Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5TpBnW-hT8LLJ58KKNr0psyUFf0.cer
File: 5TpBnW-hT8LLJ58KKNr0psyUFf0.cer (raw, json)
Hash identifier: qsjSxUgLW5Al65y8ILW96YjYbEfYjAuNaDpPs9DlRck=
Subject key identifier: E5:3A:41:9D:6F:A1:4F:C2:CB:27:9F:0A:28:DA:F4:A6:CC:94:15:FD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856AA588D9E9BC2111750A3E2FD22D1C35
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki1.terratransit.de/repo/TerraTransit/176/E53A419D6FA14FC2CB279F0A28DAF4A6CC9415FD.mft
caRepository: rsync://rpki1.terratransit.de/repo/TerraTransit/176
Notify URL: https://rpki1.terratransit.de/rrdp/notification.xml
Certificate not before: Sun 01 Jan 2023 00:05:11 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 45.87.8.0/22
IP: 45.94.56.0/22
IP: 45.94.64.0/22
IP: 45.95.160.0/22
IP: 45.130.224.0/22
IP: 45.137.76.0/22
IP: 45.140.200.0/22
IP: 45.148.188.0 -- 45.148.195.255
IP: 45.157.184.0/22
IP: 194.39.142.0/24
IP: 194.39.157.0/24
IP: 194.39.174.0/24
IP: 194.39.176.0/24
IP: 2a0e:ec80::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6a:a5:88:d9:e9:bc:21:11:75:0a:3e:2f:d2:2d:1c:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:05:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e53a419d6fa14fc2cb279f0a28daf4a6cc9415fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:c1:61:2f:4e:f1:78:fa:6f:8c:b4:0c:ac:88:
33:5c:07:f1:a4:72:96:a2:7b:a9:27:d0:73:9d:27:
be:7f:b8:2a:19:a1:9b:fa:d4:e5:d0:b3:5b:d7:bd:
4f:9f:05:a4:db:9a:ba:08:94:e3:15:48:41:81:de:
75:c0:9a:a4:b1:7b:87:2e:5b:81:00:aa:3e:ff:2a:
c0:cf:27:eb:f7:22:a7:f4:9c:51:b2:3a:f9:4f:cb:
db:66:8b:41:d5:f8:7b:a3:ea:94:b4:aa:c1:21:5f:
9e:c9:90:d6:69:b9:f9:74:76:6d:0a:68:31:ec:c9:
21:55:2e:da:f3:9f:70:d6:12:d0:c3:83:4d:42:f0:
f1:6d:f2:18:da:b8:62:d7:96:fc:df:2f:e3:6c:f6:
e1:05:86:23:20:4e:c3:5e:34:7b:41:0c:c4:00:f7:
3c:33:10:68:8f:0d:b5:7a:c6:92:93:47:40:d4:37:
0e:7f:77:7a:9f:e8:2e:ac:85:0c:22:43:1a:93:fd:
52:2c:47:26:b2:13:cc:c4:8e:f0:e5:14:f7:1b:94:
80:ef:c8:d6:26:8f:59:c7:72:54:59:cd:23:49:bc:
61:9c:70:54:09:39:2e:8d:43:89:eb:66:3b:8a:1c:
80:90:c2:3e:e9:f0:35:da:60:bb:1d:f4:e0:10:15:
92:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:3A:41:9D:6F:A1:4F:C2:CB:27:9F:0A:28:DA:F4:A6:CC:94:15:FD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/176
RPKI Manifest - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/176/E53A419D6FA14FC2CB279F0A28DAF4A6CC9415FD.mft
RPKI Notify - URI:https://rpki1.terratransit.de/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.8.0/22
45.94.56.0/22
45.94.64.0/22
45.95.160.0/22
45.130.224.0/22
45.137.76.0/22
45.140.200.0/22
45.148.188.0-45.148.195.255
45.157.184.0/22
194.39.142.0/24
194.39.157.0/24
194.39.174.0/24
194.39.176.0/24
IPv6:
2a0e:ec80::/29
Signature Algorithm: sha256WithRSAEncryption
ad:f3:af:d6:53:e9:46:f0:1e:6d:0b:b7:62:63:a1:aa:e6:36:
8e:ba:72:cb:2e:3f:8d:70:32:62:e8:89:76:e5:ba:90:11:e4:
70:89:d1:2e:d8:eb:11:10:ae:19:d1:d0:81:92:6e:96:f4:e8:
b1:8f:6a:80:86:f4:5f:e0:da:03:e9:8b:22:22:dc:91:b2:3d:
e6:7d:f9:93:6c:32:6e:12:8f:21:d7:e1:21:13:bd:a4:5e:97:
22:4a:e8:b2:09:05:29:3d:5a:14:f4:aa:72:3a:1b:d3:44:cc:
86:d2:84:5a:a2:e6:80:fe:0f:90:2b:67:7d:df:d8:c3:34:d4:
1b:71:9f:21:ac:f5:76:7a:a5:5b:d6:86:ee:bc:ab:a2:0b:bd:
0a:e6:a5:d7:00:37:df:e0:1a:d2:3b:03:0a:4d:bc:fa:2e:d9:
f9:24:6c:00:e2:63:d5:6a:62:09:75:e1:82:48:1f:0f:f2:27:
dc:06:3a:bd:cf:1c:7b:32:ff:cb:c5:b2:71:d1:a3:ad:6d:1e:
19:c3:46:9f:1f:02:b4:8b:bb:18:04:cc:38:d0:a3:74:47:e7:
9e:2b:be:b5:44:6d:58:fa:ff:59:83:ef:19:65:3e:9e:d0:21:
af:3d:20:4a:02:9b:85:c1:f1:2a:19:e2:54:2f:cd:ff:51:f3:
08:f8:76:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org