Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2W_9k2Kh5d-M02JxOOMDRCVr2M.cer
File: f2W_9k2Kh5d-M02JxOOMDRCVr2M.cer (raw, json)
Hash identifier: 0ZoX30ZxhFFQtLZ/Cwrsp+nBSOVkI1SoIg6/OTvihpo=
Subject key identifier: 7F:65:BF:F6:4D:8A:87:97:7E:33:4D:89:C4:E3:8C:0D:10:95:AF:63
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B31EBFA1FAC3B3B4CD7C8895D9D21
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/f2W_9k2Kh5d-M02JxOOMDRCVr2M.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44672
AS: 47110
AS: 197376
AS: 201730
IP: 37.221.88.0/22
IP: 77.223.216.0/21
IP: 91.199.207.0/24
IP: 92.62.124.0/22
IP: 185.10.84.0/22
IP: 185.65.92.0/22
IP: 185.78.100.0/22
IP: 185.138.244.0/22
IP: 185.146.148.0/22
IP: 193.168.244.0/22
IP: 194.169.252.0/24
IP: 212.6.38.0/24
IP: 2a03:1aa0::/32
IP: 2a03:5e40::/32
IP: 2a05:5fc0::/29
Validation: Failed, certificate revoked on Wed 13 Mar 2024 09:39:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:31:eb:fa:1f:ac:3b:3b:4c:d7:c8:89:5d:9d:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f65bff64d8a87977e334d89c4e38c0d1095af63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:60:df:77:d1:43:82:68:62:22:54:ab:ee:00:
1e:10:89:3b:3e:8b:18:4e:ab:8d:23:2a:71:9c:1b:
01:4e:b1:f6:06:32:44:81:af:a1:2c:03:95:3e:d8:
cc:6a:7d:43:1d:0d:73:a1:48:a9:4c:3b:e8:59:58:
8d:d0:2d:0c:48:80:f6:4a:f8:b7:da:cf:ef:e4:8c:
e0:9c:d3:e8:a2:01:76:ac:54:31:e8:63:fb:54:0d:
ff:e6:15:20:5f:fc:58:cf:8a:33:c1:0c:5d:24:f5:
9b:9d:c7:22:08:f4:31:4a:4d:be:79:79:1e:c6:1b:
30:33:4f:72:42:d3:9a:92:f1:60:0b:7f:3a:35:02:
04:27:1d:aa:6c:98:49:1f:4e:48:45:53:a7:7a:e0:
ce:b5:3b:70:ba:d4:c3:cf:ef:47:d2:d9:e3:c0:09:
54:fa:f1:65:8c:c5:23:d3:ef:6e:78:34:af:df:b6:
f4:f2:d4:c2:f4:17:ef:2c:65:ff:4d:eb:aa:06:8a:
e9:aa:e7:cb:d4:df:12:25:93:bb:9e:e5:54:dc:8a:
18:3d:ea:63:a8:df:81:f1:b1:95:5c:80:a5:8d:80:
40:f2:9a:78:c8:91:a1:e5:22:46:fd:e2:91:fd:56:
e4:0a:03:65:a9:57:3c:25:c2:58:dd:b2:44:00:f1:
ff:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:65:BF:F6:4D:8A:87:97:7E:33:4D:89:C4:E3:8C:0D:10:95:AF:63
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3a803c-872d-4927-afa7-15374177739d/1/f2W_9k2Kh5d-M02JxOOMDRCVr2M.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.88.0/22
77.223.216.0/21
91.199.207.0/24
92.62.124.0/22
185.10.84.0/22
185.65.92.0/22
185.78.100.0/22
185.138.244.0/22
185.146.148.0/22
193.168.244.0/22
194.169.252.0/24
212.6.38.0/24
IPv6:
2a03:1aa0::/32
2a03:5e40::/32
2a05:5fc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44672
47110
197376
201730
Signature Algorithm: sha256WithRSAEncryption
0e:b0:57:39:d2:a2:ed:c2:ef:1b:d6:24:57:37:d1:fe:a8:7e:
27:db:07:0f:01:f7:54:23:7c:e0:35:4e:bc:5f:bf:25:d8:2d:
d1:3b:c4:27:37:49:31:75:0e:ea:5e:54:b8:1a:c0:58:b3:cf:
4c:ae:57:99:e2:7f:5b:66:b6:d9:f7:d9:c9:a4:01:26:bb:ab:
d5:66:0f:7f:72:7d:b3:f0:11:cb:0c:96:a9:7f:2d:cd:89:aa:
2a:32:cc:78:62:f7:92:b1:76:7f:26:3b:50:a5:d4:bb:34:77:
70:ae:4b:6b:8d:92:ac:13:8b:98:ed:af:66:c7:df:92:1e:c3:
18:5f:5e:13:99:bf:06:f5:de:b3:82:b6:42:62:73:a2:1b:d7:
16:58:8c:38:cc:1f:38:65:c9:ed:06:0e:72:08:15:0b:7b:9e:
60:37:4d:cf:00:63:88:d8:02:bb:00:a0:19:97:2f:34:ca:a1:
04:80:6d:c5:41:35:cc:a2:55:5b:aa:1f:13:f4:1f:95:32:f2:
23:1b:f2:a3:55:96:1e:e3:01:70:99:14:45:c1:d8:4c:25:2f:
9d:56:de:52:4d:02:dd:00:47:af:a1:53:ee:7c:c9:02:60:d1:
33:ec:19:0e:29:db:ab:ed:15:e8:ef:dd:a0:65:0f:83:ef:97:
f4:1f:db:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:28 2024 by rpki-client on console-fra.rpki-client.org