Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8CXFcGQVvPyZ4OD8ea0KsNqYkBw.cer
File: 8CXFcGQVvPyZ4OD8ea0KsNqYkBw.cer (raw, json)
Hash identifier: mloHIVCAxVinDdvUGdFJzl2OJ9LrcpTWaXDP0NDHN/w=
Subject key identifier: F0:25:C5:70:64:15:BC:FC:99:E0:E0:FC:79:AD:0A:B0:DA:98:90:1C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC45C115E7E6319601739C0DC48547282
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/8/F025C5706415BCFC99E0E0FC79AD0AB0DA98901C.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/8/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 09:30:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60743
Validation: Failed, certificate revoked on Wed 03 Jan 2024 16:12:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:5c:11:5e:7e:63:19:60:17:39:c0:dc:48:54:72:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f025c5706415bcfc99e0e0fc79ad0ab0da98901c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:95:35:eb:ea:8a:24:1b:1c:4b:59:86:fa:10:
fb:43:a8:12:e0:25:c6:38:54:7f:c8:fe:3b:5d:d0:
41:ea:31:fb:a1:d5:ca:70:9e:d7:82:46:95:0b:59:
64:c3:46:8c:7f:38:dc:83:80:72:21:92:14:53:be:
22:3c:ee:b3:d0:ba:4d:14:f0:2f:2a:c3:90:c1:7e:
2c:67:83:fe:db:38:fa:03:66:72:fd:1a:6c:cb:72:
b9:c9:8e:8a:28:5b:12:f5:fd:e5:f5:62:69:93:d4:
5e:f9:2c:c1:8b:83:58:fb:fd:75:42:66:34:07:ee:
41:5b:5e:0f:51:8d:a1:8c:ae:d1:24:fe:30:ec:a5:
7a:f2:68:54:a2:4a:a0:1f:d1:cb:62:ec:ba:da:03:
ab:86:59:2a:a6:3f:dd:26:e8:e7:a3:bf:70:35:05:
cc:7a:4c:17:aa:c1:61:a4:2d:18:2f:a6:78:74:e6:
54:e5:ab:e2:6b:f7:8e:32:b6:01:1b:ff:77:71:54:
5d:5f:a4:cb:95:3f:91:a6:2a:b5:cf:81:50:1e:d7:
d5:83:2f:47:55:a1:9a:47:15:d8:04:e4:f2:64:24:
ed:88:86:b0:4a:a1:ad:e6:1d:ca:82:d1:fb:06:6b:
a7:c9:00:f5:7d:93:c0:16:17:aa:75:ff:35:1b:1c:
6b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:25:C5:70:64:15:BC:FC:99:E0:E0:FC:79:AD:0A:B0:DA:98:90:1C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/8
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/8/F025C5706415BCFC99E0E0FC79AD0AB0DA98901C.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60743
Signature Algorithm: sha256WithRSAEncryption
05:b9:90:c3:eb:b6:38:14:e8:80:4e:7a:4d:b8:60:18:53:36:
22:cb:51:17:09:4f:dc:46:97:9f:d5:fc:b3:6f:bc:16:58:ff:
98:08:ac:67:7b:e1:36:5a:52:a6:33:f7:9b:9b:dd:36:50:2b:
3d:76:3d:2b:47:54:53:8c:4c:f5:eb:f8:f1:ca:a5:b7:3d:e0:
76:22:84:f9:fa:3c:15:de:08:7d:60:35:1d:98:97:75:30:53:
4b:96:60:13:78:05:31:0a:cf:de:6d:7f:f2:36:6d:b6:02:db:
eb:e8:f5:98:d2:14:88:fb:ad:8b:92:8b:5a:32:c4:63:e2:9a:
aa:95:60:8e:51:6c:51:a1:2f:d8:ca:56:2d:40:dd:d4:b3:a5:
9f:6d:c9:5e:66:a9:3e:6e:9a:25:94:dd:83:45:21:d9:35:3d:
f0:74:71:48:48:4c:da:14:7b:dd:81:50:ad:81:3c:04:36:4a:
0b:a3:2b:94:1f:1d:18:e5:90:61:dc:3f:02:47:e8:d6:52:b8:
6b:f9:89:60:1e:59:40:7a:78:6d:62:72:57:82:0c:b1:11:a5:
4b:6e:f6:48:b1:7b:07:4e:5f:53:f8:49:7b:39:e0:71:df:37:
1f:21:b0:35:25:5e:20:74:9a:fd:79:3b:59:70:50:8f:c4:35:
b6:a4:71:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:44 2025 by rpki-client