Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DY-Vw4ddZrBpBCGWYGwA2flv1Ms.cer
File: DY-Vw4ddZrBpBCGWYGwA2flv1Ms.cer (raw, json)
Hash identifier: +TkFVXMvuPWX09G+1BQKq3fQ19indu8qKAe/sD0rI7A=
Subject key identifier: 0D:8F:95:C3:87:5D:66:B0:69:04:21:96:60:6C:00:D9:F9:6F:D4:CB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348F5A3AB7E4E242C9DAD61F07FF8C2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/DY-Vw4ddZrBpBCGWYGwA2flv1Ms.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 193.228.131.0/24
IP: 2a12:9180::/29
Validation: Failed, certificate revoked on Fri 09 Feb 2024 13:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:f5:a3:ab:7e:4e:24:2c:9d:ad:61:f0:7f:f8:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d8f95c3875d66b069042196606c00d9f96fd4cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:aa:5a:66:7d:3b:90:cb:12:70:11:21:6e:10:
6e:1d:02:9a:fe:26:fd:9b:ff:dd:b3:64:e3:bb:df:
73:21:d8:3c:62:46:11:cd:02:00:3c:6e:ab:36:4b:
c0:88:98:df:63:4e:eb:34:47:87:8c:4e:c7:59:bd:
1f:ba:ba:c9:88:13:8c:4c:b1:92:46:15:32:fb:e9:
28:67:40:f2:21:7c:6b:d3:8d:cf:69:4a:5d:ba:52:
14:c9:ae:a0:0f:2a:85:d7:3d:b8:06:63:2a:12:ea:
b7:11:b9:9a:f0:02:5a:70:38:45:65:2b:30:78:42:
4d:3d:c0:6a:fe:91:3f:99:62:4b:c5:0b:d5:cf:ab:
5c:25:76:43:8a:16:22:97:00:71:af:6c:bc:15:fa:
73:cf:f4:71:1a:b0:c4:ca:79:af:88:c1:e9:65:2a:
f6:89:b2:6d:e0:64:ed:df:e1:40:a2:ac:9f:e5:ed:
64:b7:fc:a2:0f:d6:ce:03:d5:16:dd:b8:b7:a9:b9:
1f:f4:13:b9:1e:61:fe:bc:f3:86:33:d5:14:78:40:
66:cb:56:04:4d:7d:ca:15:88:c9:f2:6a:f2:ca:af:
d6:7b:75:d9:95:fd:19:7f:50:53:36:2a:8a:0c:d5:
fe:dc:ab:37:99:e9:12:c8:a4:90:5e:9e:23:f8:e0:
db:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8F:95:C3:87:5D:66:B0:69:04:21:96:60:6C:00:D9:F9:6F:D4:CB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/247492-da0f-4d43-b262-d2c29f1981ff/1/DY-Vw4ddZrBpBCGWYGwA2flv1Ms.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.131.0/24
IPv6:
2a12:9180::/29
Signature Algorithm: sha256WithRSAEncryption
71:3d:39:78:dc:73:0f:76:51:a2:03:12:6a:84:eb:9b:ec:e6:
f3:21:d6:bc:c2:e1:f9:bd:eb:1c:ba:a0:36:db:59:9a:b8:79:
da:dc:b5:8e:18:52:38:11:a0:96:1b:31:30:af:2c:05:06:f6:
ff:d8:1f:ec:c5:cc:7f:bc:48:2e:9f:19:ff:b0:b1:f5:16:0b:
e9:dc:8d:0c:72:7f:22:36:94:7f:ed:e3:4d:3c:3c:54:4f:60:
91:e3:41:55:6c:d8:22:4d:62:f6:9b:28:b8:65:c3:91:bf:eb:
c7:d0:0b:75:56:b9:60:e9:e5:56:33:ec:6a:4b:2c:04:98:01:
9c:6c:6b:e7:4d:e4:50:a4:2a:d9:ba:23:d4:9a:80:bf:ee:43:
74:ab:0f:2d:03:00:46:39:4f:15:9b:1b:e2:4d:4f:25:20:fe:
41:3d:60:50:30:49:ed:90:84:94:f3:10:a5:a9:81:c1:40:ee:
32:62:55:d6:8e:46:91:3c:83:8b:13:49:c4:77:91:23:89:95:
29:27:1e:6c:71:6e:49:3e:8a:6d:32:98:5d:ba:35:cc:cb:3c:
8c:4d:29:db:cb:21:ce:88:a1:22:19:16:76:d5:f3:4e:7d:11:
ac:df:34:60:8e:8b:d1:19:a1:10:10:52:77:5f:7c:d3:09:d4:
54:8c:73:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 9 18:27:19 2024 by rpki-client on console-ams.rpki-client.org