Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KPtZHsME-u2cItoULVJELN1kLiY.cer
File: KPtZHsME-u2cItoULVJELN1kLiY.cer (raw, json)
Hash identifier: tben05gdgiCOg192ZpaoBpdQ51C38YNOGTBOPvI2lKQ=
Subject key identifier: 28:FB:59:1E:C3:04:FA:ED:9C:22:DA:14:2D:52:44:2C:DD:64:2E:26
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018570FB05B8E752A37FBFFF4441B4781528
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/KPtZHsME-u2cItoULVJELN1kLiY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 05:36:17 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 49446
IP: 91.213.2.0/24
Validation: Failed, certificate revoked on Wed 14 Jun 2023 09:34:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:05:b8:e7:52:a3:7f:bf:ff:44:41:b4:78:15:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:36:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28fb591ec304faed9c22da142d52442cdd642e26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a2:ec:3d:dc:0f:2a:9e:f0:1e:67:ea:5f:f2:
50:9d:c0:3d:72:b9:4a:5e:e4:c1:4c:61:24:fb:bd:
7d:af:f0:15:f0:68:b5:87:2c:41:41:b4:85:59:0e:
15:95:b7:56:af:3f:7a:13:81:b8:b4:09:32:7f:f8:
c8:b8:79:69:d0:06:45:f0:ef:00:68:a3:74:5e:62:
cb:c7:3f:d4:ea:fd:02:67:8d:e6:35:fa:2a:99:6b:
fd:f1:dc:71:3d:ee:95:3b:32:e1:d8:a7:af:8d:cf:
49:b6:1f:81:80:be:12:67:e3:a8:d6:97:7f:19:5d:
db:10:80:b2:2c:d7:33:b0:02:64:2b:a4:7b:a7:a6:
c5:20:43:a8:57:7a:fe:4c:3c:04:b4:60:c4:8d:ad:
32:6c:e4:80:0d:11:6c:7b:9d:f9:75:15:66:d3:0f:
be:28:98:56:e1:dd:3c:1a:83:a2:15:e5:4b:3a:4b:
44:80:32:0e:4a:6b:e8:1c:10:7b:b8:fc:f5:83:e9:
57:fb:82:fc:1b:a7:9c:8a:4a:1b:bc:31:b6:9c:9c:
21:02:17:1c:2c:f0:23:1d:4e:81:bb:3b:2e:34:73:
16:fd:77:c4:23:13:b6:7d:49:62:c2:57:f1:5c:4d:
62:1e:81:7c:7d:c8:04:88:f7:6b:11:5a:df:ec:f1:
19:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FB:59:1E:C3:04:FA:ED:9C:22:DA:14:2D:52:44:2C:DD:64:2E:26
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/59ed36-ca8c-4dfb-aa42-0d055d36a2e0/1/KPtZHsME-u2cItoULVJELN1kLiY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.2.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49446
Signature Algorithm: sha256WithRSAEncryption
33:a5:a8:aa:35:86:b7:de:fa:5a:b5:49:bd:cf:39:e4:e8:98:
62:e1:70:5f:89:03:e8:c7:8e:55:5d:30:66:cd:ac:72:a2:37:
77:80:64:f2:67:17:14:74:37:38:c2:66:bf:e2:43:0e:b5:4c:
eb:d7:4a:e3:de:dd:49:73:bb:54:11:06:ff:53:55:5d:7e:e0:
ef:85:d1:10:d7:fa:c8:e1:42:1d:31:78:30:fe:5e:4b:a4:55:
73:90:5c:6e:18:e5:bc:41:cd:60:7c:c9:2f:79:84:a9:0c:89:
65:52:49:5c:18:95:3e:01:71:4b:a2:1c:bc:16:a8:75:ce:3a:
83:0e:79:e0:ef:48:f7:a9:f2:b8:5b:8a:be:0a:b9:3b:ee:25:
1a:34:21:c0:72:d0:b9:da:01:35:72:0c:46:ab:64:41:71:74:
42:09:58:87:df:6b:49:c7:69:52:84:a5:50:4e:9d:c0:dc:c9:
44:d0:cf:0a:bc:52:9b:38:71:c2:b6:f3:37:b4:cb:21:a5:46:
9a:ec:35:84:07:a6:29:6c:bf:52:3d:53:1c:d9:3f:2f:b0:01:
e6:82:a4:a0:d2:b8:d0:fe:76:81:bb:82:05:a2:a0:84:c1:45:
ae:16:33:26:1b:77:c5:a2:1a:a7:f3:9d:d3:b8:e7:68:61:cf:
f6:15:f9:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:30:17 2024 by rpki-client on console-ams.rpki-client.org