Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/RBqV0RqKwO7fhV2wEHuaYo8nprQ.cer
File: RBqV0RqKwO7fhV2wEHuaYo8nprQ.cer (raw, json)
Hash identifier: deRgvRiRakSQk4+dxzxlyxWOfb/4gO+CWvZolxrKVBg=
Subject key identifier: 44:1A:95:D1:1A:8A:C0:EE:DF:85:5D:B0:10:7B:9A:62:8F:27:A6:B4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC424D4AAF88CF27C77F7286678D9BF4F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/44/ff6ef4-4be4-44be-a225-11c0037aa120/1/RBqV0RqKwO7fhV2wEHuaYo8nprQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/44/ff6ef4-4be4-44be-a225-11c0037aa120/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:29:57 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204588
IP: 185.240.40.0/22
Validation: Failed, certificate revoked on Tue 30 Apr 2024 13:24:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:d4:aa:f8:8c:f2:7c:77:f7:28:66:78:d9:bf:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=441a95d11a8ac0eedf855db0107b9a628f27a6b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:23:c6:d7:54:cf:bd:63:14:4f:67:17:9a:9a:
4c:ea:83:f5:df:25:5c:61:44:3d:9f:ba:e0:6e:52:
42:09:92:c9:cf:5c:0c:2b:16:8f:c4:ef:32:32:34:
29:bd:ac:ff:b6:20:6b:25:88:78:26:9d:07:58:ad:
04:58:20:a3:fe:5d:6b:ca:33:88:26:fa:3c:db:5a:
15:12:a9:05:e0:5a:a4:32:cc:d7:32:af:35:82:e1:
e5:bd:84:0e:6b:9c:4d:95:78:02:40:9f:bb:4c:43:
7e:7b:bd:c4:a0:ac:d1:ef:11:f5:5e:f5:46:d1:3d:
14:5a:00:5f:e6:10:0b:1d:b5:ad:70:c7:a1:60:0c:
92:1d:cd:e1:fd:23:72:9b:9b:a8:27:a3:22:9a:55:
de:f3:50:2f:1e:5b:ff:7f:ea:8f:e3:55:90:89:e7:
6e:bf:4f:ec:83:38:8e:1c:10:be:eb:fe:1b:41:26:
09:21:6c:6c:2c:ae:ec:7e:a3:7f:e5:da:b9:0c:35:
c1:94:47:b2:d9:2a:05:c2:c7:17:ef:0d:32:2a:d7:
91:e1:11:7a:17:57:26:8b:c1:2d:04:6f:40:79:fc:
ed:a8:0a:6e:22:9a:4d:82:b5:92:00:d4:0b:b6:e1:
0a:4d:3b:52:1d:da:e1:62:20:6b:9e:79:e3:ef:fa:
14:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:1A:95:D1:1A:8A:C0:EE:DF:85:5D:B0:10:7B:9A:62:8F:27:A6:B4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ff6ef4-4be4-44be-a225-11c0037aa120/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ff6ef4-4be4-44be-a225-11c0037aa120/1/RBqV0RqKwO7fhV2wEHuaYo8nprQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.40.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204588
Signature Algorithm: sha256WithRSAEncryption
1b:d5:48:d6:b9:74:07:a2:a4:6a:68:ad:e9:c9:7e:a1:01:44:
85:53:4c:1c:ec:4f:2f:4d:b7:6a:9e:ec:01:02:6f:6b:0e:83:
26:15:77:34:93:f6:44:c0:d8:19:70:de:57:d7:75:f3:55:80:
3a:94:2e:7e:99:0e:f9:81:72:51:dd:5f:fb:13:4a:8c:17:42:
d2:5f:9e:1c:31:f8:c4:da:fe:07:9f:ea:c9:97:60:82:ab:d2:
5b:5f:66:d9:d4:dc:8d:06:e2:f0:4a:43:fa:0a:c9:73:1f:1a:
70:cc:f7:1b:10:da:f2:49:59:4a:60:e1:1c:2e:ee:a1:48:d5:
77:d2:08:87:84:41:5c:87:61:d6:2f:3f:ff:f0:c4:b1:1b:c0:
74:69:16:74:75:62:57:6b:66:23:86:b6:df:c9:31:bf:5d:de:
e3:30:5d:35:48:f4:ec:6e:3e:76:a2:3c:4e:54:d7:72:42:7c:
86:05:65:bf:d6:56:74:0d:02:a9:a2:87:ca:76:a9:1d:16:d4:
e3:dd:bc:86:1b:0f:7a:fd:ac:79:00:d3:6a:d1:ea:bb:26:84:
17:a3:ff:b9:51:4b:ec:03:2a:d9:5f:d1:36:e5:53:77:e5:06:
5c:a4:60:c3:74:3a:b4:78:16:ed:30:33:4b:79:aa:a0:76:67:
bb:0f:b5:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 18:14:24 2024 by rpki-client on console-fra.rpki-client.org