Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2fNJ1pBu0e3TyJ51bmqM5MGRAFQ.cer
File: 2fNJ1pBu0e3TyJ51bmqM5MGRAFQ.cer (raw, json)
Hash identifier: SVxx8vusqdTmLNHcZT0vvki9S0IpmsnGHkRTfo/hUkk=
Subject key identifier: D9:F3:49:D6:90:6E:D1:ED:D3:C8:9E:75:6E:6A:8C:E4:C1:91:00:54
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94DB2DFF5775A9ACD4E5D606633646D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1f/27d4f2-d1dc-41bd-b8e6-9545b133c4e3/1/2fNJ1pBu0e3TyJ51bmqM5MGRAFQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1f/27d4f2-d1dc-41bd-b8e6-9545b133c4e3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:32:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204183
IP: 195.64.117.0/24
IP: 2a12:b680::/29
Validation: Failed, certificate revoked on Thu 08 Feb 2024 07:58:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:b2:df:f5:77:5a:9a:cd:4e:5d:60:66:33:64:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:32:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d9f349d6906ed1edd3c89e756e6a8ce4c1910054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:29:a7:b9:c3:ae:e9:a8:5b:b0:82:de:0c:b0:
72:31:2d:47:83:b6:af:07:ea:5e:c0:e4:11:51:66:
98:fe:07:1a:7e:0b:1e:b0:f4:a9:d2:67:f3:06:9a:
d7:c3:4e:9d:d3:58:b2:d6:2f:f0:31:8d:4c:f7:69:
8c:80:ee:14:a7:01:d6:86:d0:5b:ff:98:4d:34:f5:
35:fa:fa:6e:13:17:44:66:10:e5:eb:f6:d6:a5:85:
ad:85:f0:b2:ac:72:e2:2a:b6:98:2b:d5:98:79:6d:
6a:25:53:36:4d:9a:c5:d7:9b:e2:b7:c9:8b:b0:e7:
79:4e:54:2d:47:f4:6c:23:c9:06:93:19:75:68:b9:
b3:4d:ba:57:b3:aa:ad:f9:d3:8e:4c:6f:1a:76:4a:
1a:25:52:37:ce:be:54:64:af:64:12:36:bf:e2:83:
12:c5:14:58:32:8b:a0:3c:cb:80:ba:12:17:bc:63:
a2:e5:b5:3c:1b:57:62:79:95:de:f0:12:27:91:be:
df:db:5e:04:81:b5:f7:4b:cf:6f:49:19:c8:b2:07:
0f:a3:ff:5e:e7:8c:3a:7d:3c:41:3d:22:31:97:07:
4a:95:40:e0:8d:d3:c3:fe:c4:fc:e2:d0:9a:61:a2:
2b:c5:ce:0c:94:a9:f0:7a:35:8b:ff:35:d8:6b:d8:
56:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:F3:49:D6:90:6E:D1:ED:D3:C8:9E:75:6E:6A:8C:E4:C1:91:00:54
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/27d4f2-d1dc-41bd-b8e6-9545b133c4e3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/27d4f2-d1dc-41bd-b8e6-9545b133c4e3/1/2fNJ1pBu0e3TyJ51bmqM5MGRAFQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.117.0/24
IPv6:
2a12:b680::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204183
Signature Algorithm: sha256WithRSAEncryption
a0:db:26:58:38:1f:4e:ac:69:71:3e:83:5a:5d:23:0b:f1:5b:
75:af:b8:f9:02:fa:24:da:78:0c:34:39:03:c8:9f:b8:4f:09:
89:ac:ac:d8:00:af:7d:73:07:da:c8:e0:9d:d3:4a:c3:2f:ac:
43:fe:2d:3f:ee:60:72:74:af:2d:b6:56:31:cc:c0:4c:0c:0c:
7d:78:c9:2d:2a:dd:6d:09:9d:c0:6f:b9:c3:3e:b3:fa:3b:29:
c2:56:21:e1:d8:c3:ac:02:8e:54:e3:0d:b7:63:a8:fb:be:84:
54:8c:83:da:62:f6:9a:a4:16:54:2d:13:7a:d6:be:bd:13:99:
0b:30:5d:00:05:a0:eb:0d:34:01:6b:2b:cb:c3:86:93:68:c3:
95:a8:7a:30:fc:83:3b:c0:c9:92:67:ad:ff:db:3c:b7:b4:a6:
02:fc:d4:f0:0c:ba:b6:8e:da:c3:b3:69:53:15:18:80:d7:4c:
3f:df:c8:7c:5b:03:d8:1e:aa:14:0f:e6:9e:d9:bc:5a:5e:6c:
a5:e8:ad:93:b5:58:40:6a:40:2e:fa:54:4d:93:c9:87:36:5e:
1f:72:57:fe:0d:d0:cc:b6:a8:73:99:c1:e3:02:90:40:ea:71:
79:67:a7:81:36:95:cd:77:d6:78:98:90:44:9b:d4:e4:06:42:
c8:c3:27:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 8 10:48:40 2024 by rpki-client on console-ams.rpki-client.org