This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Certificate

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qoCTNU5WWsSDilH0fSdpdpxmlE4.cer
File:                     qoCTNU5WWsSDilH0fSdpdpxmlE4.cer (raw, json)
Hash identifier:          Z7zcL3Re95PpJ3xDaDKM8zDoqmtdsL5OSam7kUTOTuM=
Subject key identifier:   AA:80:93:35:4E:56:5A:C4:83:8A:51:F4:7D:27:69:76:9C:66:94:4E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer:       /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial:       01977D796720A5980448C9483B7B898AA672
Authority info access:    rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest:                 rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
caRepository:             rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/
Notify URL:               https://rrdp.ripe.net/notification.xml
Certificate not before:   Tue 17 Jun 2025 10:39:57 +0000
Certificate not after:    Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources:    AS: 215972
                          IP: 91.193.43.0/24
                          IP: 193.163.170.0/24
                          IP: 195.20.16.0/24
Validation:               Failed, certificate revoked on Thu 19 Jun 2025 12:36:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:7d:79:67:20:a5:98:04:48:c9:48:3b:7b:89:8a:a6:72
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
        Validity
            Not Before: Jun 17 10:39:57 2025 GMT
            Not After : Jul  1 00:00:00 2026 GMT
        Subject: CN=aa8093354e565ac4838a51f47d2769769c66944e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:7b:1b:06:ff:3e:d2:18:0e:ec:f0:28:8f:94:
                    06:14:a7:aa:df:25:5d:e1:86:a0:63:da:00:c3:58:
                    38:8b:21:89:4d:32:ec:50:42:3e:33:78:a7:e9:a7:
                    2a:de:28:1d:d4:d7:2e:f1:86:77:4c:0f:d2:ad:9d:
                    a8:6b:e2:4c:7f:63:6e:8a:7d:92:9a:aa:f9:47:07:
                    71:28:0d:4f:33:c9:0e:f2:07:cf:48:73:7c:9f:c7:
                    10:06:07:b7:fe:0d:73:72:95:ff:ab:ee:a1:ca:16:
                    59:1b:bd:62:9c:92:f1:96:ec:67:ce:d3:68:fc:ad:
                    58:20:29:27:95:e4:67:33:81:3c:9f:61:e5:ce:f3:
                    bc:e4:79:b8:02:a0:a4:ee:6f:74:87:e4:2e:28:1d:
                    d3:99:a5:fd:7d:0f:19:b5:b1:60:ec:87:02:a5:ec:
                    87:0c:ae:31:a3:ca:6f:f3:10:85:69:16:f9:5b:98:
                    28:29:c6:23:42:a6:87:91:b3:16:1f:23:25:e3:90:
                    5f:a8:4e:81:7a:14:66:dd:27:ab:80:f7:52:aa:d5:
                    2a:31:16:09:b1:00:c2:db:36:55:73:8e:cc:61:25:
                    21:45:98:82:e0:f2:ba:49:e3:af:a5:2c:f6:a4:f0:
                    78:fa:49:95:63:28:37:a5:1f:c8:76:2c:02:0e:d5:
                    23:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:80:93:35:4E:56:5A:C4:83:8A:51:F4:7D:27:69:76:9C:66:94:4E
            X509v3 Authority Key Identifier:
                keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer

            Subject Information Access:
                CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/
                RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
                RPKI Notify - URI:https://rrdp.ripe.net/notification.xml

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  91.193.43.0/24
                  193.163.170.0/24
                  195.20.16.0/24

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  215972

    Signature Algorithm: sha256WithRSAEncryption
         2a:09:c9:38:14:60:bc:cc:c3:cb:c4:79:07:1b:d0:6a:99:a7:
         89:08:83:58:34:2a:a1:dd:e8:18:99:ba:14:36:80:3f:be:d0:
         e3:87:6f:7d:c0:56:57:f3:5a:83:9d:a1:a3:a4:5e:f0:7c:47:
         7b:3a:6a:7c:71:3e:91:35:04:d6:f9:fd:69:30:b3:9f:d5:9a:
         b8:ec:b5:0b:c9:ab:62:57:aa:28:f6:1c:85:cb:d6:b0:db:32:
         97:c1:7e:5f:8f:2f:5a:9f:02:28:87:c5:20:6b:fa:1d:04:c2:
         7c:5a:1e:19:74:ba:3a:1b:e5:59:b8:b8:3d:42:ab:a2:52:c0:
         ad:96:e3:51:b4:b6:7d:84:81:c5:5e:7b:81:1d:02:22:6a:27:
         09:29:b8:43:be:18:9f:d8:6b:14:85:70:f5:12:32:06:f3:4e:
         29:49:13:78:ca:a9:3f:a2:f1:e3:52:0a:1d:f0:50:cf:3b:11:
         e4:0b:e9:06:fc:21:99:cf:f9:df:69:83:16:49:c1:f6:54:d3:
         22:82:7f:a1:75:e6:86:82:55:ab:dc:5a:c5:ca:f3:80:7f:40:
         86:d3:d2:26:3e:b9:0c:50:8f:e0:0c:f9:ce:fe:e5:a5:db:9f:
         8d:0a:6e:ac:95:7f:f3:4e:72:2c:b6:cd:5f:b6:fa:f7:df:a7:
         ca:93:fd:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----