Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lQU0uD0UibLbJoYqyd2g4-h962w.cer
File: lQU0uD0UibLbJoYqyd2g4-h962w.cer (raw, json)
Hash identifier: PKNOXw86VnjMQGl8LvdAqmHafRkjRU86BPBIkSeSHGQ=
Subject key identifier: 95:05:34:B8:3D:14:89:B2:DB:26:86:2A:C9:DD:A0:E3:E8:7D:EB:6C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB005676F6A7823EE07CE2B9F39BAA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/f9235055-1904-44b4-998b-ff1c9e311c49/6/950534B83D1489B2DB26862AC9DDA0E3E87DEB6C.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/f9235055-1904-44b4-998b-ff1c9e311c49/6
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211020
IP: 185.222.212.0/24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 12:40:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:00:56:76:f6:a7:82:3e:e0:7c:e2:b9:f3:9b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=950534b83d1489b2db26862ac9dda0e3e87deb6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4e:a7:9c:90:30:98:30:71:38:dc:a5:49:f4:
59:ae:21:72:82:7d:de:1b:43:92:49:ac:38:07:11:
10:a5:55:db:e5:b8:c8:c0:60:12:05:0d:a1:45:cf:
35:18:a5:69:91:d8:f4:84:93:54:29:07:bd:39:0e:
77:bc:f1:1b:7b:1c:9a:fc:bd:33:40:ca:9a:2c:4d:
45:e6:15:b0:a7:2d:c6:75:05:8e:8c:b2:98:6e:44:
e2:da:41:0c:b2:5f:3c:51:ff:8f:96:41:e8:8b:60:
be:7a:a2:e8:a7:af:c7:e9:38:5a:2b:4f:19:00:fc:
d1:92:36:6e:83:8a:69:77:0e:68:18:c4:97:89:fc:
b4:46:c2:59:76:d1:80:02:62:22:80:ec:1c:b1:61:
24:b7:59:a4:37:ca:cd:ce:74:66:7f:cd:46:36:f5:
25:b4:76:34:3d:64:ba:00:2f:dc:f4:f6:7e:ba:22:
f5:02:b7:78:c2:e9:64:d6:26:4b:80:2b:fd:0d:eb:
99:23:1e:eb:a0:25:d6:27:5e:32:d3:0b:ab:d6:38:
b0:b6:ce:cb:ba:36:aa:9e:c0:05:ce:da:48:47:b6:
7a:60:25:6c:d5:cc:61:b4:d8:aa:58:93:97:ba:3c:
36:55:9c:f9:4b:73:7f:ee:f3:da:c0:1a:8e:16:e7:
95:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:05:34:B8:3D:14:89:B2:DB:26:86:2A:C9:DD:A0:E3:E8:7D:EB:6C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/f9235055-1904-44b4-998b-ff1c9e311c49/6
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/f9235055-1904-44b4-998b-ff1c9e311c49/6/950534B83D1489B2DB26862AC9DDA0E3E87DEB6C.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.212.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211020
Signature Algorithm: sha256WithRSAEncryption
a5:9d:d8:88:d9:8d:cc:a8:72:53:65:9f:d1:04:7f:c9:8d:e8:
82:01:eb:32:67:96:13:bd:cb:cb:1f:55:4d:5a:3a:dc:d1:00:
fc:80:b7:cf:29:59:32:18:f4:b8:20:ee:b7:23:b7:7c:3e:93:
77:0a:ba:ff:33:ef:99:5e:8e:4e:5c:07:01:66:86:b9:10:eb:
27:6c:f1:c3:f0:2a:b7:83:25:0b:9f:a0:2c:97:67:5b:18:e2:
fc:dd:09:e8:b8:ba:54:79:b3:13:d4:d9:5b:1f:4b:49:b6:ea:
8a:3b:8b:cf:48:a4:9f:ab:d7:e5:6b:59:45:46:49:2d:e9:32:
c1:4b:da:1e:1f:c6:7f:e7:cd:a3:60:c0:14:3e:fc:14:c5:c1:
40:a0:50:38:60:04:f4:1b:37:42:bb:f7:d4:e1:0e:c3:15:cc:
33:40:1f:18:f5:74:b2:8b:b5:94:a3:16:ff:1f:44:85:2f:03:
ee:eb:cc:ba:de:e7:50:3a:6e:45:46:bb:20:28:d2:c7:7b:82:
8a:94:0f:89:4e:17:63:48:28:32:04:bd:0a:f5:cd:9e:37:93:
5a:93:89:91:db:65:f6:19:8c:d1:d9:56:f6:c5:08:3e:01:a4:
57:fb:5c:a2:75:e0:ba:35:fb:ee:e0:2e:e0:70:98:d2:8a:f1:
7e:0d:91:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:56:04 2024 by rpki-client on console-ams.rpki-client.org