Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eRMaTjzAhRwu0TY9aYLnQ209-fk.cer
File: eRMaTjzAhRwu0TY9aYLnQ209-fk.cer (raw, json)
Hash identifier: e05uDOkOq+73+0xM+A8kckibPKZJ1vt3smUniRfTD6I=
Subject key identifier: 79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856B2EA51D58075AD53B1394876543FF77
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki1.terratransit.de/repo/TerraTransit/108/79131A4E3CC0851C2ED1363D6982E7436D3DF9F9.mft
caRepository: rsync://rpki1.terratransit.de/repo/TerraTransit/108
Notify URL: https://rpki1.terratransit.de/rrdp/notification.xml
Certificate not before: Sun 01 Jan 2023 02:34:57 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 2.56.236.0/22
IP: 2.59.156.0/22
IP: 5.181.204.0/22
IP: 45.8.164.0/22
IP: 45.11.80.0/22
IP: 45.14.192.0/22
IP: 45.85.248.0/22
IP: 45.88.220.0/22
IP: 45.93.52.0/22
IP: 45.134.188.0/22
IP: 45.138.204.0/22
IP: 91.229.244.0/23
IP: 91.230.110.0/23
IP: 92.118.48.0/22
IP: 193.5.151.0/24
IP: 2a09:a6c0::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:2e:a5:1d:58:07:5a:d5:3b:13:94:87:65:43:ff:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79131a4e3cc0851c2ed1363d6982e7436d3df9f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e9:49:e6:41:df:f7:a0:be:36:a0:0c:30:ad:
14:0e:65:8a:04:3d:ab:f6:c1:2a:e4:6e:da:37:4a:
da:b4:ce:c1:a7:fe:71:16:93:56:0f:c2:90:bd:4f:
41:6d:e1:95:13:a4:70:a1:ec:3d:1a:3d:25:71:64:
e0:be:72:73:29:a5:cd:90:bd:7d:df:60:71:c4:ad:
48:26:0c:dd:23:2d:2a:4f:0f:27:e4:fb:a0:93:cb:
d4:19:95:0d:c9:e9:23:16:c7:74:5c:36:21:6a:9d:
24:75:38:39:94:a8:b5:28:be:0b:1b:d9:33:32:89:
27:db:e8:38:7f:03:8d:8a:a5:47:3e:c3:3e:1f:88:
fe:c2:d8:6e:e2:36:72:3e:f9:64:15:8b:82:b5:f0:
33:f8:10:09:a7:1d:68:28:c0:38:48:c5:55:17:98:
4d:5c:39:c5:16:10:a2:b7:69:20:09:96:75:b7:9a:
0c:ee:6a:f2:80:e1:9f:22:56:1e:2c:cf:25:16:98:
ea:77:62:66:17:5b:1d:5d:88:9c:b4:f9:6a:6e:86:
76:74:60:46:a7:3a:b1:c8:ac:27:60:a7:7d:48:83:
64:26:a4:69:69:ad:dc:48:38:3a:0d:be:75:6c:98:
0d:c2:68:07:3a:3a:bc:c0:f8:84:9b:ad:c5:79:9e:
b4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:13:1A:4E:3C:C0:85:1C:2E:D1:36:3D:69:82:E7:43:6D:3D:F9:F9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108
RPKI Manifest - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/108/79131A4E3CC0851C2ED1363D6982E7436D3DF9F9.mft
RPKI Notify - URI:https://rpki1.terratransit.de/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.236.0/22
2.59.156.0/22
5.181.204.0/22
45.8.164.0/22
45.11.80.0/22
45.14.192.0/22
45.85.248.0/22
45.88.220.0/22
45.93.52.0/22
45.134.188.0/22
45.138.204.0/22
91.229.244.0/23
91.230.110.0/23
92.118.48.0/22
193.5.151.0/24
IPv6:
2a09:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
2d:7f:06:b3:cc:42:69:f4:2b:01:4d:ef:39:64:d0:ac:b6:af:
22:e7:db:03:99:ce:fe:18:99:fe:9a:64:26:d6:c1:e3:4b:51:
8b:3b:f3:02:2f:8b:98:69:91:f3:dc:bc:fd:f3:bb:d5:77:44:
c6:b5:69:90:9f:82:5b:76:59:72:1d:14:6e:65:8b:1f:c7:c7:
68:5a:29:26:7e:16:8e:ed:76:2d:59:d8:94:90:6e:71:31:af:
e7:80:38:22:b4:b8:a8:39:2d:4b:4a:28:03:c0:11:36:92:34:
7a:0d:f5:a2:9a:87:3a:4a:d2:55:de:ff:af:a5:6e:15:3d:fd:
30:d4:5f:2b:73:5c:7b:8d:3e:e2:5b:11:f9:ee:57:13:f8:ca:
e1:98:97:b3:c3:ae:26:8a:e3:50:e0:7f:23:9e:c7:88:fc:4e:
c9:94:35:f5:29:84:0a:51:62:b1:97:cd:42:f5:9b:7a:b1:12:
aa:fa:de:f7:20:a2:8d:3a:2f:74:21:8d:cb:6c:6b:d4:8f:ea:
62:70:5d:38:ff:a6:28:31:8c:9f:59:21:74:6b:32:ae:26:84:
a6:34:a7:15:cd:1b:1b:7f:87:30:1f:c8:8b:67:e6:f0:a9:d8:
11:ce:73:54:df:63:25:a4:96:5b:d1:44:7d:75:eb:fa:d5:06:
c5:9a:8f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:51 2023 by rpki-client on console-fra.rpki-client.org