Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lQnMzFSmAIHAgA9tzDCl6Ivub9o.cer
File: lQnMzFSmAIHAgA9tzDCl6Ivub9o.cer (raw, json)
Hash identifier: XikctFzdRIGjpf2iyB2gDg7++L+bwFXaU4RJpg6WT9M=
Subject key identifier: 95:09:CC:CC:54:A6:00:81:C0:80:0F:6D:CC:30:A5:E8:8B:EE:6F:DA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018570FB0BC8BBF49842B4DC258F5D56C74F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2b/243855-5321-4ebe-8c77-65e31da1f38f/1/lQnMzFSmAIHAgA9tzDCl6Ivub9o.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2b/243855-5321-4ebe-8c77-65e31da1f38f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 05:36:18 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 207050
IP: 79.143.132.0/22
IP: 92.119.20.0/22
IP: 185.59.48.0/22
IP: 185.124.104.0/22
IP: 193.160.84.0/22
IP: 2a04:e2c0::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:0b:c8:bb:f4:98:42:b4:dc:25:8f:5d:56:c7:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:36:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9509cccc54a60081c0800f6dcc30a5e88bee6fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b0:9c:9f:ba:11:27:d5:ab:fc:34:8c:e2:17:
39:3a:44:66:6e:f3:06:8f:0c:f4:fc:6d:3a:76:52:
7d:27:89:a1:bf:6c:e9:8a:75:67:69:d1:aa:bc:56:
b7:f9:19:47:ea:55:86:a5:3e:32:d2:3a:62:6b:c7:
42:81:fc:09:60:eb:71:71:98:3d:d7:6c:9b:bc:03:
cf:5f:be:ae:63:08:91:8a:83:93:4a:68:a9:4e:17:
d7:dd:95:c8:20:c2:d1:1c:2c:5a:36:e4:40:8d:30:
f0:30:ab:7d:a3:48:c8:38:1a:f1:bd:10:91:01:bb:
f4:76:3c:e8:e9:9c:0a:7b:b4:08:f4:b8:23:25:cc:
78:7c:70:0d:02:6a:47:33:e9:02:8d:83:61:51:66:
5a:2c:27:a7:c3:2e:df:46:b8:fd:59:34:7d:07:75:
92:2b:22:f4:fc:38:a0:e9:b2:a1:08:1f:90:67:c2:
31:79:1f:0a:c8:f4:7e:0c:88:ae:d5:04:fe:8b:9b:
36:61:a3:c9:4b:67:31:c6:99:d5:1d:a6:0a:66:5f:
4b:17:a9:fd:8b:c3:8f:c1:91:1a:bb:26:e0:6e:d7:
42:91:8f:d4:b7:ea:b5:a3:ec:3b:13:8b:2e:b7:9d:
f6:1e:b4:eb:b4:99:a6:82:36:71:a5:a0:6a:a7:67:
19:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:09:CC:CC:54:A6:00:81:C0:80:0F:6D:CC:30:A5:E8:8B:EE:6F:DA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/243855-5321-4ebe-8c77-65e31da1f38f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/243855-5321-4ebe-8c77-65e31da1f38f/1/lQnMzFSmAIHAgA9tzDCl6Ivub9o.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.132.0/22
92.119.20.0/22
185.59.48.0/22
185.124.104.0/22
193.160.84.0/22
IPv6:
2a04:e2c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207050
Signature Algorithm: sha256WithRSAEncryption
11:44:a8:bc:aa:a5:8d:a5:09:37:cc:df:f9:5f:95:a9:15:b6:
d5:25:26:76:7b:58:54:27:40:1f:33:21:33:4f:39:39:54:7e:
3c:9f:a0:fc:53:06:bc:d7:b0:c3:91:0e:5d:0e:4e:e9:60:30:
12:1f:9c:d8:31:3c:f8:79:84:03:4a:eb:f1:c3:96:74:cc:f9:
4f:bc:3b:e5:26:91:42:71:fd:c7:8a:f8:db:29:3b:4d:0b:b7:
8d:1f:46:a6:d0:e2:fe:65:cd:f6:0c:39:00:8c:fc:98:cf:a4:
2f:e5:7c:7f:1c:e6:82:59:dc:8c:0e:51:d9:3d:3c:aa:3a:7d:
ff:21:f7:d8:15:f9:91:0c:2c:02:f9:0e:72:2b:c4:c6:3f:4a:
17:3b:f7:de:b3:b4:a6:a7:64:85:82:59:2e:b1:9b:94:81:ad:
66:39:36:78:a8:43:59:66:d1:6a:bd:5e:bd:24:ff:38:35:fd:
10:be:e3:67:e2:01:e6:e8:8d:d7:b2:d1:1f:56:71:9d:36:1b:
79:c8:2b:9d:ac:0c:01:72:f0:2a:51:30:0b:c3:7a:28:4f:c4:
7e:d7:e4:c7:29:36:36:b1:f5:c3:d5:47:aa:bb:14:42:6d:0c:
8d:86:f7:7a:6d:e6:24:23:ff:73:a4:a0:f3:12:a4:f7:cb:7d:
aa:93:08:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:16 2023 by rpki-client on console-fra.rpki-client.org