Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.cer
File: BNnlsPnRp_3T5rwS6Bfmc6CeoZM.cer (raw, json)
Hash identifier: bnD4vZSTtzO54f7wnO90fhioKRS5CEAt+eLJZ7SUFnU=
Subject key identifier: 04:D9:E5:B0:F9:D1:A7:FD:D3:E6:BC:12:E8:17:E6:73:A0:9E:A1:93
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0185701C8CFA432567E251840BBAB257969B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 01:33:17 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 35404
IP: 185.241.244.0/22
IP: 2a09:9140::/29
Validation: Failed, certificate revoked on Tue 25 Jul 2023 13:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1c:8c:fa:43:25:67:e2:51:84:0b:ba:b2:57:96:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 01:33:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04d9e5b0f9d1a7fdd3e6bc12e817e673a09ea193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8f:29:82:1e:83:e4:b3:90:ab:19:73:57:46:
f5:bc:ef:7c:8d:0d:a8:af:a3:69:ea:be:d8:ad:dc:
44:b3:43:37:f1:47:6d:55:57:42:4d:35:f8:1d:38:
6a:98:1c:5f:65:65:16:3f:69:17:29:61:95:3b:cc:
0c:da:b1:60:bb:f0:15:e5:9d:35:b5:1a:d8:9e:e7:
73:33:7d:0f:50:cf:40:fc:f4:2b:c8:57:9b:87:57:
54:ff:e9:ef:bd:bf:2f:26:ac:4f:94:85:18:57:04:
ad:05:f4:94:ed:9f:28:cf:59:4a:80:7f:c6:f2:a8:
2b:c5:02:37:20:e3:61:a5:cb:e9:e4:7a:aa:34:46:
94:c5:ba:06:37:c5:ef:b2:39:a6:ac:a8:f2:23:62:
25:ad:0a:b1:92:7a:ba:e0:ef:19:1e:ad:ef:65:2c:
10:6a:0b:df:f5:99:f0:40:4b:14:e0:26:46:fe:b3:
1b:92:a2:67:b6:3e:f5:67:86:7e:37:fa:06:e0:69:
32:f1:2b:68:78:b9:b1:89:b0:d4:3b:37:ee:2d:f4:
85:73:15:11:54:26:27:0c:cc:25:2a:68:d7:96:95:
23:07:e6:6e:7b:dc:00:63:54:0e:d9:4e:6f:f9:a3:
b6:60:87:f4:0b:6f:f8:24:0c:97:6c:95:93:aa:3c:
27:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D9:E5:B0:F9:D1:A7:FD:D3:E6:BC:12:E8:17:E6:73:A0:9E:A1:93
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.244.0/22
IPv6:
2a09:9140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35404
Signature Algorithm: sha256WithRSAEncryption
9c:66:bd:cd:83:97:cd:82:b8:c6:0f:12:67:48:a9:b2:37:4d:
43:15:e4:26:80:07:a5:6f:39:69:56:a1:47:0e:bf:cd:f0:70:
17:e1:45:6e:06:fd:b4:a7:f7:01:b2:e6:9b:f8:13:1a:77:9f:
f6:b3:ac:ff:43:2b:ce:4d:d0:dd:e0:db:7f:33:13:3b:09:c2:
1a:82:b3:aa:44:22:4c:c3:6b:5a:d5:ea:a5:bb:e6:03:66:29:
56:d9:8b:2e:57:13:a4:80:0b:3e:56:63:74:80:08:d2:c1:33:
a7:63:51:a9:18:5e:44:fc:82:66:88:19:e5:58:b7:24:38:74:
ec:7b:c8:62:a1:3c:3c:dc:78:b5:6d:66:cd:5f:2e:60:06:f4:
b1:00:72:f5:8f:03:15:76:95:9e:43:ea:21:90:ed:18:94:b0:
07:64:e1:54:59:ce:a1:b8:cb:a3:68:ea:d0:27:49:b1:d4:49:
f7:a3:4a:39:95:72:80:96:2c:2c:e5:a9:f4:af:87:84:c4:3a:
30:f8:ca:54:24:15:35:d1:68:2f:44:7b:b4:e1:aa:4e:57:da:
c3:28:fa:14:b5:b6:55:11:52:dc:ad:ba:f8:07:03:a3:dd:f9:
06:7e:f3:90:b0:ed:76:99:a2:de:f7:c4:e7:08:9d:7e:4e:5d:
4a:f3:8c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:27:16 2024 by rpki-client on console-ams.rpki-client.org