Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jL5r11iyS-uuLkpRpVRM-tftMUo.cer
File: jL5r11iyS-uuLkpRpVRM-tftMUo.cer (raw, json)
Hash identifier: jBvZZT5haUa9g5hW/hwj8/hnHuhH5lrYzx+Iecs6yIs=
Subject key identifier: 8C:BE:6B:D7:58:B2:4B:EB:AE:2E:4A:51:A5:54:4C:FA:D7:ED:31:4A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856CAD4DA692E0FD81F0BAC8A5A6785B21
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8b/1dd1ab-06cc-45fa-8d24-0ce72a042912/1/jL5r11iyS-uuLkpRpVRM-tftMUo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8b/1dd1ab-06cc-45fa-8d24-0ce72a042912/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 09:32:55 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 47688
IP: 109.233.104.0/22
Validation: Failed, certificate revoked on Fri 22 Dec 2023 10:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ad:4d:a6:92:e0:fd:81:f0:ba:c8:a5:a6:78:5b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:32:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8cbe6bd758b24bebae2e4a51a5544cfad7ed314a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f1:34:bb:98:88:5a:2d:d3:4e:d3:44:bb:e1:
6f:e6:c6:52:00:d1:8b:05:19:96:dd:ef:d6:1f:da:
30:54:fe:ad:f1:6f:58:4c:1a:6e:5a:9f:c8:e2:32:
cb:71:24:77:8e:62:9d:2a:2e:6b:a8:1a:68:24:9a:
43:cf:8e:53:f7:55:9b:b9:00:67:0a:65:25:b2:a5:
ef:0a:fd:fb:5d:88:9b:d2:65:05:15:ed:d4:bc:20:
43:4b:86:63:b8:b8:0f:a6:df:57:15:c7:70:3e:70:
c0:67:1b:17:8f:55:31:e8:28:2c:3d:9e:57:f7:2f:
f2:4f:91:fe:98:89:76:01:fc:67:dc:ec:f6:67:ad:
98:12:73:7a:98:6f:54:c4:f9:d2:a1:bf:23:85:03:
bc:de:10:1a:27:26:de:ca:ea:c7:7b:0b:ac:ed:3a:
e4:bc:88:35:33:10:ee:49:ac:7d:2c:e9:2f:81:67:
84:9b:b9:d6:0b:d8:f7:1a:89:8d:f8:cc:a2:0e:fd:
7d:8f:db:1c:c5:bf:f4:45:f5:fb:3a:be:1f:eb:c1:
b2:84:41:2a:11:b7:34:cc:e8:69:a3:33:11:cd:14:
33:d9:59:f4:52:b0:e8:05:40:5a:bc:68:f3:40:60:
6a:07:08:f0:6f:a4:bc:3e:87:f6:75:af:f9:9b:0b:
95:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:BE:6B:D7:58:B2:4B:EB:AE:2E:4A:51:A5:54:4C:FA:D7:ED:31:4A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/1dd1ab-06cc-45fa-8d24-0ce72a042912/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/1dd1ab-06cc-45fa-8d24-0ce72a042912/1/jL5r11iyS-uuLkpRpVRM-tftMUo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.233.104.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47688
Signature Algorithm: sha256WithRSAEncryption
5f:4b:1e:d1:ef:b4:67:37:55:46:49:94:47:17:f9:ee:f7:c8:
ce:ad:d2:93:34:d5:73:52:f1:07:07:15:17:fe:b1:40:49:a5:
be:09:23:a3:8c:1e:fb:87:e5:23:26:ea:07:c7:84:c1:51:fe:
a8:25:dc:9c:2c:7b:76:7a:a9:14:24:c6:bd:ab:41:44:88:7c:
bf:ff:97:66:6e:0f:87:b3:3a:b8:e8:89:31:e5:97:1b:46:01:
8d:3b:ef:14:7b:79:28:1e:a8:ad:59:6d:94:31:f7:36:b7:f7:
0f:47:01:b3:ed:85:0e:76:c6:56:7e:be:7a:39:4a:87:78:e2:
30:00:4b:ca:fa:96:2e:6e:18:d2:2f:f4:2a:5a:2c:0e:56:ae:
9d:72:d3:53:de:9d:16:24:d7:b6:0e:90:75:e3:e8:10:31:b6:
eb:8a:e6:7f:91:a7:b4:61:0a:a9:49:a2:23:7a:f6:bf:18:56:
cc:60:55:9e:9f:2c:32:5b:0d:d0:c5:fa:79:fa:32:9f:c2:8d:
59:57:5c:fa:f0:a8:91:8c:c1:81:5f:c6:5d:8c:5a:bb:19:81:
54:55:74:ed:6c:c3:79:bb:21:ed:51:62:4b:9f:f3:00:29:9c:
29:49:93:9e:9d:61:c5:39:ef:46:51:d9:fb:54:05:c5:de:cb:
b4:cb:de:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:55:37 2024 by rpki-client on console-ams.rpki-client.org