Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mlFM77ESenSu0BJsJnwfbdb7rxQ.cer
File: mlFM77ESenSu0BJsJnwfbdb7rxQ.cer (raw, json)
Hash identifier: j43Otg/ShbvF6r6CoK54VlhHzlaXmdeyJO+vT4tNXP8=
Subject key identifier: 9A:51:4C:EF:B1:12:7A:74:AE:D0:12:6C:26:7C:1F:6D:D6:FB:AF:14
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01936AB527D9B9DA89833CC34B40C64EAA9F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/40623467-41fa-467e-a96d-ebd279eb1186/0/9A514CEFB1127A74AED0126C267C1F6DD6FBAF14.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/40623467-41fa-467e-a96d-ebd279eb1186/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Tue 26 Nov 2024 23:01:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 214223
Validation: Failed, certificate revoked on Fri 13 Dec 2024 22:24:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:b5:27:d9:b9:da:89:83:3c:c3:4b:40:c6:4e:aa:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 26 23:01:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a514cefb1127a74aed0126c267c1f6dd6fbaf14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:40:b9:da:9b:c2:1a:0c:3a:11:6d:2c:45:b4:
97:18:b3:d7:ec:73:a1:4b:aa:35:b6:6f:b5:8a:c0:
36:41:d8:70:a3:33:ea:ce:25:6a:7d:a7:3e:2f:f0:
3d:78:7f:c4:64:86:73:63:d2:2f:0d:b1:19:dd:19:
94:df:46:31:a9:71:e7:e7:e1:15:76:40:d7:2c:77:
6c:c7:de:4f:65:e7:c3:f7:fd:a3:da:29:6b:df:b2:
16:a2:2e:1e:bf:ab:2c:ff:95:1d:57:f9:70:c8:74:
29:bf:06:79:8a:8f:d3:39:77:ca:ad:fd:c6:11:31:
0d:e5:c0:bc:1f:df:73:12:e9:24:c6:52:13:c7:38:
6e:97:0c:bf:ee:55:d8:15:e7:63:d0:17:b1:5c:e0:
23:48:17:28:56:fc:b8:3c:0e:44:55:a9:8b:c4:18:
73:32:e8:da:d4:85:a9:9c:51:bb:ab:fc:33:7c:f1:
ac:19:8c:e6:9a:b9:fc:3c:9a:95:52:80:61:ee:d9:
f0:c5:2d:23:f0:ea:71:35:9a:33:11:df:d1:f1:41:
0a:0f:3d:7f:b2:5c:11:c7:2f:0c:45:96:48:5f:de:
e3:b2:c0:05:ef:36:8b:ff:85:2a:0f:98:5e:1e:b6:
06:64:0b:57:f9:bd:7c:ce:ad:a0:62:18:19:81:bb:
3f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:51:4C:EF:B1:12:7A:74:AE:D0:12:6C:26:7C:1F:6D:D6:FB:AF:14
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/40623467-41fa-467e-a96d-ebd279eb1186/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/40623467-41fa-467e-a96d-ebd279eb1186/0/9A514CEFB1127A74AED0126C267C1F6DD6FBAF14.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214223
Signature Algorithm: sha256WithRSAEncryption
a5:47:20:43:88:a7:65:68:96:27:b3:cd:f1:37:ce:1e:3b:94:
5b:c2:38:62:e3:7d:83:14:63:2c:8d:1e:de:04:f7:da:4f:65:
36:ea:ba:29:60:eb:a7:b7:a3:7f:56:0e:4a:d4:53:8a:9a:94:
b1:c3:f3:a5:9e:c3:b1:6f:d0:20:0d:bf:cf:c8:8e:1b:eb:aa:
39:78:06:d3:ac:50:db:ac:32:0e:26:2e:5a:d3:70:fb:d3:05:
9b:eb:41:58:e9:b6:15:6e:f1:7e:bb:cb:2a:5c:f2:6d:48:87:
ef:46:d2:59:79:96:32:69:3a:34:74:63:3d:61:db:0c:22:0b:
5b:34:40:4b:98:78:ba:9d:b1:5b:2b:8f:9b:48:e9:ad:68:89:
ed:9d:81:90:1e:cb:45:80:72:cf:37:ad:b0:24:32:1f:97:58:
3f:3b:bd:d4:7b:dc:34:c2:b0:da:8c:da:14:71:7d:21:22:2b:
dc:60:a6:97:96:b9:73:b2:c2:cc:f9:d4:98:f5:f4:02:cb:1c:
47:3a:fb:f4:ac:c5:b2:2a:05:a4:67:37:b3:68:e2:5c:0d:8b:
42:58:01:00:49:ec:3a:e8:33:47:da:55:73:ae:3d:46:00:4a:
47:bc:05:5a:08:46:32:3a:02:a9:bc:35:9d:1a:52:c6:f7:34:
7e:10:f4:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:38:56 2025 by rpki-client