Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HrNSjWHyzwK6qytA0MwzJVtABvQ.cer
File: HrNSjWHyzwK6qytA0MwzJVtABvQ.cer (raw, json)
Hash identifier: QRGw5yUuoNP16KRjpd7/vm6JmUl7Z7jbEeUh4NTHhS4=
Subject key identifier: 1E:B3:52:8D:61:F2:CF:02:BA:AB:2B:40:D0:CC:33:25:5B:40:06:F4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856AF4E33A7456595C81A0E8FA892D0F8D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/HrNSjWHyzwK6qytA0MwzJVtABvQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 01:31:51 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 206613
IP: 2001:678:320::/48
Validation: Failed, certificate revoked on Wed 23 Aug 2023 14:11:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6a:f4:e3:3a:74:56:59:5c:81:a0:e8:fa:89:2d:0f:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:31:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1eb3528d61f2cf02baab2b40d0cc33255b4006f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d0:ac:bd:a2:5b:0a:19:e6:ca:69:e7:27:d3:
59:6c:77:4f:9f:0c:15:ad:1c:a1:e7:53:c1:ab:34:
b6:09:e9:33:1f:58:c9:9f:c8:fc:2d:36:99:fe:ea:
50:2a:30:f4:c8:b3:48:71:94:1f:9d:40:20:87:4d:
ca:26:84:99:0a:09:c2:71:9f:01:5f:af:e8:2f:28:
cb:85:50:f6:a1:8f:71:ee:8e:ea:ea:fe:9d:b2:10:
6c:cb:88:70:5a:2a:91:5c:25:fb:d5:06:af:bb:c9:
2e:81:6b:81:38:4d:71:cd:5c:ae:08:74:30:8d:99:
75:da:20:f5:80:62:46:f6:90:1d:58:bf:ff:26:0b:
1b:ae:cb:33:17:d2:88:09:ca:97:9e:d2:79:f1:83:
f4:d3:39:b2:f5:f7:60:77:e0:74:90:f0:3c:d1:fc:
54:c8:9c:41:79:39:fa:b4:ec:62:e2:d9:32:3d:52:
61:53:43:bc:72:69:be:56:a3:cc:fa:38:c2:81:bf:
1a:8b:64:ef:fa:19:55:20:ce:bc:15:46:c7:bb:23:
ac:d8:de:1b:36:64:2b:07:fe:35:53:16:57:d9:44:
45:6e:26:4a:24:fb:7d:6c:fc:0e:3b:fe:46:e3:b2:
c6:8d:21:72:78:c5:df:ce:7a:b6:40:52:39:aa:ce:
84:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B3:52:8D:61:F2:CF:02:BA:AB:2B:40:D0:CC:33:25:5B:40:06:F4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ed4d1-0705-43e5-a60a-be100907f106/1/HrNSjWHyzwK6qytA0MwzJVtABvQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:320::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206613
Signature Algorithm: sha256WithRSAEncryption
7f:d0:ed:62:a0:32:fb:ca:86:13:71:69:7c:59:71:ab:93:2f:
47:cd:0a:ef:0b:09:27:c0:41:06:38:35:b7:36:31:dc:d7:24:
98:25:c4:09:86:58:9c:3f:21:fd:ce:03:97:03:5e:1b:82:f2:
21:97:01:c7:19:10:e6:1e:ce:eb:92:6a:bb:d3:c5:27:21:56:
31:0a:5f:6d:4f:b6:f4:69:98:0a:cc:bc:e0:55:3c:8f:61:b8:
d6:65:14:ae:5b:8d:eb:57:71:0e:3e:9b:0e:b8:15:41:af:bd:
f2:f4:27:02:87:80:e8:25:22:9c:fe:db:96:9c:1e:71:ff:bc:
39:6b:16:0e:98:31:ad:b8:b6:b2:7a:6d:3b:72:40:a9:6d:59:
17:b7:21:ba:b5:6d:16:da:a9:2d:62:43:17:f4:43:72:f3:52:
e5:05:d4:9c:8c:23:50:eb:f3:96:19:51:8b:2c:62:ee:ff:f8:
b2:13:d9:ee:f1:e2:79:d6:f2:4c:57:45:a5:e2:22:59:7f:66:
1e:96:84:fe:a0:ca:b3:48:78:b9:e3:d9:e6:ec:b3:8d:a8:57:
1a:f0:f1:da:89:bb:8b:f1:a4:21:d2:c2:d5:97:09:0b:80:01:
71:d4:22:17:a7:58:6a:44:a7:4d:48:aa:12:2f:b6:30:9d:fe:
ec:3e:b6:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:29:26 2024 by rpki-client on console-ams.rpki-client.org