Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4zwKea8kUCrKptwvFnfwQA8cRGE.cer
File: 4zwKea8kUCrKptwvFnfwQA8cRGE.cer (raw, json)
Hash identifier: et9zo3SyHSbcx+rvaR7Yf+Z2cMcqwRfgTpwqt3V1K8I=
Subject key identifier: E3:3C:0A:79:AF:24:50:2A:CA:A6:DC:2F:16:77:F0:40:0F:1C:44:61
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018570893281BA78FFDD45A69FD88D90E9A4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e6/d55ee2-2df1-4a79-90c4-e3419e0887c1/1/4zwKea8kUCrKptwvFnfwQA8cRGE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e6/d55ee2-2df1-4a79-90c4-e3419e0887c1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 03:31:57 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 91.212.64.0/24
IP: 2a12:1c80::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:89:32:81:ba:78:ff:dd:45:a6:9f:d8:8d:90:e9:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:31:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e33c0a79af24502acaa6dc2f1677f0400f1c4461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:87:7c:be:bd:02:da:e9:73:59:3e:30:03:9b:
82:e0:85:36:10:79:1a:3e:bf:02:2f:5b:f2:a5:67:
da:e2:0a:b5:b5:ae:2e:3c:d2:8a:71:dc:0b:b3:ad:
41:9e:60:70:da:48:c7:e1:6f:33:cf:e4:42:94:54:
b5:a2:ea:df:32:dc:f8:f9:54:b3:7b:33:ca:64:62:
4f:bb:35:62:2c:a2:86:4f:b9:74:f3:90:1f:b9:95:
49:dc:a7:f2:22:10:87:4e:8b:8a:13:a4:96:01:e8:
70:5c:b3:75:ea:c5:85:5c:47:b8:85:64:7d:86:4c:
d9:5b:bb:79:d6:47:4e:bd:af:c3:f4:c5:61:84:24:
73:69:1c:e4:a6:c1:52:14:95:08:9c:ac:73:47:45:
e5:90:27:0b:ae:5c:c7:78:c0:5e:a5:24:30:82:59:
c0:08:e4:04:c8:c9:fb:33:56:cb:77:2e:52:79:ce:
b8:f4:be:95:df:68:17:27:0f:5e:10:df:b0:98:33:
c4:da:ba:78:fa:fa:ec:9f:60:c0:52:1b:af:14:eb:
eb:f1:4c:7c:b3:44:2b:83:c9:58:d5:4d:4c:87:e2:
42:bd:8c:c0:cc:bd:56:a8:2c:db:eb:57:f9:88:54:
29:da:3b:10:06:1f:0d:1e:11:cd:ea:cb:49:6c:bf:
86:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:3C:0A:79:AF:24:50:2A:CA:A6:DC:2F:16:77:F0:40:0F:1C:44:61
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/d55ee2-2df1-4a79-90c4-e3419e0887c1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/d55ee2-2df1-4a79-90c4-e3419e0887c1/1/4zwKea8kUCrKptwvFnfwQA8cRGE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.64.0/24
IPv6:
2a12:1c80::/29
Signature Algorithm: sha256WithRSAEncryption
91:c6:2f:37:cb:33:b1:cf:ba:0c:13:cf:34:e4:3d:a5:0b:f9:
78:bd:5b:02:15:72:f0:37:48:32:c1:d2:59:7e:a0:26:04:2c:
f3:7c:a4:61:40:7e:4b:ef:af:c1:72:71:ec:3a:f5:7b:7e:64:
9b:85:4c:bb:9b:9b:a3:8b:19:0f:9f:4a:5b:8e:63:b7:48:16:
11:51:a4:09:2c:e9:cd:4b:af:29:10:70:7e:7a:b4:6c:b7:04:
85:24:36:26:f0:2c:c9:e6:46:cb:36:51:df:f0:34:82:12:69:
30:81:00:33:6b:7e:e3:16:71:18:e2:ee:01:d9:15:79:a3:f6:
55:f2:29:5d:05:6c:4c:34:79:86:47:99:5d:99:e3:32:ae:eb:
37:82:e2:ae:54:fa:b6:e9:f8:0c:17:6d:39:2e:eb:fb:39:7d:
6c:12:30:1d:aa:47:43:cf:88:68:cb:28:20:b0:26:96:3b:c8:
42:63:1e:ee:9c:55:9b:1c:16:d3:da:22:29:1e:c2:04:97:a8:
73:b8:b8:2e:e7:a9:fa:5c:3b:8b:d9:c2:e3:c2:9f:ea:1f:2d:
d7:3f:8b:e2:3d:a5:e6:29:62:ee:58:64:99:1a:b3:0b:57:fc:
b7:59:8e:31:26:59:e5:11:9c:37:15:05:b2:ac:a1:fb:56:c5:
4b:61:bc:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 8 10:44:48 2023 by rpki-client on console-ams.rpki-client.org