Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jX3LNj2aw0vcm2mA8mht0hnVAlc.cer
File: jX3LNj2aw0vcm2mA8mht0hnVAlc.cer (raw, json)
Hash identifier: LDrpbF0kHrZpFjocFDx85mX79mJE19JjaulEuwmf+uo=
Subject key identifier: 8D:7D:CB:36:3D:9A:C3:4B:DC:9B:69:80:F2:68:6D:D2:19:D5:02:57
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0193E3633A290B2A401611AD3A69E18CE2CE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/96/cad244-3995-4d41-886b-ac463e221974/1/jX3LNj2aw0vcm2mA8mht0hnVAlc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/96/cad244-3995-4d41-886b-ac463e221974/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 20 Dec 2024 09:25:51 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 78.24.32.0/21
Validation: Failed, certificate revoked on Fri 27 Dec 2024 13:35:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:63:3a:29:0b:2a:40:16:11:ad:3a:69:e1:8c:e2:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Dec 20 09:25:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d7dcb363d9ac34bdc9b6980f2686dd219d50257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4b:da:83:a7:28:c7:1a:56:ef:3c:37:9f:e8:
04:1e:97:b0:7e:e1:48:8d:4d:a3:18:8d:f5:25:36:
b6:10:32:ab:1d:92:32:b0:87:a5:4a:96:1b:5f:1d:
73:2f:8d:1d:11:09:97:e6:b8:c1:3d:14:06:5b:cb:
57:bc:c8:d1:95:9c:f7:0d:50:d5:77:6a:c5:43:ff:
ba:84:f2:86:52:67:60:07:83:25:21:57:f7:e5:87:
04:ff:43:9f:59:e7:c5:32:68:ed:95:ce:d6:ec:2a:
f4:7e:89:84:f0:13:c1:38:ba:ee:c4:38:a4:80:4b:
32:95:d2:eb:c0:4b:9f:28:62:f5:51:54:91:85:4b:
79:e1:da:41:8c:9f:0a:2c:5f:b5:d8:97:9d:17:61:
4c:d5:00:e3:47:45:46:72:9f:e1:16:46:49:8f:7d:
70:0e:3f:a8:d3:c6:98:aa:6f:cb:97:c1:d3:42:f9:
53:6f:db:2e:43:15:00:4b:0e:c1:74:2e:de:54:ec:
4e:b8:c9:8e:02:13:6b:00:05:d8:61:cb:66:9d:54:
3f:08:0f:c4:ee:c3:75:0f:c3:7b:4c:d9:a5:5e:f4:
af:a0:2d:56:64:b6:12:d3:65:5a:7d:8c:49:00:ba:
76:4a:61:16:4d:32:96:4a:e2:fa:d8:fa:d8:dd:5c:
6b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7D:CB:36:3D:9A:C3:4B:DC:9B:69:80:F2:68:6D:D2:19:D5:02:57
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/cad244-3995-4d41-886b-ac463e221974/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/cad244-3995-4d41-886b-ac463e221974/1/jX3LNj2aw0vcm2mA8mht0hnVAlc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.32.0/21
Signature Algorithm: sha256WithRSAEncryption
61:31:40:cc:e9:ec:1f:03:e6:6c:ad:fe:b1:9d:ed:b8:4d:4c:
25:bc:52:42:53:a8:2c:e4:e5:b5:22:c8:e2:fa:6f:f4:b7:2a:
15:d2:ad:11:08:cf:9d:d0:f5:da:42:31:a9:cc:f8:fa:2b:d4:
b1:1c:f6:21:c1:02:20:b4:c4:76:7b:da:70:ea:83:e6:b2:dd:
40:13:99:c9:5f:2b:4e:45:f5:6c:f9:40:25:9d:68:94:f8:f2:
70:ab:b2:d2:bc:52:88:f1:27:92:12:a4:76:81:0b:3b:74:eb:
4f:ea:f6:70:4b:f3:02:f6:2b:8f:02:49:9c:05:56:b9:78:70:
55:18:4e:39:ed:0d:1c:f5:0a:c0:96:c4:34:05:c0:0e:cb:a7:
55:8b:98:65:b3:8d:de:74:f0:0e:95:d8:97:6f:0c:1d:5e:3e:
11:80:10:c8:28:45:ac:f5:eb:f2:88:c1:c8:59:2d:3f:16:92:
80:73:59:17:ec:20:93:20:59:35:bb:dc:e5:26:6c:f3:0e:e0:
f2:7e:75:cf:58:2d:5d:1e:4f:74:c9:60:0a:34:db:44:be:9e:
df:c8:fb:3c:ba:1d:40:74:7e:41:f2:3e:ac:23:96:88:b1:45:
82:c3:ed:62:60:d8:23:90:36:e2:47:58:da:df:5b:1b:79:aa:
23:35:5d:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:10:44 2025 by rpki-client