Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28rEj9yVQ8QHBBZa6FlJQx7DtuM.cer
File: 28rEj9yVQ8QHBBZa6FlJQx7DtuM.cer (raw, json)
Hash identifier: aBo+HKbaHNH7lNQRHT9y+9H7WYN85sfQ7qynzEMTRqo=
Subject key identifier: DB:CA:C4:8F:DC:95:43:C4:07:04:16:5A:E8:59:49:43:1E:C3:B6:E3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856B632CB771C2EE60D26FA345BC2C94F6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/28rEj9yVQ8QHBBZa6FlJQx7DtuM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 03:32:19 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 48722
IP: 185.140.132.0/22
IP: 2a07:1d40::/29
Validation: Failed, certificate revoked on Thu 31 Aug 2023 09:43:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:63:2c:b7:71:c2:ee:60:d2:6f:a3:45:bc:2c:94:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:32:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbcac48fdc9543c40704165ae85949431ec3b6e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a1:74:9a:5a:db:f9:b7:dc:ec:04:ba:ee:0a:
52:97:ec:db:02:fd:62:fd:ba:d4:e6:1f:0d:52:7b:
2c:45:5a:26:0c:e7:80:94:a7:25:04:3e:fa:22:28:
ed:a3:4c:12:6f:b9:4c:ab:ea:1e:65:e2:33:7a:63:
fa:0b:22:9c:09:2c:eb:d4:7a:4b:1c:fa:85:be:a6:
18:fd:ad:02:6e:95:f6:e6:cf:58:ec:8e:27:e0:97:
73:17:5e:e5:45:d6:97:29:6a:2c:11:78:a9:2a:e6:
bb:67:8b:0e:61:39:45:18:f8:1c:7c:79:c8:42:66:
60:49:aa:34:f6:47:44:86:a9:7f:84:6b:ba:2b:91:
c0:24:64:5d:7c:6a:a9:63:ad:6e:07:1a:b1:ad:ed:
11:d6:0a:fb:97:56:1c:26:ed:55:ac:69:24:db:b4:
a5:7d:7a:04:ca:40:fc:90:aa:57:25:0b:09:9f:ea:
24:07:12:bc:7d:cd:76:00:2e:4a:7b:d4:7c:5f:58:
d1:93:96:fc:1a:db:23:01:37:34:92:9b:3e:e8:a6:
d7:6a:dc:62:39:91:58:9b:7f:5c:45:f5:57:82:25:
ef:83:fc:dd:cd:96:e8:70:0e:6e:bd:e3:ba:e2:8b:
f2:a5:86:64:a8:25:1f:44:73:d6:54:f6:e4:78:29:
9d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:CA:C4:8F:DC:95:43:C4:07:04:16:5A:E8:59:49:43:1E:C3:B6:E3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f602f2-d4aa-4cbb-99f3-22a54d1fe069/1/28rEj9yVQ8QHBBZa6FlJQx7DtuM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.132.0/22
IPv6:
2a07:1d40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48722
Signature Algorithm: sha256WithRSAEncryption
89:c5:d3:b8:6d:8b:36:1b:08:42:bd:52:02:1a:33:dd:5d:6e:
59:08:72:42:7a:38:a1:1d:a3:a4:3a:06:04:28:64:3d:cc:65:
84:22:09:86:a5:59:1f:a0:27:49:71:5d:ca:cb:b6:da:2c:b1:
78:3c:06:06:fa:c2:4f:b8:b9:01:e8:15:fd:f5:0a:4a:89:26:
ff:a9:2c:44:ff:dd:01:38:8a:9f:03:f2:cc:83:7f:17:53:a9:
f0:94:a0:04:1b:5a:c9:10:ca:b8:9b:fc:90:09:3b:9c:44:11:
d7:a6:77:8f:f1:ec:6c:1a:a9:4a:01:2d:0e:1a:93:0c:c2:d2:
8a:b4:c1:83:80:6b:b4:ac:69:48:3d:2d:51:7d:55:46:33:0c:
2e:e2:56:68:74:e9:59:91:e1:1a:56:d2:2f:0b:9b:c4:36:6e:
2d:ed:be:ab:45:a3:8d:91:79:18:7f:06:34:86:15:9a:8b:0f:
37:e4:26:ff:3a:11:c9:1c:e7:d8:37:86:46:77:b7:2e:fe:07:
19:8a:55:b6:d2:fc:75:d9:1a:68:3d:46:9b:cb:58:34:53:59:
85:75:ab:24:73:db:05:25:16:f8:94:0f:30:0f:9a:ff:16:16:
a2:b7:ce:af:62:a7:41:5a:b5:e1:e2:e7:5f:e5:c4:54:3d:f7:
7a:18:b1:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:36 2024 by rpki-client on console-ams.rpki-client.org