Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HYvKKrzkvq6rqYZWFohG3wxGo_M.cer
File: HYvKKrzkvq6rqYZWFohG3wxGo_M.cer (raw, json)
Hash identifier: XFtrb+i/az/HAldqX75J/hq55h6z7YIs55EZJ5PD7Mg=
Subject key identifier: 1D:8B:CA:2A:BC:E4:BE:AE:AB:A9:86:56:16:88:46:DF:0C:46:A3:F3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018571D70AE5B5984DEB8AB2DCCB9C946B5D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a0/5176f6-bbd4-46e6-9c74-1543943aab73/1/HYvKKrzkvq6rqYZWFohG3wxGo_M.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a0/5176f6-bbd4-46e6-9c74-1543943aab73/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 09:36:36 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 89.248.64.0/24
IP: 2a11:5c80::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:0a:e5:b5:98:4d:eb:8a:b2:dc:cb:9c:94:6b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:36:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d8bca2abce4beaeaba98656168846df0c46a3f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:df:8a:5d:f6:aa:06:27:a9:83:63:ae:eb:3c:
9b:46:5e:0d:3d:da:4c:d3:e2:04:27:77:a3:5d:08:
30:b7:0f:14:f7:57:dc:21:38:dd:23:7d:57:18:aa:
20:25:4e:b7:33:c3:91:2f:45:29:5c:1b:53:b9:62:
70:0f:e2:e3:12:d6:36:c0:5d:29:2f:a6:23:6b:49:
31:8e:3e:4c:15:47:e6:c5:18:a0:84:6e:3f:d8:8b:
7e:bc:f3:95:20:ae:2a:32:cb:1d:6f:7a:1b:1e:35:
b8:c1:98:1d:5c:30:a2:15:64:8f:11:4c:94:ec:33:
95:21:d8:5e:0f:27:35:03:6e:3a:cf:68:9f:34:1b:
67:7b:2f:16:ab:90:4b:dd:ef:aa:b5:93:52:ff:3c:
f1:90:21:41:67:1b:52:b1:cf:cf:81:e8:ba:24:b4:
78:a3:32:63:1d:28:b9:bb:ff:80:5d:b9:d0:4a:86:
53:be:57:81:9b:0e:94:06:a4:f4:bd:c8:db:ef:2f:
3f:4a:44:0a:82:8d:84:c6:16:f0:1b:c8:8a:14:77:
9d:26:67:41:12:e2:d0:29:00:c1:73:b2:b3:22:e2:
3f:f7:ff:c8:db:e4:ad:c7:48:65:82:47:4c:2b:4f:
09:99:42:d9:d6:a5:04:f2:ce:08:b3:14:d1:91:c6:
73:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:8B:CA:2A:BC:E4:BE:AE:AB:A9:86:56:16:88:46:DF:0C:46:A3:F3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/5176f6-bbd4-46e6-9c74-1543943aab73/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/5176f6-bbd4-46e6-9c74-1543943aab73/1/HYvKKrzkvq6rqYZWFohG3wxGo_M.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.64.0/24
IPv6:
2a11:5c80::/29
Signature Algorithm: sha256WithRSAEncryption
29:90:7e:f7:80:3c:1d:82:47:74:0d:5a:c0:e7:24:0b:c8:d5:
03:81:62:94:62:c6:cc:6b:d1:4c:ce:39:5f:a3:65:b5:88:1b:
27:15:1b:05:f4:01:59:24:d8:7f:78:dc:d2:3c:04:9e:2c:11:
b7:63:29:7e:d2:55:7e:ad:8c:ad:c4:7e:96:1e:4a:c9:02:9f:
34:bb:81:ad:10:65:86:0f:15:1a:59:ab:55:0d:d1:23:c3:57:
5b:84:1c:ea:f3:a7:ea:32:ff:bd:5f:73:6d:03:7f:82:0e:90:
62:c0:d8:4b:27:68:49:69:f4:8e:7b:f7:9e:20:5d:9a:cb:88:
75:1a:41:04:e9:c4:e2:f3:0a:f7:02:dc:e8:f6:b2:01:6a:46:
11:9a:af:ae:45:f2:02:64:17:cc:46:1c:d3:58:b6:07:92:4b:
6c:57:dd:01:17:e0:72:07:14:e9:f6:97:a7:8b:54:c1:83:6e:
f0:36:fe:7f:d1:66:0e:20:26:db:68:5d:56:28:dd:2e:1a:f6:
6f:4e:a0:81:34:70:55:7e:eb:fa:75:3b:ac:be:c8:2c:c7:a6:
1e:0d:67:05:a1:05:d6:cb:7a:0e:68:b7:15:3b:95:ee:bf:5c:
e4:b2:39:42:f4:91:a9:7b:4a:22:4f:70:c1:43:0c:93:1b:bd:
a9:47:8b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 25 13:00:57 2023 by rpki-client on console-ams.rpki-client.org