Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oUeSOdRDmFh2sIWdM7Gg5xFNGiA.cer
File: oUeSOdRDmFh2sIWdM7Gg5xFNGiA.cer (raw, json)
Hash identifier: YByTRdoRrcwOx0XfwZ5QEeRb3rqE/jc+uMe8z2y6/WU=
Subject key identifier: A1:47:92:39:D4:43:98:58:76:B0:85:9D:33:B1:A0:E7:11:4D:1A:20
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0185716877FD42E3F5D965C62DD414872FDB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a5/b666e4-b405-4c07-bb89-59eaa8670ffa/1/oUeSOdRDmFh2sIWdM7Gg5xFNGiA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a5/b666e4-b405-4c07-bb89-59eaa8670ffa/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 07:35:50 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 34993
IP: 37.148.252.0/22
IP: 89.248.208.0/24
IP: 89.248.210.0/23
IP: 141.98.220.0/22
IP: 185.57.148.0/22
IP: 185.151.188.0/22
IP: 193.25.122.0/23
IP: 193.25.168.0/23
IP: 2a0a:1580::/29
Validation: Failed, certificate revoked on Thu 05 Oct 2023 10:28:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:68:77:fd:42:e3:f5:d9:65:c6:2d:d4:14:87:2f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 07:35:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1479239d443985876b0859d33b1a0e7114d1a20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b0:80:fd:12:8b:9e:0f:4f:5e:0d:7f:44:a7:
f3:0f:af:4d:12:18:d4:6b:57:68:00:6e:e1:03:0e:
eb:cc:ca:d6:51:97:1e:85:31:0b:a1:fd:b4:75:f8:
64:b3:b7:3c:d0:c5:84:b1:54:9a:46:7e:61:08:db:
20:e0:30:49:02:5b:67:0d:22:5d:16:1f:0d:ba:41:
57:d7:ce:40:ec:36:99:14:a2:72:eb:ef:7d:44:5b:
32:1e:57:e8:1a:ab:a2:c0:67:fe:0e:8b:4e:b9:65:
a2:09:f5:bf:cd:8f:5a:2d:3e:1e:61:70:5e:85:e1:
54:84:66:b3:78:81:68:89:9b:4c:1a:9c:ce:42:42:
b0:f4:bd:70:0d:3f:79:23:6b:0f:82:f3:f4:25:b7:
67:ea:26:1b:82:8c:65:53:12:6c:91:07:47:35:2b:
7b:3a:84:1b:d7:6a:a7:e3:ed:7b:9f:c6:82:68:bf:
f9:92:20:02:8c:73:ef:d1:ef:71:ea:59:d1:1e:d5:
6e:91:b6:9a:47:dc:b6:6a:67:63:d7:43:09:94:e2:
e6:1a:9a:47:6d:03:af:f2:2c:d7:b9:a0:46:ba:81:
46:b5:51:11:84:29:64:1a:79:44:a4:9d:0a:8d:0a:
e1:a9:59:e4:89:82:95:a7:3e:4d:12:6c:17:0a:45:
fe:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:47:92:39:D4:43:98:58:76:B0:85:9D:33:B1:A0:E7:11:4D:1A:20
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b666e4-b405-4c07-bb89-59eaa8670ffa/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b666e4-b405-4c07-bb89-59eaa8670ffa/1/oUeSOdRDmFh2sIWdM7Gg5xFNGiA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.252.0/22
89.248.208.0/24
89.248.210.0/23
141.98.220.0/22
185.57.148.0/22
185.151.188.0/22
193.25.122.0/23
193.25.168.0/23
IPv6:
