Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KosgkxjOD0ecTtrbtjyTWyjbshs.cer
File: KosgkxjOD0ecTtrbtjyTWyjbshs.cer (raw, json)
Hash identifier: MdQJKjsZh71esQ38n75TOsyIYPHADP5qXgYJeR2MMWk=
Subject key identifier: 2A:8B:20:93:18:CE:0F:47:9C:4E:DA:DB:B6:3C:93:5B:28:DB:B2:1B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856EFBE8185345E0EC69602253F79295BD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/dc/b23fe7-3028-434f-a2eb-b629b7a00128/1/KosgkxjOD0ecTtrbtjyTWyjbshs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/dc/b23fe7-3028-434f-a2eb-b629b7a00128/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 20:18:00 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 109.205.188.0/24
IP: 2a12:7e00::/29
Validation: Failed, certificate revoked on Fri 17 Nov 2023 10:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:fb:e8:18:53:45:e0:ec:69:60:22:53:f7:92:95:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:18:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a8b209318ce0f479c4edadbb63c935b28dbb21b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7f:aa:db:fb:59:ad:ff:8e:6d:9f:85:ef:03:
c8:f0:58:78:12:75:7b:53:70:b2:5b:e3:50:53:58:
ca:3b:0d:d2:22:a3:ba:a5:70:9e:00:62:05:ed:bc:
10:2d:e4:da:03:88:7f:94:1f:71:7b:e1:bf:e8:6d:
01:6e:69:7f:62:ae:75:3c:24:2f:59:03:92:7c:c4:
d3:62:cf:e9:e7:69:f0:7b:a0:0c:00:d1:31:4a:06:
fc:9d:7e:2c:55:65:22:8b:2e:cc:de:57:38:23:3e:
7f:76:ad:55:22:e1:ee:3f:65:5e:85:1c:d3:c3:e0:
c1:92:34:e2:ea:67:16:d5:60:96:8e:cd:4f:ce:02:
23:0f:2a:b3:4b:ca:57:dc:e1:3d:87:f2:43:8c:82:
2c:f5:ab:f2:bd:7c:1f:06:ab:b4:8c:ba:53:ad:e3:
11:82:16:14:e2:db:64:fa:89:0e:71:10:df:38:40:
95:ad:fa:27:e0:86:2a:ac:73:34:c7:a2:b6:ee:dc:
f8:5a:3f:d2:0c:f1:97:7d:df:93:6f:34:31:b6:81:
20:d4:ce:0f:c0:db:11:5c:37:78:7c:a7:0e:ac:b1:
f5:f7:66:3d:5b:f1:bb:38:56:29:29:ed:e2:28:93:
97:c4:eb:c6:4d:d1:71:15:54:47:d3:12:b6:0b:bd:
3b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:8B:20:93:18:CE:0F:47:9C:4E:DA:DB:B6:3C:93:5B:28:DB:B2:1B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b23fe7-3028-434f-a2eb-b629b7a00128/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b23fe7-3028-434f-a2eb-b629b7a00128/1/KosgkxjOD0ecTtrbtjyTWyjbshs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.188.0/24
IPv6:
2a12:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
9a:66:21:02:7a:74:13:bd:a6:e6:3d:3d:64:a6:dd:98:d6:3b:
e4:11:42:be:ff:88:25:14:7c:84:43:ab:78:d1:80:f1:d6:be:
56:e0:09:72:00:1d:e7:c2:40:76:a5:6b:71:ab:49:9d:02:79:
85:78:04:49:d5:4f:11:a3:b5:79:aa:1d:0b:51:cb:33:7d:23:
c9:08:20:c4:16:cd:c2:63:2f:79:a9:8d:ef:cb:63:c5:7a:19:
c4:5d:4c:f1:27:4c:fb:4a:60:43:a0:5e:80:5d:a0:b9:3e:7e:
e9:d2:3f:a2:59:52:ac:cb:5d:a0:7e:8f:66:6b:77:07:f2:20:
d0:ec:8d:d3:4d:20:0c:f1:b6:13:f0:60:ba:34:82:2c:2b:48:
28:47:30:fa:37:f6:5a:66:ef:5a:fa:b4:9c:71:33:72:98:d9:
a8:aa:2a:a0:f6:b7:11:e1:a1:e7:26:7b:2b:91:a4:38:1f:c8:
9d:3c:e3:6c:06:a8:fd:8c:3c:bf:05:d8:42:7b:9a:e5:28:b8:
95:7c:bb:99:51:c8:7f:19:e3:94:a9:25:76:3b:df:19:06:39:
00:59:61:79:20:e2:aa:96:54:e8:7c:fa:86:a9:cb:05:10:ac:
15:1d:96:52:df:28:c9:49:47:88:02:bb:e0:a1:a3:2b:f1:2e:
aa:e8:f6:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:30:25 2024 by rpki-client on console-ams.rpki-client.org