Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
File: yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer (raw, json)
Hash identifier: fBzmEzRh8di4pDCMvMd5FfJRP0wMI1OGWmcJ5KvlTUA=
Subject key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0188BE3F24F5613FCACBC3639E8805AC22B3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 15 Jun 2023 08:49:49 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 44685
AS: 47285
AS: 60778
AS: 200436
IP: 45.139.8.0/22
IP: 185.105.236.0/24
IP: 185.105.238.0/23
IP: 185.190.25.0/24
IP: 185.231.112.0/23
IP: 185.231.115.0/24
IP: 194.36.172.0/22
IP: 194.147.140.0/24
IP: 194.147.142.0/24
IP: 194.147.150.0/24
IP: 194.147.170.0/24
IP: 194.180.208.0/23
IP: 194.180.224.0/23
IP: 2a07:a580::/29
IP: 2a0c:6700::/29
IP: 2a0e:6f40::/29
IP: 2a10:3a80::/29
IP: 2a12:2600::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:be:3f:24:f5:61:3f:ca:cb:c3:63:9e:88:05:ac:22:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 15 08:49:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8b:43:15:7b:cf:c5:ad:09:21:0e:77:35:5b:
d2:81:d7:e2:26:fe:22:f8:c3:71:d5:37:9e:58:f9:
ea:54:64:dd:29:7f:56:6c:6c:19:d6:7d:34:34:0a:
c3:ae:cc:d0:77:0d:76:ec:88:fd:f4:de:42:ef:ac:
b8:21:a3:69:06:1e:8d:24:7b:9e:c4:1c:9a:aa:72:
3c:b5:5b:bb:97:33:5a:09:16:a1:08:60:5b:e8:ce:
6a:12:30:72:62:b6:f2:94:31:5d:3f:24:fe:90:58:
cc:3b:27:cd:96:15:e9:1f:8f:78:eb:30:45:8e:89:
5b:b8:e8:53:4a:33:27:fe:9e:47:04:bc:45:3d:c3:
c4:9c:b6:f5:27:cd:de:4b:65:58:c0:22:8e:7a:c8:
cf:14:a2:b2:dc:65:0f:a1:c7:9f:ba:9f:e0:73:31:
f5:92:ea:5a:4f:65:84:82:b5:46:52:8e:5e:9a:62:
79:ef:65:fb:d9:9e:53:8f:82:08:aa:7b:5c:1a:38:
08:73:96:d7:bb:2b:0e:98:84:7e:37:b0:09:c3:44:
6d:d8:b2:25:d1:c3:98:fa:6c:16:7f:8d:7a:be:58:
a7:58:79:c6:66:d9:d6:75:90:88:73:62:4d:0c:ec:
a9:0e:09:50:f0:c9:33:5d:0f:2a:4d:d1:2c:71:a2:
bf:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.8.0/22
185.105.236.0/24
185.105.238.0/23
185.190.25.0/24
185.231.112.0/23
185.231.115.0/24
194.36.172.0/22
194.147.140.0/24
194.147.142.0/24
194.147.150.0/24
194.147.170.0/24
194.180.208.0/23
194.180.224.0/23
IPv6:
2a07:a580::/29
2a0c:6700::/29
2a0e:6f40::/29
2a10:3a80::/29
2a12:2600::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44685
47285
60778
200436
Signature Algorithm: sha256WithRSAEncryption
5f:8d:71:8e:37:e7:c4:93:e5:af:33:9b:c1:f2:1d:b6:a3:c3:
25:4e:71:71:25:ac:b4:5a:a9:9e:db:8e:bb:6e:5f:2a:49:01:
a6:47:ca:8a:4b:01:39:00:3f:2f:65:bf:d3:0d:73:22:ac:6c:
70:e3:96:d8:e6:29:c8:9b:7a:a7:38:ee:5d:64:32:cc:33:fb:
e0:13:2c:6d:17:5f:1d:b5:0e:d7:62:82:8c:d6:a3:95:10:1d:
7c:70:13:8e:29:ed:2d:96:73:bb:54:2e:a5:db:89:fa:17:86:
59:fc:45:17:fa:5a:01:bf:eb:74:94:a7:66:f0:3b:22:44:8b:
e0:e4:7f:d0:36:d5:9e:2a:0c:4b:b0:b1:5a:da:ec:f4:58:f6:
9f:9d:16:b7:d7:7d:61:c2:45:6c:2c:5b:02:7f:33:63:a6:93:
f9:37:be:1b:4e:0a:95:ae:6c:d2:8e:a8:ba:b0:7c:47:7c:53:
3f:0d:1f:04:b7:9f:27:26:9f:bc:21:12:9c:eb:a3:f4:fd:86:
37:d0:c7:96:98:80:73:2e:7e:61:62:06:5d:3e:91:5b:7e:c5:
8f:35:84:e1:92:c7:a2:ca:4e:19:62:ac:c9:c3:9b:7e:34:39:
c2:91:60:06:dd:86:72:0a:77:a0:86:c1:82:af:63:43:f4:a6:
5f:28:fb:e7
-----BEGIN CERTIFICATE-----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Generated at Thu Dec 21 12:40:57 2023 by rpki-client on console-fra.rpki-client.org