Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q4yvcoB-s0zrwSwUu0qUUrSXrKA.cer
File: q4yvcoB-s0zrwSwUu0qUUrSXrKA.cer (raw, json)
Hash identifier: aJssdepG95x9ASc0/J8qe+04FAIKxOahIRyhgXtb8MA=
Subject key identifier: AB:8C:AF:72:80:7E:B3:4C:EB:C1:2C:14:BB:4A:94:52:B4:97:AC:A0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856CAD5D0A6EE5B138950D9E995D68D5F5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9c/df9ffb-32a1-414b-8b2c-728dfecb2514/1/q4yvcoB-s0zrwSwUu0qUUrSXrKA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9c/df9ffb-32a1-414b-8b2c-728dfecb2514/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 09:32:59 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 194.104.238.0/24
IP: 2a11:6940::/29
Validation: Failed, certificate revoked on Wed 04 Oct 2023 12:57:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ad:5d:0a:6e:e5:b1:38:95:0d:9e:99:5d:68:d5:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:32:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab8caf72807eb34cebc12c14bb4a9452b497aca0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f4:7f:31:f5:d3:50:ac:50:06:da:83:f2:79:
5b:15:e8:01:16:84:52:1b:cd:4c:5c:9f:70:2a:8d:
b4:48:fe:89:e1:a9:a1:0f:fa:1b:e1:4f:1c:b8:db:
72:a2:32:99:7b:23:72:77:55:2b:28:c4:83:bc:c2:
4c:4f:be:bd:9b:3c:7f:e8:73:69:fa:0b:9f:9a:93:
55:7a:9d:46:dd:08:77:47:20:46:22:77:cb:09:0c:
36:db:b5:d6:85:80:00:2e:51:6f:9f:f5:80:ae:7a:
de:3d:c8:29:03:98:2e:61:1b:4c:82:8c:64:e0:2f:
03:e6:bc:fa:01:2e:b3:bc:ce:d3:a0:b2:9e:f1:24:
bb:07:a6:88:49:2c:e2:95:bd:e8:9d:ac:4b:65:41:
57:6c:77:a4:d7:f1:5d:2c:85:61:ab:f7:4c:7d:b1:
8e:de:af:30:f0:c1:20:ff:7f:fe:05:63:d5:4e:db:
f0:4e:21:e3:a4:f5:ca:10:e4:10:26:f5:62:5e:c2:
06:37:1f:23:7d:d1:dc:89:17:f2:55:03:e2:17:88:
4a:00:70:e6:9a:8c:16:4b:de:e1:86:57:07:d5:fd:
e7:0e:fe:ae:7b:10:2c:32:e8:e2:5a:64:89:9c:8e:
45:6b:ae:b8:5f:12:60:11:dc:7b:5c:c8:ab:31:50:
96:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:8C:AF:72:80:7E:B3:4C:EB:C1:2C:14:BB:4A:94:52:B4:97:AC:A0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/df9ffb-32a1-414b-8b2c-728dfecb2514/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/df9ffb-32a1-414b-8b2c-728dfecb2514/1/q4yvcoB-s0zrwSwUu0qUUrSXrKA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.238.0/24
IPv6:
2a11:6940::/29
Signature Algorithm: sha256WithRSAEncryption
83:00:2a:e5:c7:bd:0f:bc:f0:8b:f9:82:1a:cb:aa:7d:33:55:
05:85:ce:68:d5:8d:e9:1e:53:d5:19:e8:b7:8f:25:58:32:1f:
77:b8:9e:44:07:0b:dc:63:f3:0b:9d:6e:1f:10:d1:d1:de:d1:
17:13:dd:57:19:81:0f:d2:c2:f3:a7:d8:dc:ee:88:ac:f0:07:
f5:06:d6:ee:86:28:5d:59:6c:c6:cb:d5:50:56:fb:6b:65:c7:
a1:d8:1d:be:03:0e:09:72:54:73:0a:d4:68:f2:98:44:94:b7:
a7:3b:f0:40:33:7a:b9:6c:0d:6b:fb:8a:ff:c2:86:e8:fb:73:
52:4d:05:91:e8:e3:aa:5a:51:1b:2f:4c:0f:6b:89:ea:21:58:
4e:0e:8e:3c:99:24:71:e9:e9:52:13:1e:14:a8:63:8c:d8:60:
1c:20:42:f6:61:9e:95:63:fd:66:f9:52:ee:34:36:a4:bd:6c:
b3:a9:d9:64:e7:30:50:d1:1b:d1:e5:c9:d8:ff:a0:02:ba:78:
12:d8:cb:8a:77:e4:ea:ce:52:6f:03:6b:6c:54:34:9f:e7:79:
24:13:26:27:8f:66:0e:41:ec:c6:3d:46:2d:4b:d0:b6:2f:08:
37:d6:13:88:96:f6:6a:fc:da:f3:1a:c6:7e:b1:21:f9:18:2c:
aa:13:30:9f
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgISAYVsrV0KbuWxOJUNnpldaNX1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMwMTAxMDkzMjU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjhjYWY3MjgwN2ViMzRjZWJjMTJjMTRiYjRhOTQ1MmI0OTdhY2EwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvR/MfXTUKxQBtqD8nlbFegBFoRS
G81MXJ9wKo20SP6J4amhD/ob4U8cuNtyojKZeyNyd1UrKMSDvMJMT769mzx/6HNp
+gufmpNVep1G3Qh3RyBGInfLCQw227XWhYAALlFvn/WArnrePcgpA5guYRtMgoxk
4C8D5rz6AS6zvM7ToLKe8SS7B6aISSzilb3onaxLZUFXbHek1/FdLIVhq/dMfbGO
3q8w8MEg/3/+BWPVTtvwTiHjpPXKEOQQJvViXsIGNx8jfdHciRfyVQPiF4hKAHDm
mowWS97hhlcH1f3nDv6uexAsMujiWmSJnI5Fa664XxJgEdx7XMirMVCWmwIDAQAB
o4ICkzCCAo8wHQYDVR0OBBYEFKuMr3KAfrNM68EsFLtKlFK0l6ygMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzljL2RmOWZm
Yi0zMmExLTQxNGItOGIyYy03MjhkZmVjYjI1MTQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMvZGY5ZmZi
LTMyYTEtNDE0Yi04YjJjLTcyOGRmZWNiMjUxNC8xL3E0eXZjb0ItczB6cndTd1V1
MHFVVXJTWHJLQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAwmjuMA0EAgACMAcDBQMqEWlAMA0GCSqGSIb3
DQEBCwUAA4IBAQCDACrlx70PvPCL+YIay6p9M1UFhc5o1Y3pHlPVGei3jyVYMh93
uJ5EBwvcY/MLnW4fENHR3tEXE91XGYEP0sLzp9jc7ois8Af1BtbuhihdWWzGy9VQ
VvtrZceh2B2+Aw4JclRzCtRo8phElLenO/BAM3q5bA1r+4r/wobo+3NSTQWR6OOq
WlEbL0wPa4nqIVhODo48mSRx6elSEx4UqGOM2GAcIEL2YZ6VY/1m+VLuNDakvWyz
qdlk5zBQ0RvR5cnY/6ACungS2MuKd+TqzlJvA2tsVDSf53kkEyYnj2YOQezGPUYt
S9C2Lwg31hOIlvZq/NrzGsZ+sSH5GCyqEzCf
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:57:08 2024 by rpki-client on console-ams.rpki-client.org