7b:f3:
13:e5:c6:f9:81:59:1e:ae:9a:a4:4e:db:d2:6b:cf:dd:2d:6a:
65:4d:fa:42:a0:35:5e:0d:5d:50:55:3e:eb:1b:fe:94:6a:ad:
00:9b:82:05:77:0f:19:a7:2d:e9:42:76:9c:cb:32:4b:f4:90:
45:21:b2:26:2d:f3:df:94:b4:1c:2c:f2:c6:50:fd:fd:9a:14:
6f:f7:cb:7f:28:df:4d:a1:c2:18:8b:f2:ba:8b:aa:11:d7:99:
98:fc:c2:1e:ad:7c:07:d3:28:58:93:37:81:33:ec:95:c5:77:
77:ce:66:bd:32:b7:c4:c1:5d:fa:8a:3b:4b:4b:8c:c2:9b:39:
fe:89:8b:64:0a:d9:44:9e:1c:eb:1a:8c:06:67:8f:b0:ed:c7:
cd:c0:d7:29:42:f3:ea:c7:d7:df:a9:3b:76:ea:3a:62:34:cb:
11:75:42:52:cb:1e:ab:0b:17:d1:34:e3:27:a1:b7:fb:a0:a1:
72:cd:f7:59
-----BEGIN CERTIFICATE-----
MIIFfjCCBGagAwIBAgISAYzHJtqMBHqQ132ZHdbusMSKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjIzMTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjcyMDJiNjVhMjE5MDJhOWFkYjgyZTc3Zjg3N2VhMzg3YmM0MWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOAswpeqEBemXYwgApGGE1US0PYB
8Gor/cbJm/ExH2DoIkk0EJjlqlLG8EaAhPoxiSGAJf25qh+RuJfEIDxNVacaPiIM
7f269pFNrY9ci6dsp+GvsO9KCBD2/8VoOn4yiaBS8WfmUEsy7AanfxHpgywlIk/F
ICsNO4AXMyZsI9H860bzc+fqVBicX043LYol/gKG41SRKjQaUbUlbvD1d6D7aJbX
SMPcJ184wbrj0FqSX6bHzf5iU4ENwhiP1fmU1c0bCNsuBsO904VYiOdaZJcXx+uo
/BRg8C8U6NrBgMwDji6qn6BshCcTK1r1RSZfL6ex0MinewzAW8kbGU0yNQIDAQAB
o4ICijCCAoYwHQYDVR0OBBYEFGZyArZaIZAqmtuC53+HfqOHvEHIMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkyLzgzYmVl
MC1lMDA2LTRmMjctYTBkMy04MzljZDYxMDUyOGEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTIvODNiZWUw
LWUwMDYtNGYyNy1hMGQzLTgzOWNkNjEwNTI4YS8xL1puSUN0bG9oa0NxYTI0TG5m
NGQtbzRlOFFjZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF
BwEHAQH/BBYwFDASBAIAATAMAwQAwG1JAwQAwREbMA0GCSqGSIb3DQEBCwUAA4IB
AQAXvSjbYBMgxaWL8nddc1fLcKBbXJ6A8H2BEZxq9kgVgVCOkUGdwIzgGXU3SbKP
XgmsIO0XHUFdfYkEoFAj4wafPCVxfzEse/MT5cb5gVkerpqkTtvSa8/dLWplTfpC
oDVeDV1QVT7rG/6Uaq0Am4IFdw8Zpy3pQnacyzJL9JBFIbImLfPflLQcLPLGUP39
mhRv98t/KN9NocIYi/K6i6oR15mY/MIerXwH0yhYkzeBM+yVxXd3zma9MrfEwV36
ijtLS4zCmzn+iYtkCtlEnhzrGowGZ4+w7cfNwNcpQvPqx9ffqTt26jpiNMsRdUJS
yx6rCxfRNOMnobf7oKFyzfdZ
-----END CERTIFICATE-----
Generated at Mon Apr 21 04:06:08 2025 by rpki-client