Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Iz24mRVKmCXRsx3QWlg40nCq9PQ.cer
File: Iz24mRVKmCXRsx3QWlg40nCq9PQ.cer (raw, json)
Hash identifier: j9CVJBUtEEZRfQMqIIYGmkyz3XZjf+AK6Vi+m+oBRJI=
Subject key identifier: 23:3D:B8:99:15:4A:98:25:D1:B3:1D:D0:5A:58:38:D2:70:AA:F4:F4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856F40516D0B1CFAD052EDE7CE2C817588
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/51/7dee10-9313-4825-a1dd-8cb741aa8710/1/Iz24mRVKmCXRsx3QWlg40nCq9PQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/51/7dee10-9313-4825-a1dd-8cb741aa8710/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 21:32:44 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 185.25.104.0/24
IP: 2a0a:ca40::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:40:51:6d:0b:1c:fa:d0:52:ed:e7:ce:2c:81:75:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:32:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=233db899154a9825d1b31dd05a5838d270aaf4f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:43:45:27:7d:72:64:5a:28:f0:70:d2:9f:3d:
bb:39:68:51:2f:93:85:1f:5c:b9:23:26:d2:cc:1d:
39:e4:83:38:e8:53:ae:b4:8c:39:16:36:bb:f1:5e:
60:1c:0e:2a:d4:8f:60:19:88:04:32:3e:dc:b5:46:
9e:4e:ed:7a:67:df:34:06:13:a8:ab:3a:39:41:f4:
4d:f3:35:60:9c:8e:c0:b2:e3:7b:26:2c:8d:22:9e:
f7:11:0f:d8:62:0a:c9:c5:46:38:73:13:43:70:32:
50:3d:57:ed:20:82:00:6f:8c:f5:c2:83:33:ae:80:
48:e0:4f:27:69:c1:3a:f2:16:31:d8:71:cd:ea:23:
fb:83:58:ef:95:fd:0e:82:34:04:cb:dd:d2:f0:85:
54:bc:b5:e5:ae:0d:22:8b:6e:0f:76:75:ad:8e:bf:
6d:48:e3:cd:27:fe:89:e6:2c:ab:93:53:64:4d:b1:
3c:e0:12:bc:d8:20:3c:94:9d:ef:fe:30:83:4d:e9:
25:94:18:18:b7:23:1a:5b:cd:e8:c3:37:f3:72:26:
27:22:dd:bd:b3:5f:53:31:ad:e8:c6:e5:68:b0:fb:
01:60:b7:5a:a5:d0:0b:51:91:2d:f6:2b:24:86:ba:
ac:c2:a9:04:cb:49:17:b4:7a:48:7f:59:ac:a5:f7:
bb:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3D:B8:99:15:4A:98:25:D1:B3:1D:D0:5A:58:38:D2:70:AA:F4:F4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7dee10-9313-4825-a1dd-8cb741aa8710/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7dee10-9313-4825-a1dd-8cb741aa8710/1/Iz24mRVKmCXRsx3QWlg40nCq9PQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.104.0/24
IPv6:
2a0a:ca40::/29
Signature Algorithm: sha256WithRSAEncryption
8a:af:02:8f:62:02:e1:f6:bc:f0:1d:82:d3:3e:24:3e:b8:15:
b6:ca:d1:b9:1b:c4:e1:0a:a2:04:49:c0:d3:7c:82:f3:bb:be:
92:25:90:78:1d:1a:0c:0f:e0:ab:87:32:bb:8a:c5:6c:7d:33:
36:f5:9d:44:91:22:8b:68:21:4c:51:74:68:a1:ea:d5:0b:ec:
f1:aa:3b:95:91:f3:7d:1a:f2:ba:5f:ee:0a:81:d0:db:21:ac:
9b:f6:1a:c5:08:97:89:97:5d:9e:97:c7:e7:26:f0:12:92:a4:
d3:7b:c8:db:78:b9:3b:e6:2e:24:76:be:23:22:5d:89:75:48:
fd:0a:1e:2f:34:c0:ca:a7:1f:2d:53:c4:0a:c5:2a:9a:e0:b8:
9a:e1:bb:4a:25:aa:2f:19:bc:6e:1c:54:52:95:d5:e2:f8:42:
79:30:15:db:b7:eb:6f:d7:de:e1:b0:96:c0:6a:0c:2a:c7:f3:
58:9a:fd:15:8f:0b:5f:23:ed:25:1b:4d:9c:c4:c9:45:eb:19:
be:b2:31:66:b7:5f:02:19:22:ee:f0:66:b5:b2:2b:8f:c8:fe:
1e:c8:f2:ca:eb:44:06:a7:aa:8d:4d:9c:6b:6f:a7:d0:47:ab:
b0:ee:36:66:1d:b8:23:0e:91:7d:73:aa:b3:f3:69:5c:03:fd:
74:ec:99:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:37 2023 by rpki-client on console-fra.rpki-client.org