Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2PfbGESbwArmFDEs1W19x4oFqic.cer
File: 2PfbGESbwArmFDEs1W19x4oFqic.cer (raw, json)
Hash identifier: HwlOJZgOuHiAVrOJ+nHN43+I9O7hv+9Akrtw5xTRUm0=
Subject key identifier: D8:F7:DB:18:44:9B:C0:0A:E6:14:31:2C:D5:6D:7D:C7:8A:05:AA:27
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018571D64B920BD2C05A94F1C552B41A65A9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/eb/9a99c1-0da8-411c-a3a5-6c0e45bc3ff1/1/2PfbGESbwArmFDEs1W19x4oFqic.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/eb/9a99c1-0da8-411c-a3a5-6c0e45bc3ff1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 09:35:47 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 185.115.120.0/22
IP: 2a06:7600::/29
Validation: Failed, certificate revoked on Thu 28 Sep 2023 15:55:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d6:4b:92:0b:d2:c0:5a:94:f1:c5:52:b4:1a:65:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:35:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8f7db18449bc00ae614312cd56d7dc78a05aa27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:87:fb:6a:94:b7:06:45:21:be:3d:5a:db:43:
bf:e0:ab:5f:12:22:ce:2d:37:44:26:9b:ca:c8:ae:
11:15:35:b6:b4:42:88:2a:44:63:1b:00:2e:c3:d1:
2f:2d:81:f0:61:7e:8f:c7:1d:5c:5b:f6:e1:ca:31:
79:45:c3:7d:42:4d:b4:2b:56:5d:d9:b1:fd:45:cf:
42:fd:52:62:2b:c0:35:65:08:b2:9a:42:64:95:f6:
a1:50:d5:d0:dd:d5:9b:e2:4b:07:25:a4:c3:4d:a7:
d6:0e:f3:7d:c7:26:af:b9:6a:3a:3a:92:cb:02:ac:
c3:57:d3:9c:a6:4f:24:a1:56:4a:b4:e8:c0:c7:52:
bc:3e:d2:60:7f:78:f2:30:93:43:ac:31:2c:d3:ec:
ca:88:3c:d3:7d:68:1d:40:bc:0c:db:cb:11:09:71:
63:0b:cf:a0:bf:04:d8:cf:7b:49:25:6d:b3:59:87:
87:54:a9:be:ee:10:29:ef:5b:0d:7c:2c:c3:b8:fc:
48:bd:52:3b:3c:9e:46:0d:f3:c3:32:fe:f8:11:38:
67:7c:ad:21:5d:81:a4:26:3d:75:a4:00:fc:3d:77:
57:15:7a:0a:a7:e3:2e:31:c1:da:15:30:e2:fc:26:
97:1f:31:bd:7d:ce:06:ce:f6:fc:fd:32:d3:e9:49:
37:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F7:DB:18:44:9B:C0:0A:E6:14:31:2C:D5:6D:7D:C7:8A:05:AA:27
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/9a99c1-0da8-411c-a3a5-6c0e45bc3ff1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/9a99c1-0da8-411c-a3a5-6c0e45bc3ff1/1/2PfbGESbwArmFDEs1W19x4oFqic.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.120.0/22
IPv6:
2a06:7600::/29
Signature Algorithm: sha256WithRSAEncryption
5c:14:b1:97:a4:6b:7e:29:f9:65:5e:99:16:99:78:cc:47:a1:
94:76:60:48:58:27:c3:fe:81:97:45:df:ca:ee:8d:ca:d8:0f:
40:78:20:0c:33:0c:ec:ce:b8:c3:d9:da:96:97:84:e0:93:1e:
08:57:61:f1:e5:62:50:0b:6b:94:7f:6d:4c:81:9d:45:a4:88:
cb:fc:d7:1a:71:5e:7e:4f:a8:fc:09:18:fd:6d:75:b7:30:9a:
3e:28:67:73:2c:ac:2e:73:18:b2:22:a4:a4:90:7c:dc:2a:37:
45:93:0c:f6:29:ed:5c:be:6e:23:8c:74:b6:c8:b1:2b:d7:2e:
90:cd:8f:12:c5:36:01:7b:d5:24:c2:e1:6e:61:c5:0f:b5:17:
67:30:c2:37:a9:36:d6:6b:72:89:40:b0:a7:88:1e:58:41:26:
94:05:1e:2e:86:b9:c4:1e:77:ec:c3:e0:03:fa:ce:2d:3c:aa:
50:e8:92:c7:ee:1e:11:80:39:2a:b2:1d:33:5c:1a:6f:6e:5a:
99:59:a2:f9:5d:b8:8e:df:c5:b7:fe:86:2f:85:98:e1:14:3b:
ad:5f:5e:a3:36:6c:7e:af:fb:04:79:3c:42:08:07:86:35:9a:
a7:01:a0:45:57:62:41:f3:a3:dc:0f:8c:3a:e1:10:dd:5a:ae:
97:21:5b:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:56 2024 by rpki-client on console-ams.rpki-client.org