Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kDp7mJFcP_UlKQRvjttGxCF_sIY.cer
File: kDp7mJFcP_UlKQRvjttGxCF_sIY.cer (raw, json)
Hash identifier: KJYB3OeZHbxr4ugo0yQEGq9shxrgWvuHgKwMuKV4Fg8=
Subject key identifier: 90:3A:7B:98:91:5C:3F:F5:25:29:04:6F:8E:DB:46:C4:21:7F:B0:86
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856EFBEFEF5F0FF6F6BEE3593B1C2449C5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4a/fabab9-658b-4d2f-8553-b431498c04c4/1/kDp7mJFcP_UlKQRvjttGxCF_sIY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4a/fabab9-658b-4d2f-8553-b431498c04c4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 20:18:02 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 12453
IP: 2.56.160.0/22
IP: 91.223.248.0/24
IP: 185.31.52.0/22
IP: 185.85.32.0/22
IP: 185.155.124.0/22
IP: 185.224.24.0/22
IP: 194.59.177.0/24
IP: 195.93.174.0/23
IP: 2a0d:5dc0::/29
Validation: Failed, certificate revoked on Wed 19 Apr 2023 09:34:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:fb:ef:ef:5f:0f:f6:f6:be:e3:59:3b:1c:24:49:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:18:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=903a7b98915c3ff52529046f8edb46c4217fb086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9a:cb:50:5c:1e:c1:27:5e:b2:dc:12:47:79:
77:aa:75:d2:c0:87:07:3e:4c:4b:1c:30:05:0d:1f:
0a:f4:b8:b9:1f:81:62:a1:28:69:34:6c:15:1b:eb:
92:d4:bd:33:7f:cc:51:68:2d:71:cc:d4:5e:88:7a:
47:fc:bd:81:49:2e:e0:d7:2b:eb:98:bf:4d:91:a1:
61:db:99:ba:45:29:22:6d:9f:12:be:3a:5a:61:5e:
47:03:42:00:71:fe:06:d1:ea:93:54:d9:b8:b5:1e:
c4:14:ab:bb:be:fb:ce:ab:d9:6d:97:69:6f:68:6a:
fb:44:4f:6c:1c:50:29:42:73:38:60:b6:57:d4:5b:
b5:b3:01:d4:ed:ab:a4:b8:cb:85:9d:97:53:48:3c:
80:0c:d3:b3:02:06:58:31:9d:58:af:17:2d:45:33:
ce:cf:fc:47:66:5a:83:b7:d2:97:2b:92:09:bc:d7:
c0:8c:16:d0:f1:e0:09:c5:d3:a3:2b:77:d1:6a:fc:
e8:ee:1b:d7:64:13:df:90:52:e1:41:53:2a:84:2c:
79:25:37:15:4a:22:5d:82:85:dc:47:74:76:57:ae:
82:32:83:9f:4f:2f:0b:b4:90:1e:e4:5c:6f:6a:52:
20:d7:c7:90:b9:2e:b3:b4:2c:af:12:6d:39:85:ba:
cc:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:3A:7B:98:91:5C:3F:F5:25:29:04:6F:8E:DB:46:C4:21:7F:B0:86
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/fabab9-658b-4d2f-8553-b431498c04c4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/fabab9-658b-4d2f-8553-b431498c04c4/1/kDp7mJFcP_UlKQRvjttGxCF_sIY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.160.0/22
91.223.248.0/24
185.31.52.0/22
185.85.32.0/22
185.155.124.0/22
185.224.24.0/22
194.59.177.0/24
195.93.174.0/23
IPv6:
2a0d:5dc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12453
Signature Algorithm: sha256WithRSAEncryption
31:93:3c:92:64:d5:b0:23:53:dc:ea:86:ac:ad:6a:8a:b8:0a:
ee:38:d7:f7:9f:af:b1:af:47:4b:d8:5a:65:f5:f5:35:93:b3:
27:1c:37:52:05:95:5b:0e:0d:24:14:d8:40:1b:aa:93:57:51:
b8:f4:1a:0c:24:e9:48:80:fa:37:29:a4:a5:c7:60:3e:ab:8e:
61:12:e6:90:4b:79:9f:ad:69:4e:db:c3:ab:79:5a:86:03:ce:
ae:8d:06:17:25:d3:f1:3d:9e:56:05:2d:da:43:ba:44:4e:24:
8e:a6:d7:6e:4b:3d:ac:43:0b:49:f5:d4:cc:86:45:bd:ce:8f:
dc:4f:2a:d9:f9:04:30:9a:1d:1d:c2:b7:cc:fd:f4:f9:6d:83:
3c:cc:fd:40:16:9b:df:03:7e:b3:4f:cd:97:99:77:71:10:dd:
40:3f:30:da:8c:5b:9c:d9:e5:9a:91:d7:d5:50:a3:7c:55:a9:
58:73:fd:09:fb:b5:82:85:f7:b6:0f:ab:be:48:05:f4:73:d7:
46:61:e9:9c:af:7f:7f:ed:a2:e1:f6:43:20:c9:02:1a:df:d5:
81:3a:9a:ad:06:e2:6c:52:7d:a7:e6:58:d0:ee:c8:9b:6b:ce:
e0:d8:9c:d1:03:6c:aa:bf:24:82:b4:b6:1f:29:7b:ed:c4:fd:
a1:df:8d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:55:48 2024 by rpki-client on console-ams.rpki-client.org