Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cpeNHU53goFqxC2keI4zy7JIeFk.cer
File: cpeNHU53goFqxC2keI4zy7JIeFk.cer (raw, json)
Hash identifier: aOvsJHrKYcSbDISvvNBk6HhdTG2Sh4fBzdlZgTmRXdg=
Subject key identifier: 72:97:8D:1D:4E:77:82:81:6A:C4:2D:A4:78:8E:33:CB:B2:48:78:59
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856E65A4D695ACB67E074FF2801DF3AE03
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/cpeNHU53goFqxC2keI4zy7JIeFk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 17:33:53 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 45.130.184.0/22
IP: 45.133.112.0/22
IP: 45.136.24.0/22
IP: 45.140.4.0/22
IP: 45.141.12.0/22
IP: 45.141.128.0/22
IP: 45.147.8.0/22
IP: 45.147.232.0/22
IP: 45.152.136.0/22
IP: 45.154.120.0/22
IP: 45.159.20.0/22
IP: 185.240.84.0/22
IP: 185.241.70.0/23
IP: 194.180.232.0/23
IP: 194.180.236.0/23
IP: 2a04:a780::/29
IP: 2a05:8680::/29
IP: 2a05:8a80::/29
IP: 2a05:9380::/29
IP: 2a07:d9c0::/29
IP: 2a07:de00::/29
IP: 2a07:f180::/29
IP: 2a0b:a400::/29
IP: 2a0c:3940::/29
IP: 2a0c:3a40::/29
IP: 2a0c:41c0::/29
IP: 2a0c:7080::/29
IP: 2a0c:7f80::/29
IP: 2a0c:8bc0::/29
IP: 2a0c:9d80::/29
IP: 2a0e:5440::/29
IP: 2a0e:5a40::/29
IP: 2a0e:6d40::/29
IP: 2a0e:c340::/29
IP: 2a0f:47c0::/29
IP: 2a0f:6f00::/29
IP: 2a0f:7e80::/29
IP: 2a0f:7f80::/29
IP: 2a0f:8080::/29
IP: 2a0f:d700::/29
IP: 2a0f:d900::/29
IP: 2a0f:f880::/29
Validation: Failed, certificate revoked on Thu 23 Mar 2023 14:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:65:a4:d6:95:ac:b6:7e:07:4f:f2:80:1d:f3:ae:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 17:33:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72978d1d4e7782816ac42da4788e33cbb2487859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:61:7d:7a:66:c5:56:c2:00:49:75:92:3c:bc:
29:20:69:ed:4d:2d:a0:70:6d:6e:96:6d:ee:ea:0b:
54:f1:93:2d:68:3b:ad:b1:8f:81:de:8e:c3:bf:8f:
23:f2:fd:d2:7c:f0:69:8c:4b:7a:7a:b2:72:4a:4f:
33:2f:50:f4:4f:81:bb:22:e5:a9:18:fa:2c:68:09:
b9:41:e1:51:9b:8e:34:09:1f:9f:7c:79:41:c8:11:
c7:ea:4d:30:05:0b:3b:31:1f:0b:7d:ce:3b:85:d9:
5d:5e:5d:d9:ac:24:85:51:41:be:6a:08:f4:fe:6c:
a0:12:a0:c6:60:81:0c:59:76:36:10:48:1b:20:a8:
7c:5a:48:a3:76:28:af:e8:40:88:ad:b8:59:58:0d:
5a:37:7d:38:14:30:dd:d6:8c:1b:44:2d:fb:e5:39:
4f:d6:3d:b0:ee:d2:58:f7:dd:70:f5:e8:34:b6:63:
d5:0f:0e:cf:a9:6d:77:47:58:dc:03:a5:f0:a6:b5:
c3:e8:0b:85:fe:ab:72:3f:0a:de:d7:6d:f5:5c:b3:
cb:94:ef:1c:74:a2:7b:5d:f6:4f:1c:11:5b:72:1b:
ae:1b:8f:60:29:c6:d5:47:b6:fd:df:fc:75:78:2a:
00:74:b7:92:df:9b:ef:69:5e:20:cb:64:46:07:e6:
a5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:97:8D:1D:4E:77:82:81:6A:C4:2D:A4:78:8E:33:CB:B2:48:78:59
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/22e96f-2451-4e86-a037-8db62ea50995/1/cpeNHU53goFqxC2keI4zy7JIeFk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.184.0/22
45.133.112.0/22
45.136.24.0/22
45.140.4.0/22
45.141.12.0/22
45.141.128.0/22
45.147.8.0/22
45.147.232.0/22
45.152.136.0/22
45.154.120.0/22
45.159.20.0/22
185.240.84.0/22
185.241.70.0/23
194.180.232.0/23
194.180.236.0/23
IPv6:
2a04:a780::/29
2a05:8680::/29
2a05:8a80::/29
2a05:9380::/29
2a07:d9c0::/29
2a07:de00::/29
2a07:f180::/29
2a0b:a400::/29
2a0c:3940::/29
2a0c:3a40::/29
2a0c:41c0::/29
2a0c:7080::/29
2a0c:7f80::/29
2a0c:8bc0::/29
2a0c:9d80::/29
2a0e:5440::/29
2a0e:5a40::/29
2a0e:6d40::/29
2a0e:c340::/29
2a0f:47c0::/29
2a0f:6f00::/29
2a0f:7e80::/29
2a0f:7f80::/29
2a0f:8080::/29
2a0f:d700::/29
2a0f:d900::/29
2a0f:f880::/29
Signature Algorithm: sha256WithRSAEncryption
36:bc:dc:5e:44:32:e5:46:3d:c7:18:31:ed:40:2b:84:9f:54:
70:85:3c:e4:f0:ac:e2:01:9e:0e:2b:90:1a:c3:66:26:2f:89:
ca:ea:b5:83:e6:cb:db:14:17:dc:72:b3:2e:51:fd:45:23:ae:
30:e3:63:6b:ce:2d:d7:76:05:e5:64:8f:ff:8e:60:f6:61:65:
ec:60:e7:14:d5:46:3f:4b:80:52:9b:26:9e:cc:2b:e0:98:90:
a5:a1:de:03:aa:8a:79:cf:f2:6e:f6:3e:cf:3b:f4:bf:c7:80:
3a:f1:14:3a:17:1e:bc:0a:e5:8b:66:33:1b:d5:dd:63:98:a4:
c7:2f:94:2c:56:88:24:00:02:ea:a2:54:7e:c4:17:3f:57:69:
d4:4a:db:93:9c:14:1f:fd:07:8b:3d:a2:c4:6d:dd:fe:c3:05:
c3:59:77:2e:34:3d:41:b1:16:a3:5f:3f:88:1e:3c:de:e2:59:
9d:84:c0:5c:1c:38:18:2d:53:8c:59:cb:fa:16:4a:b2:0a:37:
81:d0:31:1e:b1:59:47:c5:d8:e6:2c:ad:d9:a4:f1:9c:a9:b1:
a4:97:f9:c4:a5:7a:47:44:95:5f:2b:33:bb:c3:29:66:ea:ea:
b6:d4:19:32:6f:e0:8d:52:fc:a5:8b:7a:60:ba:5a:f4:1e:22:
71:46:ea:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:36 2024 by rpki-client on console-fra.rpki-client.org