Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zxCtkS75QqrLTRCt05kDxun7sDo.cer
File: zxCtkS75QqrLTRCt05kDxun7sDo.cer (raw, json)
Hash identifier: 5PA7ur8GVTOPWOKspP/QP2RnbfmtEQ2JTJzCX5W4Bxo=
Subject key identifier: CF:10:AD:91:2E:F9:42:AA:CB:4D:10:AD:D3:99:03:C6:E9:FB:B0:3A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F7728126655A986B9BFAE2CDA6004
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/zxCtkS75QqrLTRCt05kDxun7sDo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:57 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212598
IP: 5.42.202.0/24
IP: 194.31.59.0/24
IP: 194.31.64.0/24
IP: 194.31.79.0/24
IP: 194.31.87.0/24
IP: 2a0f:a440::/29
IP: 2a12:1dc0::/29
Validation: Failed, certificate revoked on Tue 19 Nov 2024 08:56:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:77:28:12:66:55:a9:86:b9:bf:ae:2c:da:60:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf10ad912ef942aacb4d10add39903c6e9fbb03a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a9:e3:53:a8:be:b6:79:79:cc:69:52:92:9d:
ff:c0:81:a4:a1:68:d5:18:34:0b:4f:29:90:82:43:
eb:3f:6f:cb:1c:2f:8e:f1:f6:d7:d2:4f:27:00:6a:
e1:e4:87:14:fe:49:b9:a9:fc:04:c3:92:3e:e7:54:
45:8c:c1:c5:a9:5c:d1:9e:92:c3:7e:67:b7:ee:fa:
b2:69:19:a7:e3:4d:47:40:a5:2c:33:d9:ff:40:87:
41:93:f7:62:27:b7:8d:7c:6e:08:3b:48:58:4c:6f:
e7:aa:ee:a4:4f:22:62:0f:71:a0:79:e6:c7:0c:b4:
f7:c4:6c:cc:ff:76:9d:e1:68:d3:49:9c:6e:ad:b3:
a0:6f:98:c0:68:9a:d4:f2:b8:1f:df:b6:89:4e:97:
d4:d8:31:de:a7:8e:df:0e:06:31:bd:dc:ab:e4:01:
50:57:25:51:8e:a1:d1:66:71:01:21:2d:05:c1:3a:
ac:29:6a:bd:d3:e1:6c:cc:6e:3c:8b:c4:f4:7d:61:
3d:36:8c:f4:fb:33:3b:43:9c:44:38:dd:88:02:5c:
ab:20:e2:79:12:50:e2:42:61:47:83:df:86:be:98:
4d:13:e7:91:48:85:51:4a:1a:a0:48:dc:bf:f8:e1:
f6:c8:82:46:57:23:59:ca:ed:82:fb:2d:d1:77:b0:
bb:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:10:AD:91:2E:F9:42:AA:CB:4D:10:AD:D3:99:03:C6:E9:FB:B0:3A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/161b52-24f2-4535-8382-e7fe9c47660f/1/zxCtkS75QqrLTRCt05kDxun7sDo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.202.0/24
194.31.59.0/24
194.31.64.0/24
194.31.79.0/24
194.31.87.0/24
IPv6:
2a0f:a440::/29
2a12:1dc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212598
Signature Algorithm: sha256WithRSAEncryption
9f:a5:e5:94:5a:80:9d:6b:b7:34:6b:f3:bc:79:f2:22:a3:43:
