Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
File: f6P5nbqUowe2zS4dkPZ42sBWgfg.cer (raw, json)
Hash identifier: zCFkgo+L2yPvp5lwd8VNOnHQ7meZY9D7diGV/dOo/f4=
Subject key identifier: 7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0192BE5707A93B05CF3210C15BAC4A61AC72
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/f6P5nbqUowe2zS4dkPZ42sBWgfg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 24 Oct 2024 11:43:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208121
AS: 212182
Validation: Failed, certificate revoked on Thu 31 Oct 2024 07:27:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:be:57:07:a9:3b:05:cf:32:10:c1:5b:ac:4a:61:ac:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 24 11:43:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b7:55:f6:92:b1:4f:ae:c6:9e:92:01:85:40:
eb:a7:29:9e:42:11:09:16:85:bf:b3:ae:21:7e:1c:
84:1b:1a:11:41:04:e9:e4:75:43:c5:81:9c:d7:6c:
77:7a:4c:ac:c6:57:0e:3c:09:32:e6:5a:e4:54:3b:
f1:b1:8f:ea:23:9f:84:47:85:2d:58:8f:5b:b8:d8:
44:c3:af:c9:3b:67:3f:ef:46:6d:fd:63:97:54:9f:
cf:92:73:0a:7b:78:22:f9:c1:b1:b1:4a:d1:7d:2f:
88:33:d8:bf:97:dc:79:69:c1:30:f5:66:56:9f:91:
99:d0:2e:3a:17:59:23:b3:3f:b9:33:7e:b3:7c:65:
f7:ae:dd:17:6b:d5:33:7d:6d:5e:5a:90:df:ab:a9:
a6:81:d2:38:0a:60:7e:51:31:5f:78:8b:71:a5:67:
0c:c7:9b:91:9b:48:44:f7:c4:88:bf:da:14:ab:fe:
86:56:79:86:04:a7:df:4f:fd:97:f1:48:2c:2b:2c:
05:97:c6:7f:39:14:01:9c:23:53:10:74:9f:90:83:
18:2f:15:d5:dd:28:87:e5:cd:c3:39:4b:cc:bd:ee:
1a:1a:9f:8b:b9:98:aa:4a:2c:e3:8c:ad:ee:40:b0:
69:61:f4:ac:08:8e:a2:78:dc:55:84:35:11:b3:8e:
5e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/f6P5nbqUowe2zS4dkPZ42sBWgfg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208121
212182
Signature Algorithm: sha256WithRSAEncryption
3b:35:b9:af:c8:a2:83:90:0b:0f:79:a9:52:1f:bf:e6:db:d3:
85:70:1d:bf:75:09:b4:98:ed:3c:58:b5:71:91:b3:52:70:32:
a2:8a:53:e3:ea:05:57:51:fe:f5:45:e9:89:76:ee:7f:d7:bb:
12:60:da:be:18:a5:37:b3:1b:c1:4f:c0:95:e4:0b:7f:6a:f3:
8f:78:a6:6e:e5:e2:6b:0a:38:c0:bf:c0:90:60:a2:53:fb:50:
dd:4f:2c:04:c4:04:24:49:42:62:ea:5a:08:d9:be:d4:a8:a6:
ac:fd:c9:f1:c6:e1:ea:c5:08:f7:9b:cf:f2:b3:09:76:76:19:
55:c6:bf:cb:9d:76:26:e8:cd:ae:42:c7:d0:eb:d2:c3:bd:d7:
16:e3:da:8a:12:e5:bc:ec:be:b0:5c:64:c8:de:30:c0:b9:a3:
8b:bf:9a:cf:73:b2:e6:21:48:8b:52:d6:26:af:2c:f2:c4:6f:
ec:ca:7e:92:ae:db:4d:60:e7:7b:33:13:ff:a4:cd:d5:e2:f9:
2e:05:d8:88:41:b7:6f:ca:1c:d3:52:e7:54:5a:9c:d1:99:ff:
f6:58:67:e3:63:91:2c:15:fb:cc:e9:c5:94:09:6e:38:d8:17:
97:f7:ad:49:0f:ae:69:7a:73:49:df:88:88:b9:4e:b9:66:55:
14:95:b6:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:13 2025 by rpki-client