Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XfU2RYQ-bSiD3I-cT0FcHq279go.cer
File: XfU2RYQ-bSiD3I-cT0FcHq279go.cer (raw, json)
Hash identifier: gud8pM5edaGWIZT/bhC8fSYEVy1Nwaw5ONU6lFGK7Gk=
Subject key identifier: 5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018571D6AECBEE69000BDAE21040C80EB8AD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/XfU2RYQ-bSiD3I-cT0FcHq279go.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 09:36:13 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 212806
IP: 185.175.90.0/24
IP: 2a10:4740::/29
Validation: Failed, certificate revoked on Thu 24 Aug 2023 12:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d6:ae:cb:ee:69:00:0b:da:e2:10:40:c8:0e:b8:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:36:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5df53645843e6d2883dc8f9c4f415c1eadbbf60a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:08:74:ad:35:61:c8:4d:28:9f:3a:eb:c0:07:
8c:b1:1f:03:93:75:ee:1b:d9:b2:97:84:de:2a:a9:
f3:db:6d:68:c6:21:38:64:95:f5:b5:72:37:3a:15:
81:f2:4a:dc:e4:42:87:16:c2:fb:8d:66:a5:7c:1c:
4a:68:46:8a:3e:d9:06:54:de:8c:c2:10:c1:ff:12:
9d:47:88:4b:43:0d:4f:dc:c7:c6:f3:33:d6:2c:ff:
50:a8:6f:65:d3:d5:11:7e:75:5b:39:57:01:20:95:
ed:6f:dc:27:0a:13:1a:af:a3:fa:d7:a3:a7:33:69:
e5:32:d7:d3:49:49:47:42:46:98:22:c0:fe:ac:58:
43:4b:9e:a3:82:71:86:11:dc:33:b0:b6:6e:bd:26:
1b:96:92:f7:0c:a6:dd:cb:36:e3:b0:2a:73:fe:7c:
24:e1:6e:a1:50:86:16:8f:72:c3:fd:cc:01:97:72:
5d:90:0f:7c:26:0d:36:d4:60:da:83:64:1e:cb:ad:
3f:95:02:04:0a:36:fb:e9:80:b8:fa:79:d0:9e:97:
98:36:59:fd:cc:63:74:31:f9:e7:66:50:02:af:35:
37:9a:6f:eb:cc:ea:0b:0a:15:78:0a:a6:3c:30:00:
7c:be:be:c5:6c:e1:21:c1:16:fa:b4:0c:37:84:6c:
ae:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F5:36:45:84:3E:6D:28:83:DC:8F:9C:4F:41:5C:1E:AD:BB:F6:0A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d107de-e2e5-4727-98ad-3821810344e6/1/XfU2RYQ-bSiD3I-cT0FcHq279go.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.90.0/24
IPv6:
2a10:4740::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212806
Signature Algorithm: sha256WithRSAEncryption
7f:0a:70:8c:5c:b9:c7:eb:7f:39:14:76:8d:46:2a:2b:b2:b4:
c7:e2:b6:6c:55:09:91:29:2b:33:bf:0a:a9:2d:92:0b:13:1f:
2f:7b:2a:8c:4b:2a:d5:ee:39:fe:71:6f:48:bb:46:b3:ff:4a:
2a:96:24:9b:05:33:64:a6:43:09:20:55:d9:55:36:2d:c9:ae:
f6:39:36:3c:0a:7f:d8:e1:2b:d8:a3:86:e8:ab:e5:f4:e5:12:
3d:eb:62:dd:f9:7b:e0:66:c1:6f:ba:72:c4:87:6c:36:ee:45:
a0:08:12:fa:12:40:30:7a:60:8f:86:d5:85:dd:3a:7b:7e:cc:
cc:54:59:b7:21:b8:a9:77:45:b5:80:df:07:cb:65:8f:19:db:
74:2f:bc:58:10:db:66:9e:a0:67:03:de:2f:5f:48:7a:57:34:
c0:48:d4:27:5a:17:ee:d0:bf:69:8b:81:e9:9e:6a:2a:27:1e:
30:a4:69:ca:0d:90:97:9b:e6:f2:57:47:ce:86:39:9c:08:77:
eb:c1:d2:1e:21:f7:34:b4:a0:c6:1a:eb:7c:f9:4f:01:cf:c2:
76:98:2d:11:2b:82:49:c7:f0:b3:40:33:e3:ef:93:51:d0:2f:
66:71:bd:83:d1:9b:9e:46:e7:90:a9:72:e9:5a:1e:27:18:85:
1a:7c:50:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:34:36 2024 by rpki-client on console-ams.rpki-client.org