Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2K4dfMaLeMSUxTDqpKD3VZ4lpO8.cer
File: 2K4dfMaLeMSUxTDqpKD3VZ4lpO8.cer (raw, json)
Hash identifier: O7IASDwm1SRiq0EuBR/ldOnWOwMebelwQwvz8ffbGaY=
Subject key identifier: D8:AE:1D:7C:C6:8B:78:C4:94:C5:30:EA:A4:A0:F7:55:9E:25:A4:EF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856ED2EE0447FB8A60EB4C923D2FBED73A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9c/15c74c-f8b8-4f53-a131-64e431f74eea/1/2K4dfMaLeMSUxTDqpKD3VZ4lpO8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9c/15c74c-f8b8-4f53-a131-64e431f74eea/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 19:33:15 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 201308
IP: 185.75.240.0/22
IP: 2a05:5500::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d2:ee:04:47:fb:8a:60:eb:4c:92:3d:2f:be:d7:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:33:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8ae1d7cc68b78c494c530eaa4a0f7559e25a4ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a2:85:97:1d:33:99:ea:5a:eb:bd:a6:f3:49:
28:17:a6:a6:25:a1:63:e7:67:90:83:c4:fc:75:3b:
67:bf:01:b2:6c:67:8e:42:d1:c0:65:cc:62:c9:8c:
2c:57:bd:1e:62:de:ce:5d:a7:40:ce:38:7c:23:78:
87:f8:7f:a5:98:21:9b:08:06:b5:8d:ac:cc:7e:30:
dc:86:a1:a0:2e:b0:96:17:45:ea:3a:25:50:93:2c:
1c:8e:b4:69:8f:32:aa:ad:59:e4:b6:d9:14:8b:5b:
85:c4:7d:6a:42:93:97:fd:a4:21:c6:6a:38:9b:98:
b2:68:fe:3a:d5:99:5e:a5:2e:5c:5d:79:8c:b4:e4:
0f:20:6d:a7:6f:cb:d5:a4:c5:96:a5:21:5f:d6:d0:
45:8b:63:a5:7e:0d:34:33:c2:34:a8:81:5c:3c:3d:
67:8c:8d:98:54:dd:a9:fd:10:e2:ee:61:86:84:e1:
16:c3:9e:8d:bf:df:f9:fe:6b:51:94:83:90:ac:c7:
67:0c:ae:28:61:74:c5:74:d7:39:2c:98:0d:3b:68:
1f:0c:9a:70:66:ed:74:e1:d0:49:ea:0e:b6:b5:8d:
0d:d1:de:33:99:ba:d4:e3:c9:36:ad:de:49:fc:9e:
3b:76:0a:31:c8:29:85:ed:3d:76:4f:ca:a7:53:42:
7d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:AE:1D:7C:C6:8B:78:C4:94:C5:30:EA:A4:A0:F7:55:9E:25:A4:EF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/15c74c-f8b8-4f53-a131-64e431f74eea/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/15c74c-f8b8-4f53-a131-64e431f74eea/1/2K4dfMaLeMSUxTDqpKD3VZ4lpO8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.240.0/22
IPv6:
2a05:5500::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201308
Signature Algorithm: sha256WithRSAEncryption
7f:ac:aa:83:ef:7a:af:76:12:49:58:fa:5e:59:80:ae:e9:4c:
5e:6b:fc:17:8b:f1:0c:0c:c5:ac:cc:86:cb:7c:35:71:8b:92:
e3:62:5f:2e:b4:03:59:ef:0a:c4:fa:48:7e:38:3d:07:a1:bb:
9c:ae:a1:23:0f:40:76:e6:81:b9:87:99:7e:c1:42:12:77:88:
ef:8d:1c:41:fa:1c:ee:a1:7b:6e:d8:03:c3:c5:15:9c:7f:df:
df:31:80:13:b2:37:b0:30:66:bd:b9:00:77:6a:96:0c:a0:ab:
cd:3d:67:2a:bb:56:c1:d0:f0:55:ea:1a:0b:c6:f4:e2:95:5c:
59:5c:78:39:b0:c6:48:83:ad:0e:0e:a6:99:9e:00:ce:11:ee:
02:bb:cf:9e:77:0e:eb:a0:c4:6c:9a:73:0d:ef:75:68:12:32:
30:3e:3b:43:d4:db:aa:3b:95:98:46:d1:c2:70:33:16:38:01:
78:71:d4:f7:ca:0e:b7:b7:14:f9:86:6d:68:12:0f:f4:85:6b:
06:ad:56:d7:10:9c:b4:be:f5:14:49:6c:16:64:bf:97:08:d6:
c7:3f:94:3b:ae:82:f0:d8:93:50:f8:5a:88:72:c9:b0:cf:e5:
bd:27:cf:e5:c5:75:28:e7:97:db:54:d0:10:f3:55:e7:85:30:
6b:05:fa:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:31 2023 by rpki-client on console-ams.rpki-client.org