2a0a:1580::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
34993
Signature Algorithm: sha256WithRSAEncryption
94:9f:34:8c:65:b5:f1:7d:62:3d:0e:42:57:ac:ab:07:2e:db:
b6:8a:f4:f3:03:71:d2:8c:8f:37:54:f2:ed:95:e6:1e:47:6b:
c2:a4:cb:4d:be:f8:8a:6d:88:76:14:10:32:04:86:7c:aa:24:
f6:38:dd:e5:8e:7a:56:2b:59:0e:b1:0f:cc:65:6a:ea:ed:bd:
f7:b3:c0:9b:a8:2d:81:61:e4:a4:5c:a3:18:9e:2d:49:bb:8a:
23:a5:fb:6e:c3:cc:53:30:95:5e:7b:5b:a2:54:01:e8:01:9c:
0e:3f:cc:89:ef:a8:e2:b7:4e:6f:61:49:f8:26:52:2f:ec:af:
ef:58:39:05:a9:a9:8e:88:99:93:e5:cd:c3:13:79:b5:77:bd:
58:15:12:4f:52:ae:fa:56:02:c3:ea:92:aa:d7:e4:d9:d2:bc:
3e:74:31:74:02:19:3a:3d:77:02:04:70:9d:fd:68:fb:6b:f5:
8e:5a:1e:84:47:5d:22:57:37:5e:54:3d:5a:f1:d5:59:41:b4:
a5:67:73:5b:87:92:01:22:88:78:27:7e:f7:02:70:83:b8:fa:
05:50:aa:4b:aa:4e:cc:a0:4e:11:e7:1c:b7:d6:53:88:70:dc:
38:5a:68:ce:62:d9:94:86:7c:94:41:9c:be:50:53:3f:50:da:
8c:3f:06:ff
-----BEGIN CERTIFICATE-----
MIIFzTCCBLWgAwIBAgISAYVxaHf9QuP12WXGLdQUhy/bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMwMTAyMDczNTUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTQ3OTIzOWQ0NDM5ODU4NzZiMDg1OWQzM2IxYTBlNzExNGQxYTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7CA/RKLng9PXg1/RKfzD69NEhjU
a1doAG7hAw7rzMrWUZcehTELof20dfhks7c80MWEsVSaRn5hCNsg4DBJAltnDSJd
Fh8NukFX185A7DaZFKJy6+99RFsyHlfoGquiwGf+DotOuWWiCfW/zY9aLT4eYXBe
heFUhGazeIFoiZtMGpzOQkKw9L1wDT95I2sPgvP0Jbdn6iYbgoxlUxJskQdHNSt7
OoQb12qn4+17n8aCaL/5kiACjHPv0e9x6lnRHtVukbaaR9y2amdj10MJlOLmGppH
bQOv8izXuaBGuoFGtVERhClkGnlEpJ0KjQrhqVnkiYKVpz5NEmwXCkX+XQIDAQAB
o4IC2TCCAtUwHQYDVR0OBBYEFKFHkjnUQ5hYdrCFnTOxoOcRTRogMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2E1L2I2NjZl
NC1iNDA1LTRjMDctYmI4OS01OWVhYTg2NzBmZmEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTUvYjY2NmU0
LWI0MDUtNGMwNy1iYjg5LTU5ZWFhODY3MGZmYS8xL29VZVNPZFJEbUZoMnNJV2RN
N0dnNXhGTkdpQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFgGCCsGAQUF
BwEHAQH/BEkwRzA2BAIAATAwAwQCJZT8AwQAWfjQAwQBWfjSAwQCjWLcAwQCuTmU
AwQCuZe8AwQBwRl6AwQBwRmoMA0EAgACMAcDBQMqChWAMBoGCCsGAQUFBwEIAQH/
BAswCaAHMAUCAwCIsTANBgkqhkiG9w0BAQsFAAOCAQEAlJ80jGW18X1iPQ5CV6yr
By7btor08wNx0oyPN1Ty7ZXmHkdrwqTLTb74im2IdhQQMgSGfKok9jjd5Y56VitZ
DrEPzGVq6u2997PAm6gtgWHkpFyjGJ4tSbuKI6X7bsPMUzCVXntbolQB6AGcDj/M
ie+o4rdOb2FJ+CZSL+yv71g5BampjoiZk+XNwxN5tXe9WBUST1Ku+lYCw+qSqtfk
2dK8PnQxdAIZOj13AgRwnf1o+2v1jloehEddIlc3XlQ9WvHVWUG0pWdzW4eSASKI
eCd+9wJwg7j6BVCqS6pOzKBOEecct9ZTiHDcOFpozmLZlIZ8lEGcvlBTP1DajD8G
/w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:56:45 2024 by rpki-client on console-ams.rpki-client.org