Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fDgomjp8oYlVmyVOVZv1bfyfIyI.cer
File: fDgomjp8oYlVmyVOVZv1bfyfIyI.cer (raw, json)
Hash identifier: TAWF1XccFDy+SBQHr8YtzegaQOCpbqtld6MOZzUWLWM=
Subject key identifier: 7C:38:28:9A:3A:7C:A1:89:55:9B:25:4E:55:9B:F5:6D:FC:9F:23:22
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856E659154A721D34EE63738E669F32167
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ba/b4a6a2-5f6b-4ba5-b85c-e3e75144a7e6/1/fDgomjp8oYlVmyVOVZv1bfyfIyI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ba/b4a6a2-5f6b-4ba5-b85c-e3e75144a7e6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 17:33:48 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 185.89.23.0/24
Validation: Failed, certificate revoked on Wed 06 Dec 2023 14:10:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:65:91:54:a7:21:d3:4e:e6:37:38:e6:69:f3:21:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 17:33:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c38289a3a7ca189559b254e559bf56dfc9f2322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4a:cb:5c:81:c4:81:06:01:23:63:5d:f1:13:
42:ff:2d:23:44:85:7a:1c:bd:9c:4d:76:ec:9c:86:
4a:32:c5:f2:96:67:03:26:16:dc:b7:06:52:96:69:
b6:13:64:7e:e2:89:71:9f:f4:29:66:5b:35:8e:2e:
db:b7:87:6b:e7:67:5e:da:e1:bf:99:93:b2:b1:33:
83:e7:da:b7:91:12:16:31:b0:f1:d5:98:e0:8a:8f:
7f:7a:4c:6a:db:49:b3:b0:1a:32:f8:05:c8:81:5e:
98:22:47:86:a5:d7:04:1f:6a:63:70:ca:14:26:75:
97:84:f2:9b:06:87:f5:e0:9e:a0:3c:10:fe:7f:ec:
74:fb:07:3c:b6:1e:d7:34:51:36:5b:dd:97:2d:5f:
47:51:59:a3:70:77:fb:cf:4a:66:df:d5:bd:cf:f0:
fc:7e:ef:01:88:54:77:df:7c:35:56:a7:5d:a9:7c:
74:be:f3:2a:15:54:b3:8a:de:8b:e2:fc:4b:c2:e2:
e3:68:b6:1a:0a:6f:c4:9a:d6:be:7c:bc:cf:73:26:
89:18:06:3e:b0:43:b8:ad:03:8c:80:86:c2:6a:0a:
d8:ca:1e:fb:8c:8f:f6:bb:af:f6:5d:69:76:5e:8c:
5c:ff:9c:a3:50:ad:ba:c2:cf:50:cc:2b:78:fe:24:
9f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:38:28:9A:3A:7C:A1:89:55:9B:25:4E:55:9B:F5:6D:FC:9F:23:22
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/b4a6a2-5f6b-4ba5-b85c-e3e75144a7e6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/b4a6a2-5f6b-4ba5-b85c-e3e75144a7e6/1/fDgomjp8oYlVmyVOVZv1bfyfIyI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.23.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:fe:e8:fd:cc:01:fe:7a:03:ce:89:18:9c:19:a7:52:05:d5:
72:94:60:43:49:cd:48:3f:0c:7e:28:1f:46:da:3d:79:59:9f:
6b:98:8b:bb:cc:b1:3f:33:9a:dd:78:9f:29:95:61:e1:43:1e:
b5:81:e4:87:31:3b:14:f2:9d:b5:03:d6:8c:6e:bf:62:9e:cf:
9c:c4:29:3e:a9:71:1f:d2:40:1b:84:5a:15:c5:a4:59:27:12:
7f:31:12:cf:76:01:80:05:12:ee:7c:c9:1d:c0:84:64:6f:64:
84:99:94:b1:9a:de:ff:e4:6d:2d:f0:91:1f:72:20:4f:85:f6:
0a:3a:96:bf:9e:f3:57:7f:3e:83:a2:3f:5c:bc:6a:f3:6d:ce:
7c:cc:b9:98:df:e1:f0:8f:34:ea:1e:6c:01:cf:cf:a7:85:37:
c5:13:08:4f:bb:38:e0:5c:99:76:94:56:0d:84:99:08:6c:9c:
d7:c6:4b:97:59:06:ee:b4:0e:65:d2:f6:70:cf:b4:ee:db:de:
b7:ed:1e:a1:2c:ab:52:05:a0:0e:2c:11:52:77:8d:0f:4c:34:
0c:2b:26:5c:a8:48:aa:df:5e:56:16:ef:ef:fb:6a:17:5f:4c:
14:17:96:79:e6:92:f3:e6:28:e8:70:9b:2e:1d:d7:40:dc:57:
6c:88:a1:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:42 2024 by rpki-client on console-ams.rpki-client.org