Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aBBdgaOJz2ic4DaayDl2I1Elnxs.cer
File: aBBdgaOJz2ic4DaayDl2I1Elnxs.cer (raw, json)
Hash identifier: c20q19SXpT/qR3KOFFT2S3c/5UEQ4wButh+80eKdQVU=
Subject key identifier: 68:10:5D:81:A3:89:CF:68:9C:E0:36:9A:C8:39:76:23:51:25:9F:1B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7951BB8D0833AE3CA6828EB8D77A23B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/30/a6c720-79fc-483a-a257-d60d2557e4f2/1/aBBdgaOJz2ic4DaayDl2I1Elnxs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/30/a6c720-79fc-483a-a257-d60d2557e4f2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:27 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 62107
IP: 193.107.23.0/24
IP: 2a11:4580::/29
Validation: Failed, certificate revoked on Thu 21 Mar 2024 15:54:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:1b:b8:d0:83:3a:e3:ca:68:28:eb:8d:77:a2:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68105d81a389cf689ce0369ac839762351259f1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b7:08:68:90:43:3c:39:10:c0:cd:df:e4:c4:
27:c9:8d:ba:0e:7d:c4:85:6d:b4:6e:31:18:49:26:
67:02:ac:87:52:34:b4:7b:c5:cf:62:44:04:88:96:
b9:7b:7f:26:db:57:bd:b3:5e:69:7e:68:10:85:85:
ba:96:66:0f:24:4d:a8:18:4e:af:1f:a1:10:d1:b2:
89:d7:57:19:af:0c:3a:f1:8b:8b:21:dc:5c:ec:0e:
bd:2f:c8:2c:18:8c:eb:eb:13:47:f4:01:26:04:ec:
f8:34:a3:7d:fc:66:56:0a:04:6f:70:71:00:2a:5f:
4f:97:97:74:29:08:1e:60:a6:78:25:b8:41:f0:e5:
b0:42:90:df:13:9a:ee:dd:38:02:d0:ee:99:61:4f:
ed:0d:8d:bf:94:e6:25:9a:77:fe:f0:b1:8d:3b:6d:
95:8b:05:89:2f:19:48:17:c9:0b:5a:5f:d4:d0:6f:
e0:ee:ed:e2:49:b0:af:fd:5c:bf:09:18:5d:e1:73:
7b:e9:b2:5b:a9:a5:f7:c3:a4:17:71:9f:59:04:21:
ca:7d:31:10:21:18:14:01:02:0a:73:83:c6:86:8b:
53:85:6a:b2:f0:07:b8:6d:fb:02:4f:61:fc:48:e5:
08:8d:9a:05:88:26:cb:d9:10:06:97:03:52:0c:61:
bd:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:10:5D:81:A3:89:CF:68:9C:E0:36:9A:C8:39:76:23:51:25:9F:1B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a6c720-79fc-483a-a257-d60d2557e4f2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a6c720-79fc-483a-a257-d60d2557e4f2/1/aBBdgaOJz2ic4DaayDl2I1Elnxs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.23.0/24
IPv6:
2a11:4580::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62107
Signature Algorithm: sha256WithRSAEncryption
ac:67:1e:c3:4c:9a:d2:50:f2:0e:69:d1:1b:77:99:39:f9:de:
d8:8f:83:fb:3d:c3:97:65:83:49:4c:33:da:0a:15:07:62:e6:
8e:d5:82:03:0f:c2:81:c4:45:a9:70:0c:29:63:22:12:4c:76:
b0:04:67:dc:e3:ac:84:9c:4d:c5:cc:18:ad:87:59:d6:50:46:
ed:cc:b7:5b:53:43:45:6e:48:a2:68:df:d8:b3:37:3c:1a:30:
d8:cd:17:84:4b:6f:8d:da:04:af:c3:d7:33:02:dc:4c:9b:d9:
b7:0a:e7:f3:0d:32:99:58:92:61:bf:53:38:81:55:d5:2f:1e:
f6:0e:3d:1d:79:0c:a2:6e:8f:8a:97:8f:5c:4b:56:55:3a:80:
c6:87:f7:70:46:70:08:af:5c:e1:c8:18:0e:3d:e3:c9:c6:35:
69:17:ee:5e:05:f5:03:ea:5f:3f:91:a0:2f:6a:1f:e1:a8:43:
a5:d3:70:b7:87:67:a6:60:60:49:ca:aa:57:db:f8:5d:e8:94:
29:f5:a7:89:95:3a:a9:b0:fc:34:bc:cf:dc:c3:a4:18:82:ff:
1a:54:77:22:61:fa:05:57:52:56:63:21:59:38:7d:e3:29:5a:
59:91:9b:80:06:d0:48:89:8e:79:7a:97:fc:62:44:fb:a5:35:
3c:5a:54:1e
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzHlRu40IM648poKOuNd6I7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDAzMTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODEwNWQ4MWEzODljZjY4OWNlMDM2OWFjODM5NzYyMzUxMjU5ZjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLcIaJBDPDkQwM3f5MQnyY26Dn3E
hW20bjEYSSZnAqyHUjS0e8XPYkQEiJa5e38m21e9s15pfmgQhYW6lmYPJE2oGE6v
H6EQ0bKJ11cZrww68YuLIdxc7A69L8gsGIzr6xNH9AEmBOz4NKN9/GZWCgRvcHEA
Kl9Pl5d0KQgeYKZ4JbhB8OWwQpDfE5ru3TgC0O6ZYU/tDY2/lOYlmnf+8LGNO22V
iwWJLxlIF8kLWl/U0G/g7u3iSbCv/Vy/CRhd4XN76bJbqaX3w6QXcZ9ZBCHKfTEQ
IRgUAQIKc4PGhotThWqy8Ae4bfsCT2H8SOUIjZoFiCbL2RAGlwNSDGG9aQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFGgQXYGjic9onOA2msg5diNRJZ8bMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMwL2E2Yzcy
MC03OWZjLTQ4M2EtYTI1Ny1kNjBkMjU1N2U0ZjIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAvYTZjNzIw
LTc5ZmMtNDgzYS1hMjU3LWQ2MGQyNTU3ZTRmMi8xL2FCQmRnYU9KejJpYzREYWF5
RGwySTFFbG54cy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAwWsXMA0EAgACMAcDBQMqEUWAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwDymzANBgkqhkiG9w0BAQsFAAOCAQEArGcew0ya0lDy
DmnRG3eZOfne2I+D+z3Dl2WDSUwz2goVB2LmjtWCAw/CgcRFqXAMKWMiEkx2sARn
3OOshJxNxcwYrYdZ1lBG7cy3W1NDRW5Iomjf2LM3PBow2M0XhEtvjdoEr8PXMwLc
TJvZtwrn8w0ymViSYb9TOIFV1S8e9g49HXkMom6PipePXEtWVTqAxof3cEZwCK9c
4cgYDj3jycY1aRfuXgX1A+pfP5GgL2of4ahDpdNwt4dnpmBgScqqV9v4XeiUKfWn
iZU6qbD8NLzP3MOkGIL/GlR3ImH6BVdSVmMhWTh94ylaWZGbgAbQSImOeXqX/GJE
+6U1PFpUHg==
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:35 2025 by rpki-client