Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Xd3JZcPpCoIgD0r7uSmRkE0GQiw.cer
File: Xd3JZcPpCoIgD0r7uSmRkE0GQiw.cer (raw, json)
Hash identifier: 2CqOA8ovsejiwFn8K2UDD3W7ozZaMVkUIVSTuuZf57g=
Subject key identifier: 5D:DD:C9:65:C3:E9:0A:82:20:0F:4A:FB:B9:29:91:90:4D:06:42:2C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856AF5344B349D36096AA94ECEAA6D389D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/Xd3JZcPpCoIgD0r7uSmRkE0GQiw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 01:32:12 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 146.19.7.0/24
IP: 2a12:2900::/29
Validation: Failed, certificate revoked on Wed 15 Nov 2023 14:35:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6a:f5:34:4b:34:9d:36:09:6a:a9:4e:ce:aa:6d:38:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:32:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dddc965c3e90a82200f4afbb92991904d06422c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:da:13:26:16:2a:82:e1:7d:62:5c:01:6e:78:
c7:5d:a8:91:e3:c1:df:e1:14:85:ee:63:03:77:7b:
79:be:3f:59:f9:9d:6e:97:d4:f3:8f:be:af:f1:85:
08:f7:8e:f0:e9:14:a9:93:bb:36:6e:14:be:85:40:
5f:fd:76:64:b9:a3:5d:99:41:15:c6:97:59:1f:8b:
28:64:57:40:58:c9:25:eb:b3:cc:3c:2c:1e:eb:89:
dc:87:d1:c9:70:43:22:f3:f6:81:49:07:10:81:70:
7f:37:a3:32:f0:1e:55:0f:e4:99:0c:6f:6d:89:78:
59:2d:12:0c:97:ed:e7:3d:a4:2e:59:a3:b5:07:05:
cf:10:09:8f:3e:2d:f5:c9:26:57:3b:d4:59:35:ea:
57:b9:27:20:13:ed:73:3a:96:cb:f7:ea:9b:d9:12:
1d:e8:02:bf:bd:6b:e2:96:b6:a1:25:52:ad:a6:42:
37:15:1f:b1:9b:3a:5f:d5:41:f2:7a:aa:4f:b4:a2:
d8:7d:b1:21:9c:55:35:a2:45:0e:75:32:a3:b4:33:
72:90:03:76:b0:33:ae:82:1d:b5:e7:ee:f4:17:3c:
b9:9c:dc:c8:e3:ab:2e:ee:0a:2d:bb:8c:43:b8:1f:
36:22:21:b0:83:70:85:69:6f:0e:8f:c6:67:aa:24:
23:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DD:C9:65:C3:E9:0A:82:20:0F:4A:FB:B9:29:91:90:4D:06:42:2C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/Xd3JZcPpCoIgD0r7uSmRkE0GQiw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.7.0/24
IPv6:
2a12:2900::/29
Signature Algorithm: sha256WithRSAEncryption
80:bd:ff:37:56:1d:21:19:3c:cb:65:cd:7f:f2:9c:56:ea:52:
5c:67:f7:18:c2:e5:8b:12:35:e3:cb:30:87:42:09:d6:44:93:
3a:cc:10:48:70:96:fe:44:f5:2c:90:03:24:2d:34:36:9f:55:
29:45:60:7c:24:39:a4:6d:73:a3:6f:6c:b1:43:c3:14:36:e0:
17:6f:6f:77:b7:5e:f0:a7:13:ce:ca:14:e9:e8:82:d2:ef:ed:
aa:9a:1e:b3:75:b3:62:cd:ed:2f:a5:8c:14:01:8c:1f:b4:cd:
dc:22:72:b9:3c:dc:59:bb:13:60:d6:07:79:14:64:2a:00:bc:
6c:cc:b9:cf:23:d9:8d:b5:c9:34:dd:19:78:73:24:7f:bb:9f:
a5:1e:02:40:b8:28:d4:81:00:85:d9:7c:84:af:3d:95:0b:14:
11:bc:bb:3b:e5:4d:36:47:74:12:87:b8:58:81:87:56:c5:da:
d4:be:55:eb:52:ad:8c:66:b4:17:2b:90:8b:ac:a1:ea:c6:d7:
46:fc:25:e1:5e:dc:c2:04:a3:17:e9:80:e5:0e:04:3e:07:9e:
bd:ce:33:0a:2e:9a:a7:98:c6:13:9b:a4:a2:51:2c:1b:85:c2:
61:08:3c:80:32:4f:aa:64:e5:40:76:2f:a1:64:4b:bc:af:88:
37:f1:0e:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:59 2024 by rpki-client on console-fra.rpki-client.org