Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3UmIsJViBs-Gu2gFaKJHcjpGqUs.cer
File: 3UmIsJViBs-Gu2gFaKJHcjpGqUs.cer (raw, json)
Hash identifier: 7vvXLuH9jGpnXsQYzksNDskxcGwvod1yqyNSob11jGY=
Subject key identifier: DD:49:88:B0:95:62:06:CF:86:BB:68:05:68:A2:47:72:3A:46:A9:4B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856EFBE2DEDD5A814910D7625C700F46A6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/89/349835-9cde-473a-9a11-67d95a5f2441/1/3UmIsJViBs-Gu2gFaKJHcjpGqUs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/89/349835-9cde-473a-9a11-67d95a5f2441/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 20:17:59 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 91.242.242.0/24
IP: 2a11:b040::/29
Validation: Failed, certificate revoked on Mon 30 Oct 2023 15:22:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:fb:e2:de:dd:5a:81:49:10:d7:62:5c:70:0f:46:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:17:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd4988b0956206cf86bb680568a247723a46a94b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:10:b0:e0:87:90:d1:15:fa:53:69:4b:89:2d:
1f:b1:93:b9:2b:f7:8d:fa:9f:a1:78:b8:4d:ea:85:
6f:00:a2:9e:af:bd:73:57:53:d1:cd:a0:bc:2f:2a:
8d:5b:6d:80:69:f5:8d:31:6b:9a:0b:dd:c3:1b:f1:
07:78:1a:be:d9:1b:cf:db:f9:e2:c2:ac:10:08:63:
0f:21:5d:15:89:5b:e4:d0:90:76:96:98:75:bc:03:
cf:66:5a:cf:3e:77:f6:3b:34:5b:3a:fb:1d:04:31:
bb:45:a7:6f:d1:a8:34:7d:c1:a2:8b:4c:6e:b1:22:
7f:84:88:dc:19:40:43:f6:8c:ac:14:97:06:ca:7c:
47:cd:12:21:b5:db:86:98:ef:24:58:0f:30:a9:64:
38:e8:9d:ca:e7:7d:f6:4d:01:86:48:58:d1:19:72:
0f:94:cd:e9:de:49:52:6a:a2:15:b5:fe:09:0b:67:
3d:69:d9:74:2a:5d:e1:51:dd:27:31:ee:f3:67:80:
15:ba:de:49:91:51:62:18:a3:3f:9c:25:d4:8a:51:
a2:1c:96:27:1b:92:79:1c:86:31:80:79:66:cc:a6:
c2:58:f2:95:a4:23:42:83:bd:58:c0:38:6c:c9:1f:
e8:98:8c:52:3c:3c:bb:bf:ea:6b:3d:f8:95:84:79:
d6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:49:88:B0:95:62:06:CF:86:BB:68:05:68:A2:47:72:3A:46:A9:4B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/349835-9cde-473a-9a11-67d95a5f2441/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/349835-9cde-473a-9a11-67d95a5f2441/1/3UmIsJViBs-Gu2gFaKJHcjpGqUs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.242.0/24
IPv6:
2a11:b040::/29
Signature Algorithm: sha256WithRSAEncryption
2a:4b:d2:e1:62:4a:c4:ca:19:4b:d4:7e:85:67:d9:cb:46:6a:
c9:23:c7:b2:5c:b2:81:a5:50:84:3f:c9:e5:da:ab:5a:fb:77:
55:98:d0:16:05:07:f8:e6:17:46:11:32:c9:a3:06:50:c2:c4:
33:cb:0f:3c:f0:53:3c:5d:7c:e1:3b:31:41:40:3e:55:6b:49:
83:73:77:9a:a8:83:fc:c1:09:75:2d:6f:03:25:6b:94:60:e4:
d1:92:a6:2d:08:c1:0d:93:27:4c:1d:24:d1:c2:a4:ec:5c:e1:
59:37:a8:1e:6a:6c:3f:cd:a6:c1:e0:0a:ca:88:73:2f:71:8a:
91:bc:9e:7c:0a:18:81:00:bf:eb:36:51:6a:84:d3:8a:3b:6b:
e5:c5:cd:1f:35:7e:39:99:92:a4:04:fd:8c:02:44:4c:69:a0:
2f:8b:18:30:2e:20:c5:46:04:26:f1:1a:a3:a9:14:58:71:56:
1b:17:cb:b3:83:80:64:c2:9a:5e:68:2b:6d:7f:aa:10:e8:62:
9f:46:6a:6e:0d:98:07:f6:f0:99:f8:88:9f:93:fc:03:e1:a7:
37:48:aa:b5:f3:56:79:86:e7:d7:3b:13:4d:71:9d:67:0c:97:
9f:91:2a:bd:db:89:61:9a:06:5e:d7:f2:59:c9:46:8d:c3:57:
97:88:08:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:47 2024 by rpki-client on console-ams.rpki-client.org