Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/hUnZLi3ZemFSRNVJyj9cxhWTLDw.cer
File: hUnZLi3ZemFSRNVJyj9cxhWTLDw.cer (raw, json)
Hash identifier: sKRy3KfoRWhoYRNEG2bmrflsZtV1TSiL/7BziRu7nrY=
Subject key identifier: 85:49:D9:2E:2D:D9:7A:61:52:44:D5:49:CA:3F:5C:C6:15:93:2C:3C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348C5DB27FD25D49AE95A211C3FC62D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b4/c8d61b-e7d0-4568-976c-8e1ca85631d0/1/hUnZLi3ZemFSRNVJyj9cxhWTLDw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b4/c8d61b-e7d0-4568-976c-8e1ca85631d0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 185.214.164.0/24
IP: 2a12:cf80::/29
Validation: Failed, certificate revoked on Mon 12 Feb 2024 15:45:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:c5:db:27:fd:25:d4:9a:e9:5a:21:1c:3f:c6:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8549d92e2dd97a615244d549ca3f5cc615932c3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:54:30:df:e3:b8:e4:f1:d6:d4:ca:b3:e5:96:
bc:ed:bf:89:3a:33:44:0c:ac:77:7d:f6:04:d4:c2:
8a:af:32:e5:e8:7b:50:7b:bb:c4:59:5c:a3:57:7b:
18:d5:26:18:b4:04:f9:04:e6:bc:ab:cc:24:01:c2:
49:06:e2:e2:e5:83:22:cb:b2:82:93:7e:25:f0:70:
88:c1:16:c1:7e:e3:90:8f:2a:29:22:d8:7c:c0:7c:
e3:9a:41:87:06:d7:22:c4:09:3f:ef:bf:d8:9b:ba:
01:5c:44:8d:be:66:dc:68:ea:2d:d2:66:52:48:66:
61:af:19:87:e6:c1:cd:67:5e:d2:2a:52:14:e5:f7:
95:79:8c:30:4e:ab:f5:ae:f7:c7:31:02:f3:50:20:
c3:71:7b:79:fb:53:a7:9f:50:10:30:de:72:63:10:
7f:dc:1b:8b:df:33:b5:14:36:b3:b2:a6:2f:2f:fd:
42:a2:23:ae:93:e7:51:0f:eb:bc:f7:53:d0:7b:2c:
fe:e3:79:b5:b9:83:f4:19:cf:d3:9b:05:eb:c8:0a:
19:21:e7:b0:4f:3d:8c:ba:b6:e7:73:71:78:79:7a:
90:2a:8e:88:03:fe:23:f3:b3:93:d2:d7:07:5e:e3:
4b:5c:d2:62:84:d9:d7:72:6b:11:48:9d:2f:ea:d3:
14:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:49:D9:2E:2D:D9:7A:61:52:44:D5:49:CA:3F:5C:C6:15:93:2C:3C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/c8d61b-e7d0-4568-976c-8e1ca85631d0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/c8d61b-e7d0-4568-976c-8e1ca85631d0/1/hUnZLi3ZemFSRNVJyj9cxhWTLDw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.164.0/24
IPv6:
2a12:cf80::/29
Signature Algorithm: sha256WithRSAEncryption
94:39:09:eb:07:10:7d:f6:02:71:48:31:0c:ca:df:1f:64:2a:
ae:1b:db:96:f2:f5:e7:cc:bc:ca:35:86:ff:72:b0:dc:ec:7e:
bd:a1:88:55:b6:d0:bd:cc:0e:a3:2f:cf:9e:94:0b:ff:c8:db:
7b:6f:76:0f:e3:8a:a4:95:23:7f:82:3c:8b:28:2a:6c:1d:67:
df:31:93:62:82:1b:23:f1:d1:87:4e:3d:da:8e:52:f7:59:89:
7d:c4:b2:e1:17:d4:82:13:94:ec:01:e0:69:98:03:00:82:fe:
61:ab:97:3f:d7:90:30:58:37:fc:c3:72:bd:8f:23:04:9b:d4:
bf:0b:23:45:47:a1:6d:1e:4b:3c:90:68:c0:f6:4a:9d:4b:d3:
31:e3:33:0f:7b:f6:96:fc:b5:14:bf:e6:8d:12:b5:2f:bb:08:
8a:68:85:8b:98:9f:9e:8b:1d:2b:11:df:e3:a8:fc:89:74:db:
4e:e9:08:da:bc:50:a7:5e:55:02:c2:f7:94:45:1e:0e:5a:bd:
5f:c0:23:58:f2:d2:d5:97:92:48:73:c6:1c:9a:0f:41:db:b4:
f5:fa:01:55:24:8b:70:d8:1f:5a:e3:01:fa:7d:e8:fb:28:bc:
99:a3:cd:5c:db:e2:c2:29:46:12:3f:93:69:0c:39:0a:be:6c:
2c:ee:e7:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:52:57 2025 by rpki-client