Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/hmSdeF1HoNJjTR2HdgnI1gn0SHE.cer
File: hmSdeF1HoNJjTR2HdgnI1gn0SHE.cer (raw, json)
Hash identifier: pjBzQifFZHPQw7X6aLeRTdychCvFjqOQoIEaZPVefJA=
Subject key identifier: 86:64:9D:78:5D:47:A0:D2:63:4D:1D:87:76:09:C8:D6:09:F4:48:71
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018C68800D206DBFF1E5AA34C0CF4B20DB28
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/69/89181b-a5ee-4eb7-959d-a6db4ad0153f/1/hmSdeF1HoNJjTR2HdgnI1gn0SHE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/69/89181b-a5ee-4eb7-959d-a6db4ad0153f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 14 Dec 2023 13:24:31 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 185.252.215.0/24
IP: 2a14:3180::/29
Validation: Failed, certificate revoked on Fri 15 Dec 2023 14:09:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:68:80:0d:20:6d:bf:f1:e5:aa:34:c0:cf:4b:20:db:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Dec 14 13:24:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86649d785d47a0d2634d1d877609c8d609f44871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f5:46:ef:8f:ae:61:80:43:6c:88:6e:bc:8a:
54:fe:76:d5:5d:90:ee:f9:d1:4b:a1:9f:0b:f3:12:
3c:54:c7:24:2a:d0:0a:1f:1b:71:ce:7c:f0:38:1f:
56:0c:4d:cd:73:b8:a0:b4:00:7d:d8:b4:28:f7:56:
0d:19:b2:79:92:32:2d:d5:e6:ad:2d:2c:a0:4d:4e:
6f:36:90:77:d4:cc:ee:c8:f8:e6:b0:99:2e:53:59:
4c:24:c8:f3:90:f3:d0:a0:ff:87:66:b7:4e:55:b7:
2b:36:7a:19:61:10:0e:e6:a5:fc:25:43:31:2f:af:
00:ea:29:cc:1f:d9:88:af:18:02:52:fe:9e:c0:61:
a8:69:fd:44:0d:a3:06:61:7d:e0:37:a9:bf:03:6d:
9e:6a:65:87:fd:96:a3:67:e8:92:0d:c8:9f:a7:9c:
4f:b7:f3:ea:e8:b9:c4:c1:37:43:a2:2b:03:51:bf:
f8:98:8b:aa:11:8d:2d:ee:fe:bb:41:1f:51:51:57:
23:9c:7f:61:0c:ef:14:59:31:7d:af:f1:a1:02:e8:
e1:ac:33:6c:e9:3c:15:39:33:05:46:b2:c2:87:44:
9b:69:bb:bd:b4:f9:51:5c:96:f0:e8:41:c7:67:cc:
66:eb:ab:fa:02:8b:49:f0:44:07:55:70:90:e7:51:
82:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:64:9D:78:5D:47:A0:D2:63:4D:1D:87:76:09:C8:D6:09:F4:48:71
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89181b-a5ee-4eb7-959d-a6db4ad0153f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89181b-a5ee-4eb7-959d-a6db4ad0153f/1/hmSdeF1HoNJjTR2HdgnI1gn0SHE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.215.0/24
IPv6:
2a14:3180::/29
Signature Algorithm: sha256WithRSAEncryption
a3:17:27:6d:c0:16:6b:da:d8:ef:8d:ad:fd:b9:34:73:c2:4d:
c1:9d:15:75:73:c3:65:28:b3:5b:f6:56:67:14:c6:5b:91:9c:
f5:69:6b:e7:82:20:1f:94:1a:ae:86:60:d7:88:00:ec:5d:91:
e4:c0:a7:26:49:80:fe:3b:be:ef:13:df:3c:85:9f:78:98:33:
3c:fc:22:88:ae:09:d0:48:d0:76:31:f4:72:4d:18:5b:2d:df:
56:6f:ed:d3:b4:3c:01:9e:ef:93:e8:24:61:7f:d9:a0:3e:6f:
e6:8c:49:cd:5b:fd:76:8b:b5:6e:68:29:27:37:f7:11:79:d2:
e2:49:1e:51:b2:6d:7c:b8:b6:82:69:da:2d:19:db:16:60:4a:
f7:5d:c2:72:2a:5f:b7:76:1a:7d:04:ab:32:ab:8c:eb:66:10:
5c:b9:66:48:33:5e:67:b2:a8:04:54:4e:ba:03:34:0a:8f:b8:
7e:0d:85:ee:8e:46:bc:94:d5:61:a9:32:38:58:3d:61:ad:13:
a2:20:50:27:9e:c0:1b:7c:c7:9c:e2:a6:b0:e7:55:c9:b3:3f:
a1:d1:2a:d2:77:39:95:5c:b5:18:d9:1f:00:83:3f:9d:10:d9:
9f:9c:56:4f:d1:56:5f:30:c6:2f:e7:4e:f7:b4:35:fe:c1:e6:
45:e2:9c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:36 2024 by rpki-client on console-fra.rpki-client.org