Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/h8Iy0_AFynRdgYzWQ56Ah5BQEOQ.cer
File: h8Iy0_AFynRdgYzWQ56Ah5BQEOQ.cer (raw, json)
Hash identifier: QeyQ1EBZjp9zPWT07H5iyD47pk5jbsLsONPsot3yI5c=
Subject key identifier: 87:C2:32:D3:F0:05:CA:74:5D:81:8C:D6:43:9E:80:87:90:50:10:E4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856F416BF9FBD96DC7494F912DD82C0F7B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2f/5f5767-7af5-4c66-9692-5d4b0b78e4eb/1/h8Iy0_AFynRdgYzWQ56Ah5BQEOQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2f/5f5767-7af5-4c66-9692-5d4b0b78e4eb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 21:33:56 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 62.3.51.0/24
IP: 2a12:700::/29
Validation: Failed, certificate revoked on Wed 15 Nov 2023 14:20:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:41:6b:f9:fb:d9:6d:c7:49:4f:91:2d:d8:2c:0f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:33:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87c232d3f005ca745d818cd6439e8087905010e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d1:4e:ce:9f:a3:77:47:be:4a:32:07:9f:46:
25:d0:fd:05:46:cf:1b:a1:fd:de:d2:40:7f:0f:04:
75:d8:66:32:25:62:ec:a5:e0:2c:37:2f:85:b4:cc:
19:0f:eb:8d:7d:b2:8d:ed:48:90:2f:a7:e8:82:b8:
a5:f1:15:8e:13:96:c0:6e:40:d4:29:ec:be:52:2c:
ec:6c:15:b7:e6:b5:49:24:53:03:8c:5d:c3:3c:d0:
48:26:e4:b0:d7:62:c0:7c:a4:44:17:f2:e3:36:56:
20:82:3f:9f:89:4b:8b:d1:19:0e:7a:30:b0:d2:65:
8a:44:4b:c9:35:77:23:76:8c:9c:14:d1:a7:66:d9:
ee:26:be:76:8b:2a:62:61:48:32:b9:6e:bd:7e:e9:
f5:26:a5:99:87:cd:70:f8:34:3c:fd:e8:19:13:48:
29:4e:9f:f3:71:32:3c:79:b5:0a:80:07:c0:e9:2b:
83:0b:d6:ed:78:47:8e:b9:d4:35:23:45:f7:63:b7:
f0:b6:2c:8b:49:75:7c:79:a6:e0:7d:bb:0f:65:ca:
e9:c7:9d:03:69:34:a9:f3:5b:d6:39:e8:64:f3:aa:
e2:d1:82:f0:da:cf:37:ba:67:4f:f5:12:d7:e7:f8:
c1:68:c6:7d:c4:36:51:84:22:01:1f:4a:ac:2f:83:
3f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C2:32:D3:F0:05:CA:74:5D:81:8C:D6:43:9E:80:87:90:50:10:E4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5f5767-7af5-4c66-9692-5d4b0b78e4eb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/5f5767-7af5-4c66-9692-5d4b0b78e4eb/1/h8Iy0_AFynRdgYzWQ56Ah5BQEOQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.51.0/24
IPv6:
2a12:700::/29
Signature Algorithm: sha256WithRSAEncryption
a6:87:c6:3f:8f:a6:a2:0f:0e:78:ac:c8:3b:6e:e7:18:92:aa:
df:97:d0:c9:e0:c2:f1:48:76:ee:e4:85:d8:c6:2f:1c:29:78:
d9:68:2f:d4:b7:3d:d8:63:b1:47:e3:8a:2c:8e:e5:dd:44:77:
cc:64:ab:ca:62:ba:c0:51:6f:af:ef:52:87:02:57:fe:c2:88:
a8:62:3c:26:04:eb:9d:9e:76:6e:41:91:b9:ab:fb:55:01:28:
ac:d6:71:ad:a8:96:8b:a3:1a:ab:be:dc:55:7a:cc:f2:d1:da:
84:2b:80:29:96:3e:8b:8a:a1:51:fb:5e:9c:4c:da:df:74:a1:
f0:b4:bf:86:e1:ae:d7:7e:63:17:e0:0b:19:f9:a9:ab:04:23:
57:80:9a:d7:07:a5:64:9e:37:c6:51:ec:78:54:7e:76:41:d5:
9e:bc:b1:d8:13:95:ba:81:ac:64:f0:b4:38:86:1b:91:71:bd:
8c:78:0e:e2:84:8a:ca:84:a3:f6:60:c2:85:f7:64:52:cc:ed:
f8:5f:6b:42:ef:3e:07:7a:9b:d9:5e:83:6a:d4:ea:51:f0:d2:
58:e7:5c:92:19:e3:e3:de:a7:cc:30:e1:85:72:4b:21:19:81:
cf:e4:2c:b5:87:e8:f8:4a:72:6b:c4:74:9f:19:34:aa:d1:42:
26:64:84:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:55:13 2024 by rpki-client on console-ams.rpki-client.org