Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PoZ9idbAnQhBNkhTMo3YAw37sP0.cer
File: PoZ9idbAnQhBNkhTMo3YAw37sP0.cer (raw, json)
Hash identifier: 6MMsrgM+eeV4prTMo4XEElykvfHoiy5MKG6R2GkyFf4=
Subject key identifier: 3E:86:7D:89:D6:C0:9D:08:41:36:48:53:32:8D:D8:03:0D:FB:B0:FD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01875FC158C2BC35045CA707C2952D77B7E2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.co/repo/HYSP/14/3E867D89D6C09D0841364853328DD8030DFBB0FD.mft
caRepository: rsync://rpki.co/repo/HYSP/14
Notify URL: https://rpki.co/rrdp/notification.xml
Certificate not before: Sat 08 Apr 2023 07:25:19 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 51818
AS: 59486
IP: 185.0.19.0/24
IP: 2001:7f8:2::/48
IP: 2a13:c000::/29
Validation: Failed, certificate revoked on Sat 08 Apr 2023 09:09:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:5f:c1:58:c2:bc:35:04:5c:a7:07:c2:95:2d:77:b7:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 8 07:25:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e867d89d6c09d0841364853328dd8030dfbb0fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:28:7f:32:ec:b2:27:ef:5d:d0:24:46:ce:5c:
5b:d7:8d:ff:c6:7f:00:f0:9f:66:dc:80:25:ad:50:
1e:13:6b:3d:67:df:69:80:04:95:01:2a:28:80:e0:
15:6f:2a:a8:cc:2d:64:28:ae:cd:c1:c9:c2:e7:49:
a8:26:70:3d:6b:a6:92:2d:f5:94:1e:5a:d4:1c:c3:
b9:86:4d:e1:05:05:0f:fa:db:f7:54:1f:d3:53:13:
f9:db:a9:87:e5:f7:4b:28:4e:ea:8e:90:06:02:3f:
33:75:b9:b6:a5:74:bb:31:fe:ad:d7:b2:d5:0f:4f:
84:5e:50:4c:b2:95:e7:24:d8:1d:ca:74:21:49:30:
a9:aa:4d:f4:a1:0c:8a:37:38:a0:a9:32:d1:aa:66:
05:4b:89:85:85:2c:45:d3:f7:b5:6c:3d:87:08:b4:
42:65:43:a3:f4:fc:9f:14:fd:77:fd:81:ef:90:8a:
51:bd:1a:dd:03:8c:f5:9a:28:e1:3c:c6:de:91:8e:
1b:18:ef:eb:a3:03:94:d3:35:f0:7d:47:f9:cf:96:
0c:c4:e5:48:1c:26:24:2c:5c:0f:24:ae:69:56:07:
c7:59:1a:8b:00:4f:b6:1c:01:7e:c7:6c:24:5a:7b:
d4:e9:f2:50:c0:50:92:c7:be:23:64:62:3d:67:94:
27:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:86:7D:89:D6:C0:9D:08:41:36:48:53:32:8D:D8:03:0D:FB:B0:FD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.co/repo/HYSP/14
RPKI Manifest - URI:rsync://rpki.co/repo/HYSP/14/3E867D89D6C09D0841364853328DD8030DFBB0FD.mft
RPKI Notify - URI:https://rpki.co/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.0.19.0/24
IPv6:
2001:7f8:2::/48
2a13:c000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51818
59486
Signature Algorithm: sha256WithRSAEncryption
ac:ad:39:27:8f:c8:42:13:84:05:39:80:fb:21:f3:aa:0c:1a:
f1:c4:c5:90:e3:e9:a5:94:b8:13:03:53:5a:ec:63:a6:9f:c5:
38:5c:e0:aa:53:d0:00:a7:ba:47:80:ca:00:6b:1e:bb:5b:ba:
e6:bd:b1:56:36:2d:b9:75:2f:a9:6d:11:f1:b5:f3:02:20:78:
0d:0d:a4:2e:8e:82:99:b8:fb:6f:7a:c6:a9:1b:18:17:b0:0d:
f7:52:b2:68:5c:4a:26:07:b0:d6:7a:59:ae:44:42:81:da:5d:
f2:34:14:18:01:7f:01:15:8c:83:e9:a9:b3:86:f5:7e:9c:47:
cf:be:e2:52:24:7e:96:54:4b:f9:fc:66:05:b1:53:31:27:8a:
a7:3e:fd:f2:2c:03:4a:77:10:de:79:16:53:c1:c9:db:90:35:
21:06:7e:03:2b:4e:d0:11:96:40:c6:50:90:2c:96:ab:bf:0e:
69:ea:65:6c:1c:35:b7:83:87:18:c3:88:50:32:aa:19:8a:fa:
03:79:17:8f:5c:9d:e8:8b:b2:75:2b:7d:65:13:1f:d6:36:70:
4b:4c:84:b4:58:29:45:7b:3b:a7:69:56:54:28:bb:40:1a:1d:
46:24:40:d2:c8:22:e3:19:8c:ef:c3:6b:82:e8:5d:ac:2e:ea:
ec:57:6b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:06 2024 by rpki-client on console-fra.rpki-client.org