3a:51:2a:d4:7d:e7:17:f4:8a:6a:e7:df:d8:e4:fb:ab:9f:30:
f5:fd:47:06:45:4b:ed:1a:36:94:7c:14:e4:40:ed:f5:39:24:
b9:d4:4c:49:c2:95:36:d9:30:fd:53:4b:a4:d1:b7:99:66:fa:
6f:61:7c:ad:1a:fc:ea:d9:71:77:73:f4:62:61:e5:2f:25:7f:
cf:cb:f2:5a:33:59:d8:cd:c2:fa:09:d0:44:f4:f9:0a:3d:57:
03:ad:49:03:6d:4c:a8:da:43:8a:61:dd:96:d2:76:5b:a9:7c:
b7:40:8d:cf:e2:73:1a:67:78:0f:26:09:b5:ba:f3:66:c2:34:
a1:47:f8:14:f1:f2:31:8f:99:57:2b:7e:f3:e8:87:57:85:12:
e4:8b:9a:12:3e:4d:8f:d2:e0:45:a4:f4:ca:2f:b4:68:b4:9e:
31:64:34:e0:a3:6f:b2:df:2d:fc:34:cd:2c:7e:92:0b:8f:c9:
c9:10:68:63:2b:fc:68:ab:81:af:3f:df:e4:bd:d5:57:18:a1:
bf:ca:2d:71:20:02:da:ed:d8:cb:3e:26:5c:26:90:b3:ed:18:
3d:fe:35:40:97:c8:d1:f5:b1:ef:18:36:11:2a:9d:f6:64:8b:
30:45:87:81
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgISAYzIb3coEmZVqYa5v64s2mAEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDQyOTU3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjEwYWQ5MTJlZjk0MmFhY2I0ZDEwYWRkMzk5MDNjNmU5ZmJiMDNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqnjU6i+tnl5zGlSkp3/wIGkoWjV
GDQLTymQgkPrP2/LHC+O8fbX0k8nAGrh5IcU/km5qfwEw5I+51RFjMHFqVzRnpLD
fme37vqyaRmn401HQKUsM9n/QIdBk/diJ7eNfG4IO0hYTG/nqu6kTyJiD3GgeebH
DLT3xGzM/3ad4WjTSZxurbOgb5jAaJrU8rgf37aJTpfU2DHep47fDgYxvdyr5AFQ
VyVRjqHRZnEBIS0FwTqsKWq90+FszG48i8T0fWE9Noz0+zM7Q5xEON2IAlyrIOJ5
ElDiQmFHg9+GvphNE+eRSIVRShqgSNy/+OH2yIJGVyNZyu2C+y3Rd7C7dQIDAQAB
o4ICzjCCAsowHQYDVR0OBBYEFM8QrZEu+UKqy00QrdOZA8bp+7A6MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ0LzE2MWI1
Mi0yNGYyLTQ1MzUtODM4Mi1lN2ZlOWM0NzY2MGYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQvMTYxYjUy
LTI0ZjItNDUzNS04MzgyLWU3ZmU5YzQ3NjYwZi8xL3p4Q3RrUzc1UXFyTFRSQ3Qw
NWtEeHVuN3NEby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CME0GCCsGAQUF
BwEHAQH/BD4wPDAkBAIAATAeAwQABSrKAwQAwh87AwQAwh9AAwQAwh9PAwQAwh9X
MBQEAgACMA4DBQMqD6RAAwUDKhIdwDAaBggrBgEFBQcBCAEB/wQLMAmgBzAFAgMD
PnYwDQYJKoZIhvcNAQELBQADggEBAJ+l5ZRagJ1rtzRr87x58iKjQzpRKtR95xf0
imrn39jk+6ufMPX9RwZFS+0aNpR8FORA7fU5JLnUTEnClTbZMP1TS6TRt5lm+m9h
fK0a/OrZcXdz9GJh5S8lf8/L8lozWdjNwvoJ0ET0+Qo9VwOtSQNtTKjaQ4ph3ZbS
dlupfLdAjc/icxpneA8mCbW682bCNKFH+BTx8jGPmVcrfvPoh1eFEuSLmhI+TY/S
4EWk9MovtGi0njFkNOCjb7LfLfw0zSx+kguPyckQaGMr/Girga8/3+S91VcYob/K
LXEgAtrt2Ms+JlwmkLPtGD3+NUCXyNH1se8YNhEqnfZkizBFh4E=
-----END CERTIFICATE-----
Generated at Tue Nov 19 11:50:36 2024 by rpki-client on console-ams.rpki-client.org