Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DBa7UnpShZ4PabiNL-3t4b3p_y0.cer
File: DBa7UnpShZ4PabiNL-3t4b3p_y0.cer (raw, json)
Hash identifier: bGb9MpiOgMmuXZPi/G9Ue4nl9vnkXaDDTpq1eYJHns8=
Subject key identifier: 0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56E08FFA97988968CB3124BCD0D18C0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/DBa7UnpShZ4PabiNL-3t4b3p_y0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:29:32 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 193.105.95.0/24
IP: 2a12:5480::/29
Validation: Failed, certificate revoked on Thu 21 Mar 2024 12:54:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:08:ff:a9:79:88:96:8c:b3:12:4b:cd:0d:18:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c16bb527a52859e0f69b88d2fedede1bde9ff2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:81:ca:dc:df:48:09:34:6a:cb:ad:6d:d8:78:
c8:cd:41:50:04:06:03:30:a7:3e:90:2e:cc:27:35:
a1:3f:27:53:7c:f3:8b:5d:81:21:b0:e6:76:41:3d:
85:37:b0:da:c7:95:33:19:9d:97:ee:ba:17:81:d9:
de:af:59:3a:d0:85:3e:52:87:c3:a3:9e:34:ce:57:
b5:05:9a:1a:29:f2:9c:9c:ac:25:b7:00:ff:b0:44:
a1:7d:71:fd:0d:39:7a:b8:dd:88:d5:f1:75:9a:ca:
f9:df:07:d3:9e:25:bf:22:47:1c:c3:1c:56:cc:96:
cb:f9:57:d3:9d:fa:79:0c:da:aa:1d:3d:0d:ae:4e:
e5:30:bf:a4:c7:ab:68:27:a3:de:b5:2e:e8:4f:6f:
1a:23:4b:4d:84:df:22:d8:57:46:70:62:60:9c:66:
92:7d:bb:91:c2:44:8d:c0:5a:fe:1e:42:24:b3:59:
b4:92:85:44:94:34:62:61:a6:f7:ad:d0:5b:06:02:
d2:28:6a:44:e4:8c:23:ca:57:f9:b6:d7:50:fa:d8:
9a:a6:4b:bd:8e:a9:b6:e4:5e:28:f3:6a:88:31:ab:
c2:44:89:e6:20:32:a9:ed:fd:61:2d:a1:e7:c4:0d:
1b:2e:ce:b4:b5:cd:fd:30:f4:c7:28:47:77:36:6c:
5c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/DBa7UnpShZ4PabiNL-3t4b3p_y0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.95.0/24
IPv6:
2a12:5480::/29
Signature Algorithm: sha256WithRSAEncryption
a8:ec:a2:18:3e:5d:65:75:07:99:07:50:69:53:e6:da:0c:c9:
cc:aa:24:b1:ae:3c:bb:21:1f:4c:e2:5e:28:87:95:44:c8:f0:
69:ef:e2:ba:ed:bc:91:a2:a6:f0:8d:36:9b:d3:4b:5e:2d:a9:
ec:fc:9b:c8:b3:8d:78:5a:d7:28:df:10:b1:fa:a1:f0:b2:6e:
0e:42:a5:dd:01:d2:4b:42:c7:76:b8:6c:ac:01:55:69:1a:2a:
b5:0f:13:64:9f:6a:bb:c3:71:af:6b:23:63:cc:46:d6:cb:90:
5f:6a:b3:32:d0:53:3a:ed:f3:ab:f6:c1:ae:14:62:4f:82:b4:
cc:90:5a:2f:fa:78:57:94:23:a5:45:a8:b2:3d:aa:cc:6b:71:
78:46:e3:d1:59:e3:55:ea:53:eb:01:40:cc:11:09:1e:9f:02:
22:be:a2:fe:97:3d:c7:02:7d:57:3f:01:a8:47:11:d6:cb:48:
98:d5:1d:b1:79:39:a8:0b:37:99:a3:12:0a:92:4d:ef:3f:bc:
25:5e:68:ed:ca:80:04:ac:71:74:46:72:3d:05:30:64:d7:ca:
08:3a:f9:c0:93:b1:ca:13:34:71:72:ea:fc:1b:ed:0e:8f:7a:
80:9b:34:82:ed:f6:cc:db:7d:83:7b:7b:4a:9b:72:e7:74:5d:
ef:d3:d3:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 21 15:31:10 2024 by rpki-client on console-fra.rpki-client.org