Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kmaXye_alVy6Pm-JcNcumWvzwWU.cer
File: kmaXye_alVy6Pm-JcNcumWvzwWU.cer (raw, json)
Hash identifier: jVIt4TXagftRJp4hxnr6U5rR7Ce15sMXURlx2cOS66s=
Subject key identifier: 92:66:97:C9:EF:DA:95:5C:BA:3E:6F:89:70:D7:2E:99:6B:F3:C1:65
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856FAEF0A580EEB0525DD68CA8CF8E38E2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f8/0c4fbd-e07f-4f59-b8f4-2a4713eebff3/1/kmaXye_alVy6Pm-JcNcumWvzwWU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f8/0c4fbd-e07f-4f59-b8f4-2a4713eebff3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 23:33:33 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 5.104.72.0/22
IP: 83.136.48.0/22
IP: 88.218.44.0/22
IP: 91.245.236.0/22
IP: 95.214.92.0/22
IP: 178.20.28.0/22
IP: 193.42.244.0/22
IP: 193.47.36.0/22
IP: 194.62.164.0/22
IP: 194.124.40.0/22
IP: 2a04:8800::/29
IP: 2a05:cd40::/29
IP: 2a07:e540::/29
IP: 2a09:9880::/29
IP: 2a09:e780::/29
IP: 2a09:f000::/29
IP: 2a0c:d3c0::/29
IP: 2a0c:fe40::/29
IP: 2a0d:bf40::/29
IP: 2a0d:e2c0::/29
Validation: Failed, certificate revoked on Tue 21 Mar 2023 07:53:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:ae:f0:a5:80:ee:b0:52:5d:d6:8c:a8:cf:8e:38:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:33:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=926697c9efda955cba3e6f8970d72e996bf3c165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:80:0b:6b:69:96:3b:b9:18:82:7d:e9:ba:d4:
ba:35:74:88:1b:6f:59:7b:6c:a3:ea:0e:4b:ad:03:
e6:76:f3:d5:d9:e2:33:e9:b7:77:b8:43:30:20:6f:
2a:2e:61:12:fe:d6:ff:87:1b:d8:50:da:4d:74:da:
5d:06:9d:66:eb:42:79:73:5f:ec:b1:24:36:c9:df:
6f:6a:6b:5c:6c:5b:ce:20:cf:71:ec:43:93:10:22:
23:9d:a5:c9:f2:2e:a1:dd:95:52:e3:17:f7:40:dc:
8d:21:52:1a:39:ab:d9:c9:ff:dd:46:01:31:5b:06:
03:2a:a8:61:33:b8:0c:3d:2b:ab:70:04:2a:01:16:
c9:b1:73:98:b6:8e:8f:42:72:75:7b:1f:98:a7:fb:
14:78:fd:6d:8f:5d:86:fc:02:19:12:db:11:03:19:
17:9c:ee:11:2e:c1:ea:59:02:74:4f:ed:68:22:0a:
5c:0c:45:96:27:47:e1:6c:13:f9:f9:34:1c:35:b8:
7b:d9:90:2e:53:6b:7b:c7:f8:00:45:57:e0:f0:3a:
5f:a3:b9:8a:a7:31:8d:cf:31:cb:fd:ad:72:a0:63:
d2:31:d4:e0:de:10:2f:ea:2e:91:6e:de:68:8c:6d:
16:10:a2:a7:67:0a:48:3c:d0:39:9f:e8:16:d8:35:
73:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:66:97:C9:EF:DA:95:5C:BA:3E:6F:89:70:D7:2E:99:6B:F3:C1:65
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0c4fbd-e07f-4f59-b8f4-2a4713eebff3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/0c4fbd-e07f-4f59-b8f4-2a4713eebff3/1/kmaXye_alVy6Pm-JcNcumWvzwWU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.72.0/22
83.136.48.0/22
88.218.44.0/22
91.245.236.0/22
95.214.92.0/22
178.20.28.0/22
193.42.244.0/22
193.47.36.0/22
194.62.164.0/22
194.124.40.0/22
IPv6:
2a04:8800::/29
2a05:cd40::/29
2a07:e540::/29
2a09:9880::/29
2a09:e780::/29
2a09:f000::/29
2a0c:d3c0::/29
2a0c:fe40::/29
2a0d:bf40::/29
2a0d:e2c0::/29
Signature Algorithm: sha256WithRSAEncryption
7e:24:7f:93:88:9e:32:2f:e0:90:03:1c:f3:e8:33:b2:54:50:
25:4e:d7:de:9a:2a:00:d8:b5:7f:bd:4a:82:0c:79:4a:fc:ef:
df:c7:f8:b8:a7:75:54:a6:84:78:ed:11:86:f5:07:04:14:fa:
56:21:f7:f1:77:29:92:8b:f9:9c:b2:41:70:af:cc:8e:66:f6:
4a:f9:89:46:06:45:8d:c6:dc:cd:6e:30:86:6c:c4:1f:12:00:
48:d0:d2:03:8a:59:d1:f9:61:0e:7f:71:2c:00:ca:f3:63:d2:
84:7f:86:28:7d:59:0c:6f:a2:a5:3a:7e:a3:45:c6:58:2f:f4:
e0:e4:5c:aa:3d:a7:a8:26:33:28:54:45:83:75:51:5a:e2:7c:
c3:1e:2b:82:0e:94:62:38:9b:e7:b4:4f:26:e9:6b:0f:d0:45:
6a:ca:b1:63:8b:60:ed:40:d4:a0:c9:a3:3a:9f:7f:4c:b2:fe:
88:be:d0:15:9c:63:26:d8:48:1b:86:ae:bd:24:bb:ea:fc:ad:
9e:2a:a7:d0:81:e9:bd:d6:d9:24:ed:3b:51:65:37:9a:97:a8:
1a:12:56:84:c7:f5:65:61:b5:84:87:0a:7f:61:fe:57:7e:3e:
87:52:ed:62:f3:69:eb:0a:2d:59:97:e9:49:de:52:07:13:76:
5c:84:d5:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:02:00 2024 by rpki-client on console-fra.rpki-client.org