Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iP87prYNOa0QX_hcJp1ibIFXZV8.cer
File: iP87prYNOa0QX_hcJp1ibIFXZV8.cer (raw, json)
Hash identifier: d1iSar9pwV/qC4G339t8ZhnTON0FDmFD0JqjzdPK05s=
Subject key identifier: 88:FF:3B:A6:B6:0D:39:AD:10:5F:F8:5C:26:9D:62:6C:81:57:65:5F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348CAF5F42BE388A34CB297B763F617
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/iP87prYNOa0QX_hcJp1ibIFXZV8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202803
IP: 185.154.44.0/22
IP: 2a0b:5ac0::/29
Validation: Failed, certificate revoked on Tue 29 Oct 2024 14:13:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ca:f5:f4:2b:e3:88:a3:4c:b2:97:b7:63:f6:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88ff3ba6b60d39ad105ff85c269d626c8157655f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fa:79:2b:6b:c9:e9:4c:3b:ce:65:ba:b8:64:
38:ff:fa:4b:ef:81:b5:bd:46:cd:e0:a7:46:e9:87:
2a:86:3d:37:05:5e:5d:a4:5a:8b:9c:85:e0:ec:74:
82:42:3a:6f:cf:d1:72:b6:cd:97:2d:7f:e3:62:76:
4e:f5:08:83:2b:22:45:c1:b2:fc:22:e1:4b:3d:87:
77:1f:0d:4e:16:de:3d:36:73:62:38:ed:b7:02:af:
28:eb:e2:f5:bd:2e:ea:9c:c4:6d:26:97:3f:5f:34:
16:ba:89:9a:f5:0f:1a:66:03:2c:ee:e6:a7:2a:fc:
21:c4:6b:9c:96:21:0d:cf:ef:c6:eb:e0:94:ae:0b:
36:e2:ee:2d:03:da:c7:28:b6:d3:54:71:7c:de:c0:
03:d8:a5:97:d1:11:b3:a2:6e:e3:bd:a1:cd:f9:50:
91:ba:b0:68:52:f2:3f:21:70:38:88:74:5e:cb:76:
74:95:f7:41:80:9d:33:e8:b0:9e:ed:ab:35:95:4e:
bb:89:06:ed:de:67:10:d0:63:5f:cb:bf:67:e3:35:
fc:18:99:76:80:80:c5:82:a4:87:c2:1d:48:cf:5c:
b5:48:8c:90:ed:a3:ef:f1:1a:4f:43:a9:7d:a7:cd:
15:b6:9d:e6:38:9b:c9:e3:74:2f:57:51:1e:f6:90:
bd:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:FF:3B:A6:B6:0D:39:AD:10:5F:F8:5C:26:9D:62:6C:81:57:65:5F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/iP87prYNOa0QX_hcJp1ibIFXZV8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.44.0/22
IPv6:
2a0b:5ac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202803
Signature Algorithm: sha256WithRSAEncryption
3e:65:7d:30:3f:45:f9:d0:c6:e9:22:6c:cb:36:1c:d2:06:c7:
29:bc:fc:ea:56:66:6d:9d:28:21:3b:52:30:8c:9d:cc:6e:4a:
6b:37:11:01:d8:cd:60:b0:98:ba:c0:35:ac:15:5a:f7:7a:38:
06:87:b6:7a:14:ee:35:9f:a3:59:3e:8d:83:ff:00:c6:d0:3b:
28:df:38:7c:b1:da:00:19:a1:16:1c:e0:13:27:65:44:cc:de:
b8:36:88:03:6c:5e:01:1c:2a:91:4a:c9:60:dc:0a:50:c6:d1:
84:1d:9e:c4:09:38:3b:91:7f:03:a6:f2:f5:0d:a4:4c:a2:8b:
83:cc:9b:fa:61:2d:b5:ed:63:25:31:46:8f:02:8f:c3:ad:88:
f0:c2:61:08:2a:bd:73:5a:3d:1f:a6:c7:42:1a:44:f0:66:ef:
e7:0a:00:c5:cf:43:10:f3:0d:a8:c2:a0:d1:69:f9:b4:cd:28:
d7:a9:b0:e0:cd:30:fb:ff:3c:ff:de:7b:a9:ff:5d:c5:67:ec:
22:f2:57:2e:25:44:f4:2c:00:1a:54:a3:59:ae:9e:f0:df:d1:
c6:c7:64:05:af:65:f7:8f:37:f2:5d:84:dc:9e:6c:ae:25:09:
d6:81:cf:68:e9:91:e0:6f:fc:8c:ed:a1:d7:1f:45:01:52:70:
4b:be:1a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 06:39:40 2025 by rpki-client