Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QDNH0I-ia2WDZN0AahgbPEmsSHs.cer
File: QDNH0I-ia2WDZN0AahgbPEmsSHs.cer (raw, json)
Hash identifier: i6QbIQtDEd63eggkIZUswuxFzkB+6JrQ2hN3rCV+BYU=
Subject key identifier: 40:33:47:D0:8F:A2:6B:65:83:64:DD:00:6A:18:1B:3C:49:AC:48:7B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01896474E0FF59AE78C0CF239427DF5E3792
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/567679-ccf1-4831-a935-ac3383eaa60f/1/QDNH0I-ia2WDZN0AahgbPEmsSHs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/567679-ccf1-4831-a935-ac3383eaa60f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 17 Jul 2023 15:25:28 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 89.248.68.0/24
IP: 2a11:6080::/29
Validation: Failed, certificate revoked on Wed 23 Aug 2023 07:26:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:74:e0:ff:59:ae:78:c0:cf:23:94:27:df:5e:37:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 17 15:25:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=403347d08fa26b658364dd006a181b3c49ac487b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:20:55:d9:d4:52:32:6c:e5:5f:8f:25:5e:5e:
a8:71:10:18:31:68:39:23:8e:98:84:8c:30:8f:b1:
8c:bb:65:1a:84:c2:9e:f4:89:ec:17:16:4b:d8:09:
df:33:90:f2:c1:3e:cf:05:8b:10:ee:b3:b5:4d:e7:
7a:79:a5:5f:fd:81:1b:f9:1d:8c:2b:6d:30:2d:58:
d9:7c:ae:00:34:28:b7:3d:10:18:75:01:c0:56:ae:
c5:f1:db:db:b0:99:5f:8c:12:9d:11:7a:8f:23:be:
b4:3b:35:ad:f4:6b:a5:a9:67:11:3f:a3:cb:b4:8c:
b2:a3:0d:7a:a5:fe:7e:73:74:c4:59:50:ad:e4:f4:
07:91:9a:31:30:ca:71:70:a8:dc:97:1e:3f:12:de:
e6:40:ef:21:48:9b:aa:b2:0f:3e:b5:a8:38:43:5f:
07:e8:3c:92:21:02:4d:f3:01:23:40:54:30:87:ce:
85:c0:eb:73:1c:d9:97:db:e5:d6:0f:5d:3a:0d:06:
ec:db:41:82:98:8f:47:b7:85:4e:e3:c9:f3:1b:b9:
4e:c4:38:e3:b8:f5:69:c8:25:67:99:b1:b2:98:6d:
46:cf:f0:e8:56:c8:fa:0f:97:8f:f2:28:33:bf:7b:
88:6e:b1:56:ee:ff:22:97:48:dc:ec:32:10:69:fe:
b9:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:33:47:D0:8F:A2:6B:65:83:64:DD:00:6A:18:1B:3C:49:AC:48:7B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/567679-ccf1-4831-a935-ac3383eaa60f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/567679-ccf1-4831-a935-ac3383eaa60f/1/QDNH0I-ia2WDZN0AahgbPEmsSHs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.248.68.0/24
IPv6:
2a11:6080::/29
Signature Algorithm: sha256WithRSAEncryption
7c:d1:93:a3:df:b7:47:97:81:bd:2d:86:c5:d2:48:98:df:36:
65:78:31:06:0b:c9:26:88:97:71:03:2c:22:8e:5a:16:f4:02:
5b:3d:2f:b7:f2:82:96:c9:9d:07:f0:61:b8:b3:ce:a8:67:d2:
bc:1d:02:cf:f0:ca:e0:09:0a:03:65:97:8d:a9:29:7c:01:c5:
46:5e:88:84:e7:4d:c2:2d:5a:de:d7:86:a2:1f:19:4f:32:5d:
ab:e9:2d:eb:da:99:0f:72:f2:ba:6a:78:04:76:db:71:ac:ba:
d0:e8:21:dd:30:6d:b5:9c:fa:7b:12:59:05:b9:78:97:c6:07:
bf:fe:34:5d:db:94:ad:3e:2f:d6:a4:2b:ed:3a:78:70:85:6c:
df:ba:ba:c0:dc:f6:8e:64:5c:44:1d:a5:0f:22:8b:1c:18:f2:
fc:51:bc:8e:cd:81:03:53:5b:1b:a5:81:0e:9c:34:42:97:11:
bb:43:44:5f:b1:d6:3e:0f:6d:3c:20:27:c0:c9:be:27:ba:bb:
ca:ec:8c:d7:34:fd:2d:5d:78:d7:bd:06:55:60:2c:81:a7:29:
c5:90:f3:0b:bd:8b:47:37:b9:61:f6:bf:4b:c1:f1:e7:30:35:
83:03:4a:d6:d0:b0:32:da:4c:bf:d0:92:cf:80:8c:42:2f:02:
5b:70:ab:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:11 2024 by rpki-client on console-fra.rpki-client.org