Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/TNATOOThFL1YJNQYQNG9zotFKlA.cer
File: TNATOOThFL1YJNQYQNG9zotFKlA.cer (raw, json)
Hash identifier: i5fWC1vGn/8wY7urQqabOJbKSU5hiunyJEKuwB0BTSk=
Subject key identifier: 4C:D0:13:38:E4:E1:14:BD:58:24:D4:18:40:D1:BD:CE:8B:45:2A:50
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7259C6C0FFA3DC753422606AE4ECAFB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/03571b7c-de3c-4f1b-9f7a-784a035be109/0/4CD01338E4E114BD5824D41840D1BDCE8B452A50.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/03571b7c-de3c-4f1b-9f7a-784a035be109/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:29:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215978
Validation: Failed, certificate revoked on Tue 02 Jan 2024 20:14:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:9c:6c:0f:fa:3d:c7:53:42:26:06:ae:4e:ca:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4cd01338e4e114bd5824d41840d1bdce8b452a50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d5:77:4d:4f:5f:ba:ba:dd:38:8a:d7:75:fb:
d3:2c:8c:da:4c:8b:08:d7:6b:de:26:b9:63:12:8d:
ff:da:44:06:67:84:9e:ff:41:94:79:bc:a4:25:6a:
78:ea:a0:c3:6f:6a:9c:0e:7e:d2:8e:ec:d2:08:ba:
21:f4:5a:f3:f4:60:ec:60:3e:e2:68:5b:98:83:7c:
cb:ab:92:b0:16:3c:89:a1:e5:cf:e0:87:fc:26:18:
a9:db:d4:cb:82:4d:90:37:fa:9c:d5:b1:67:7f:7f:
e7:35:8f:62:fc:60:2a:70:14:cf:75:f6:45:ea:37:
c6:12:34:21:48:46:fb:23:dc:55:e5:b8:ed:1e:3f:
32:9c:ed:0d:d2:ad:fb:fb:23:70:c9:6c:6d:85:e7:
73:f6:e6:fd:35:78:e1:0e:41:03:2e:9c:d8:6f:78:
bb:a6:3b:a6:e0:9a:7d:14:71:d7:c0:71:e7:9d:82:
bf:ad:f1:3e:2c:81:f8:8e:d6:59:c6:2a:29:35:4d:
0e:2b:bb:c8:76:34:c8:28:09:bb:eb:fc:bb:21:d6:
f1:19:f5:f6:fd:bf:79:93:28:0b:19:19:f6:a0:b9:
24:11:49:14:89:97:3b:e0:85:9e:d5:9a:0d:37:a9:
4b:b6:06:8d:26:80:53:9f:70:16:ed:46:df:d2:b4:
db:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D0:13:38:E4:E1:14:BD:58:24:D4:18:40:D1:BD:CE:8B:45:2A:50
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/03571b7c-de3c-4f1b-9f7a-784a035be109/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/03571b7c-de3c-4f1b-9f7a-784a035be109/0/4CD01338E4E114BD5824D41840D1BDCE8B452A50.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215978
Signature Algorithm: sha256WithRSAEncryption
44:a8:4d:50:34:89:8d:24:42:77:7e:f2:4b:6d:a8:5d:97:7a:
e2:ed:99:95:ca:c5:fa:33:fe:df:13:ae:c9:ef:7d:29:43:78:
70:c8:75:41:76:44:ac:a3:a5:2a:6a:3d:cd:04:33:e6:11:5f:
b4:27:36:8f:ef:ff:be:5f:5e:24:aa:21:7f:bb:63:ae:fb:76:
9d:36:da:71:00:6a:ad:db:a1:d7:33:31:80:d4:47:50:b9:2c:
3e:b8:98:c9:50:3c:14:b6:6e:c7:2d:d2:2c:8b:3b:3d:ad:5c:
24:71:6a:7e:a0:a8:3c:4d:87:c2:f3:ad:35:74:08:af:26:85:
90:48:c4:d5:57:9d:81:02:84:1d:62:a2:5b:f5:82:65:47:21:
e4:15:13:09:56:8a:47:3c:f6:bb:1d:20:8e:1b:35:18:81:d7:
c1:e6:8f:7c:74:83:c1:d3:e6:a2:2e:0f:3a:36:e1:84:c3:96:
5f:1b:26:b8:4a:bf:e3:ff:a0:af:29:6d:35:35:f4:eb:a0:67:
38:1b:ab:75:48:e5:bc:b5:9c:b6:9f:22:50:9b:83:28:01:9e:
67:08:a2:a2:8d:f6:bf:de:96:b0:32:63:de:57:e7:f9:9f:56:
b6:e4:f6:93:c1:af:de:51:dd:63:17:ca:4b:4e:f2:0e:0a:2e:
fb:49:33:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:33:11 2024 by rpki-client on console-ams.rpki-client.org