Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/TykazyCa9D3Yg9Sgofa8ibuGo7U.cer
File: TykazyCa9D3Yg9Sgofa8ibuGo7U.cer (raw, json)
Hash identifier: gQOh4JVYnAuDL6n5Q92v4HawI+itoJPutqC6Ll4WtGo=
Subject key identifier: 4F:29:1A:CF:20:9A:F4:3D:D8:83:D4:A0:A1:F6:BC:89:BB:86:A3:B5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018571D559B10C8239B2A456C07A87BEA0D5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/f84d54-564b-42e5-a929-209415b917d4/1/TykazyCa9D3Yg9Sgofa8ibuGo7U.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/f84d54-564b-42e5-a929-209415b917d4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 09:34:45 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 185.65.70.0/24
IP: 2a0c:e500::/29
Validation: Failed, certificate revoked on Tue 04 Jul 2023 10:23:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d5:59:b1:0c:82:39:b2:a4:56:c0:7a:87:be:a0:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f291acf209af43dd883d4a0a1f6bc89bb86a3b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1c:64:57:32:7f:cf:42:85:1b:3f:f6:b7:59:
18:5e:79:5e:2d:01:55:7c:14:13:0e:6b:23:4b:61:
69:83:d8:a5:94:9a:81:f8:22:f2:22:49:3d:25:23:
fd:6a:2e:c2:bc:b8:d9:22:51:9a:22:a7:0b:14:c9:
4d:d9:81:d2:76:2a:d1:6e:bb:f7:fb:6c:fe:50:1b:
10:fc:ae:30:32:01:34:96:b5:84:cc:e4:a4:19:f1:
c8:f3:21:c8:6c:54:8a:1d:32:7d:12:be:84:f7:b9:
d1:44:24:57:d5:37:22:0e:d7:ec:4a:49:02:4b:9b:
82:27:31:e5:58:97:76:78:2e:10:13:a9:5b:3f:05:
58:38:59:9f:ca:a0:54:c8:d2:71:5e:8f:4b:3a:65:
95:94:8d:5e:36:b1:e4:ec:eb:d1:f2:47:ad:ef:02:
b1:0a:c1:23:0f:9e:61:ca:a8:2d:9a:6f:1b:3b:f7:
08:01:0c:7e:00:67:9b:ed:c7:c0:cc:1b:87:7c:16:
3e:f8:49:2e:c7:76:67:25:8f:a9:d2:93:b5:6b:f7:
4b:ab:31:c9:7e:0b:ed:57:36:1c:25:0b:44:f4:40:
9b:40:54:36:16:de:c5:bc:e5:0d:a2:03:39:1f:68:
72:d3:18:2b:4f:2c:a0:23:d8:17:1f:43:2b:54:5b:
42:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:29:1A:CF:20:9A:F4:3D:D8:83:D4:A0:A1:F6:BC:89:BB:86:A3:B5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f84d54-564b-42e5-a929-209415b917d4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f84d54-564b-42e5-a929-209415b917d4/1/TykazyCa9D3Yg9Sgofa8ibuGo7U.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.70.0/24
IPv6:
2a0c:e500::/29
Signature Algorithm: sha256WithRSAEncryption
62:40:f6:77:bc:0a:ac:f9:a1:8d:84:da:12:98:e4:d5:21:58:
07:49:9b:03:51:bb:75:94:76:ff:12:a8:c2:33:21:4e:06:4f:
24:a0:b8:62:41:5f:7e:35:b6:59:ab:a7:a0:67:c9:e6:ec:9e:
6c:db:00:ce:26:13:72:44:12:8c:8d:37:aa:c3:1b:46:84:a7:
17:6c:92:12:e2:05:df:34:d3:7d:18:45:66:d6:09:99:5e:65:
42:a7:42:54:a4:7a:c2:e6:6f:0a:7c:2f:c0:53:18:49:f5:5d:
cc:1d:78:a8:87:a2:59:ac:14:77:74:02:ea:09:53:e9:07:d4:
fd:ec:26:b6:b2:02:9b:70:01:25:ac:56:30:31:6c:57:ce:46:
af:24:19:fe:f7:58:4f:04:7a:b9:da:75:d3:b8:c3:a9:b6:8d:
42:1c:0a:53:9c:47:13:32:59:3b:dc:4e:cb:fc:3d:39:b9:6e:
ea:46:71:3d:69:bb:a4:8e:9f:0f:56:01:a2:a3:ec:9d:1e:f2:
aa:d8:d8:0a:26:98:ea:e7:ac:1b:75:ab:62:93:7f:bd:95:63:
07:3e:80:64:05:1f:e0:60:bc:df:a6:b2:26:f3:cc:b0:ae:90:
aa:ef:8e:88:5e:bd:49:0b:2a:2c:64:d0:4a:4d:95:84:f3:af:
45:b4:d3:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:06 2024 by rpki-client on console-fra.rpki-client.org