Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Q7AQW8y55gkxIHZzVKi4STy-TNY.cer
File: Q7AQW8y55gkxIHZzVKi4STy-TNY.cer (raw, json)
Hash identifier: usjvy74g8Mm7nkhLdNGleb0wX5Psfl7QJP14YoaX1rk=
Subject key identifier: 43:B0:10:5B:CC:B9:E6:09:31:20:76:73:54:A8:B8:49:3C:BE:4C:D6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018C677B1BD483973C5518A9292E5F51970A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/Q7AQW8y55gkxIHZzVKi4STy-TNY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 14 Dec 2023 08:39:30 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 2a01:5e00::/29
Validation: Failed, certificate revoked on Thu 14 Dec 2023 08:54:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:7b:1b:d4:83:97:3c:55:18:a9:29:2e:5f:51:97:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Dec 14 08:39:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43b0105bccb9e6093120767354a8b8493cbe4cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:72:bb:10:cb:98:df:f5:8a:0e:eb:38:6d:8a:
f1:0b:23:b7:9d:2c:f7:d9:4d:50:c7:7e:a5:18:3d:
05:44:be:36:78:f5:75:a4:1a:7a:0c:f8:32:9f:05:
c4:c3:09:1d:f9:e0:61:67:1c:60:1e:99:a4:87:f2:
0c:bc:c7:71:8d:6e:98:7a:a0:0c:2c:e3:3b:45:a9:
5f:51:41:0f:2e:03:b4:e7:8f:c5:48:ea:0d:75:26:
15:2f:3b:d9:c2:c4:15:a5:e5:a7:07:89:05:e6:ba:
8f:ae:c6:66:1d:4a:1b:7c:9e:4e:f3:fe:64:83:b5:
13:0c:1f:2f:58:10:32:eb:13:82:31:a5:ae:d1:01:
ad:f3:44:0e:4b:5e:f3:55:09:2f:e9:03:b6:ee:5e:
62:40:c1:df:36:06:33:3e:97:d0:f6:1d:0e:b6:97:
69:2e:9b:0b:9c:dc:37:3e:1f:c8:c5:27:e2:2c:82:
39:e5:81:48:e4:5b:27:32:9b:e9:f8:9e:46:6a:67:
f2:a6:a3:8a:68:a2:eb:eb:c9:1f:80:3f:05:80:0e:
45:a9:14:12:f2:fc:63:3a:be:7e:fe:4b:fe:ba:fd:
e6:66:6f:61:28:e3:00:05:4a:db:8f:7f:04:87:73:
53:d7:90:4e:08:6d:04:1f:2c:e0:3c:1d:4d:79:65:
56:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B0:10:5B:CC:B9:E6:09:31:20:76:73:54:A8:B8:49:3C:BE:4C:D6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/Q7AQW8y55gkxIHZzVKi4STy-TNY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:5e00::/29
Signature Algorithm: sha256WithRSAEncryption
a7:5d:52:5a:9e:74:1d:4d:69:cd:be:91:07:86:d5:90:4f:05:
de:f8:50:8e:dd:e6:68:20:a1:bb:cb:12:c9:be:a8:5b:9a:8c:
66:2d:37:77:08:08:0a:48:30:b0:1a:ed:66:30:2c:51:0f:02:
78:01:1c:51:ae:f6:50:e7:d2:1e:4c:34:1e:31:c9:8f:ae:9c:
fb:68:79:b9:e9:7a:a2:58:b7:1d:fd:5a:6a:eb:17:0e:46:b1:
c4:51:44:a2:4e:b9:e5:93:aa:e1:0c:8f:91:be:f1:a5:f9:de:
7e:d5:cc:38:f8:03:f3:5d:99:3b:c0:cb:eb:72:07:c5:b9:23:
5a:a2:6e:f4:e6:8d:3d:28:93:8d:71:cc:fb:84:39:93:d3:65:
bb:09:e6:b7:21:a0:ae:d4:8f:8b:ff:f0:97:3c:8d:ce:30:d8:
87:57:7b:6b:b6:4c:01:fb:a2:34:8d:00:4f:7f:a9:f0:ec:83:
3a:6e:1d:e4:0d:7e:de:9d:2a:5d:97:54:53:fc:82:52:67:75:
a6:c2:31:42:b2:b9:51:19:d7:88:cd:e9:b5:8a:a1:21:e9:5c:
3f:91:ba:06:ff:16:a4:07:1b:2a:04:6c:9b:86:b1:09:bf:58:
a3:25:6d:8d:24:c9:16:64:f6:6b:e2:a1:4d:95:31:0a:d7:4c:
19:ab:0a:70
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAYxnexvUg5c8VRipKS5fUZcKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMxMjE0MDgzOTMwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0M2IwMTA1YmNjYjllNjA5MzEyMDc2NzM1NGE4Yjg0OTNjYmU0Y2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXK7EMuY3/WKDus4bYrxCyO3nSz3
2U1Qx36lGD0FRL42ePV1pBp6DPgynwXEwwkd+eBhZxxgHpmkh/IMvMdxjW6YeqAM
LOM7RalfUUEPLgO054/FSOoNdSYVLzvZwsQVpeWnB4kF5rqPrsZmHUobfJ5O8/5k
g7UTDB8vWBAy6xOCMaWu0QGt80QOS17zVQkv6QO27l5iQMHfNgYzPpfQ9h0Otpdp
LpsLnNw3Ph/IxSfiLII55YFI5FsnMpvp+J5GamfypqOKaKLr68kfgD8FgA5FqRQS
8vxjOr5+/kv+uv3mZm9hKOMABUrbj38Eh3NT15BOCG0EHyzgPB1NeWVW8wIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFEOwEFvMueYJMSB2c1SouEk8vkzWMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRhL2Y3NWM2
NS04ODVlLTQxN2QtODA3Ni1iZjdkOGZjYTQ2ZTEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEvZjc1YzY1
LTg4NWUtNDE3ZC04MDc2LWJmN2Q4ZmNhNDZlMS8xL1E3QVFXOHk1NWdreElIWnpW
S2k0U1R5LVROWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUF
BwEHAQH/BBEwDzANBAIAAjAHAwUDKgFeADANBgkqhkiG9w0BAQsFAAOCAQEAp11S
Wp50HU1pzb6RB4bVkE8F3vhQjt3maCChu8sSyb6oW5qMZi03dwgICkgwsBrtZjAs
UQ8CeAEcUa72UOfSHkw0HjHJj66c+2h5uel6oli3Hf1aausXDkaxxFFEok655ZOq
4QyPkb7xpfneftXMOPgD812ZO8DL63IHxbkjWqJu9OaNPSiTjXHM+4Q5k9Nluwnm
tyGgrtSPi//wlzyNzjDYh1d7a7ZMAfuiNI0AT3+p8OyDOm4d5A1+3p0qXZdUU/yC
Umd1psIxQrK5URnXiM3ptYqhIelcP5G6Bv8WpAcbKgRsm4axCb9YoyVtjSTJFmT2
a+KhTZUxCtdMGasKcA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:10 2024 by rpki-client on console-fra.rpki-client.org