Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kFHyKtfRG6id2vML0ai4myrewoI.cer
File: kFHyKtfRG6id2vML0ai4myrewoI.cer (raw, json)
Hash identifier: Ajsk0c1lWZznh5DLpK6e5Vg3xmD7QDl/PNFnckiS7kM=
Subject key identifier: 90:51:F2:2A:D7:D1:1B:A8:9D:DA:F3:0B:D1:A8:B8:9B:2A:DE:C2:82
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0185716860F54253174D2C159F2CE58BA71F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e1/b41e71-c167-4d29-87f6-10b8807d64f1/1/kFHyKtfRG6id2vML0ai4myrewoI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e1/b41e71-c167-4d29-87f6-10b8807d64f1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 07:35:44 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 207588
IP: 2a10:2a00::/29
Validation: Failed, certificate revoked on Thu 13 Jul 2023 11:14:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:68:60:f5:42:53:17:4d:2c:15:9f:2c:e5:8b:a7:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 07:35:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9051f22ad7d11ba89ddaf30bd1a8b89b2adec282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ef:28:84:52:62:59:f7:0e:89:ce:29:41:6a:
da:ea:cf:eb:d4:68:f3:72:a4:a4:0f:41:df:aa:7c:
c5:4b:72:5c:b6:79:b7:a6:6a:dd:00:fe:2e:56:49:
68:91:9e:b4:38:c1:34:db:bb:65:df:51:15:ef:de:
7d:ec:47:60:8e:04:4f:a2:7a:45:31:07:62:63:93:
2a:4f:4a:f7:87:80:4e:05:c5:42:39:bb:4e:14:d8:
81:55:06:af:a6:34:04:76:a4:d0:f2:fa:6e:1e:30:
ed:8e:82:f2:ac:63:12:21:64:89:ec:e5:d7:5a:b8:
ef:a6:25:67:86:5d:af:15:bc:7e:44:9e:55:f6:3e:
04:58:ad:ea:d1:00:9f:ef:81:80:4b:d2:cd:74:91:
c0:3c:7f:6b:76:bd:f4:ee:20:75:27:95:b3:f7:ac:
4d:0b:6a:f3:8a:6f:0d:49:e9:c0:16:f7:24:b5:c1:
84:ac:6d:17:65:63:98:25:ff:b3:96:7a:c2:69:eb:
d5:49:57:00:cc:3c:1b:39:73:71:2b:6a:9c:60:84:
66:8e:f7:69:1b:4d:d8:40:a8:35:71:13:27:06:81:
da:11:d7:be:6b:c5:57:d4:12:d2:b1:af:98:38:e2:
d6:90:68:63:b8:79:6f:c8:68:01:d4:47:34:97:5d:
d2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:51:F2:2A:D7:D1:1B:A8:9D:DA:F3:0B:D1:A8:B8:9B:2A:DE:C2:82
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/b41e71-c167-4d29-87f6-10b8807d64f1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/b41e71-c167-4d29-87f6-10b8807d64f1/1/kFHyKtfRG6id2vML0ai4myrewoI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2a00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207588
Signature Algorithm: sha256WithRSAEncryption
71:0f:af:ff:c6:a2:9b:60:68:2f:cb:a5:27:2b:29:29:8a:f8:
9b:ec:76:44:9b:13:69:58:4a:ab:bd:9f:77:63:92:c5:f1:f8:
ad:98:61:65:51:7e:da:df:5d:60:69:3c:18:4f:eb:3a:92:1c:
36:6f:09:dd:dc:22:2a:12:98:d7:da:51:77:55:97:ed:05:01:
2d:a9:74:32:6e:ce:06:cb:a5:50:e3:94:30:0c:f1:4a:e2:74:
b5:67:01:de:ac:7e:b3:4d:3f:68:31:51:47:97:87:59:a2:b7:
6d:be:76:b6:1f:be:d1:8b:88:28:0d:b7:55:42:90:1a:2d:d7:
ce:d3:e4:bb:55:08:43:19:53:2c:00:53:7a:6a:59:9f:59:49:
c7:3a:d5:5a:37:39:aa:ed:e3:dd:23:d7:35:e9:ab:36:5d:ea:
cf:ab:1c:ae:d7:6a:ca:77:d8:e6:f6:86:06:ef:21:44:f4:98:
06:da:38:ca:f8:82:6e:04:0b:f9:fd:e3:3f:d2:37:12:22:e1:
89:d7:d9:5a:2e:5a:97:9f:c6:3c:49:d5:9a:7d:ba:74:70:49:
98:d2:4e:43:ae:2b:ad:a6:87:49:2f:c1:ac:9b:2a:e8:40:b7:
b7:10:ca:c8:b3:68:f6:52:7b:fc:1f:3d:e8:0e:7d:84:c5:b6:
f4:62:ce:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:56 2024 by rpki-client on console-fra.rpki-client.org