Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nfynmPn2WMzxH4zlFV9EHa7-Maw.cer
File: nfynmPn2WMzxH4zlFV9EHa7-Maw.cer (raw, json)
Hash identifier: HeHJJsoAMbW7qnl8bRqLt5UDHDOvACSjmEVzNy+Jrqc=
Subject key identifier: 9D:FC:A7:98:F9:F6:58:CC:F1:1F:8C:E5:15:5F:44:1D:AE:FE:31:AC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018571D5EE5477F142B9FD9FF31C9EC758D2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ca/f6dec7-573f-46de-ac11-787787a75091/1/nfynmPn2WMzxH4zlFV9EHa7-Maw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ca/f6dec7-573f-46de-ac11-787787a75091/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 09:35:23 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 217.119.139.0/24
IP: 2a11:7c40::/29
Validation: Failed, certificate revoked on Fri 20 Oct 2023 07:11:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d5:ee:54:77:f1:42:b9:fd:9f:f3:1c:9e:c7:58:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9dfca798f9f658ccf11f8ce5155f441daefe31ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0e:bc:f9:d9:55:91:3f:71:5c:6b:98:19:97:
3d:a3:cb:72:f8:48:02:e9:81:e8:5e:00:70:ff:ab:
94:90:aa:21:77:e3:ee:1f:07:c1:46:09:a2:4c:cd:
4a:ed:92:87:17:a2:11:5b:0a:40:75:49:ce:4a:73:
ea:e5:57:bf:71:e8:4c:5c:d0:1b:b5:69:f5:95:30:
5d:6a:fb:15:5f:cc:70:80:42:11:f8:c2:94:ff:07:
f5:05:c9:6a:f2:7a:f4:c3:48:4b:40:ef:c0:dc:1f:
02:c3:5a:27:5f:bf:f6:49:20:d9:14:56:44:2f:9e:
18:5b:2b:4d:89:01:cc:07:0f:e5:c0:39:5b:fe:3a:
f7:8a:4d:60:3d:d1:02:71:16:16:b0:cf:f7:a7:b9:
0e:74:6c:30:a0:eb:4d:94:98:8b:f7:b8:87:f2:c5:
e8:db:04:ea:ca:57:6b:5f:46:4d:5f:fa:4a:ae:c2:
bd:68:75:95:c5:35:3a:53:61:49:51:5d:93:f5:ff:
ef:31:09:97:d3:69:40:b0:27:d8:8b:57:1e:0b:a3:
e5:f4:32:b9:fe:65:b0:0f:09:50:c9:65:90:4a:c4:
1e:e7:26:ef:fd:0d:d5:ec:ce:7a:d4:bc:59:30:6f:
ab:cd:c9:0c:a7:95:eb:15:04:13:78:2a:90:0b:f4:
76:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:FC:A7:98:F9:F6:58:CC:F1:1F:8C:E5:15:5F:44:1D:AE:FE:31:AC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/f6dec7-573f-46de-ac11-787787a75091/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/f6dec7-573f-46de-ac11-787787a75091/1/nfynmPn2WMzxH4zlFV9EHa7-Maw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.139.0/24
IPv6:
2a11:7c40::/29
Signature Algorithm: sha256WithRSAEncryption
88:94:cc:0f:7b:99:c3:45:6b:16:06:de:af:73:db:45:c2:f9:
c3:64:40:1a:5c:79:7f:35:4c:4a:9d:4a:78:c3:c2:8e:fd:c2:
82:26:77:3a:42:6b:3a:4a:9d:77:b2:71:9e:7e:50:ff:e7:e4:
18:4e:c0:2d:a2:f1:54:46:25:db:40:a5:19:e7:d1:2c:35:4b:
f2:70:f0:6a:11:32:71:a9:12:5f:0b:9c:e4:c4:70:61:51:3c:
19:56:2f:b7:4e:2d:0f:e8:0b:41:98:d5:61:54:70:fd:b7:be:
e9:8e:d2:76:6b:a6:2f:26:84:48:6b:5b:cf:e3:d3:dc:1e:0d:
6b:d2:82:c4:1e:1b:b9:20:ad:86:db:e7:19:0e:62:bc:44:82:
cd:c0:41:1d:98:db:26:82:80:7d:f4:7b:73:7e:9d:f6:f5:cc:
5c:fc:dd:7a:28:15:d1:87:10:05:07:24:68:19:d4:20:ae:6d:
30:2f:dc:f8:c7:f1:f9:20:f5:8c:78:cf:ae:81:41:93:50:2b:
dc:04:d3:f2:61:48:84:84:45:b5:c0:c0:ea:80:2b:2a:0f:93:
e8:aa:5d:d5:9e:b0:70:25:e7:de:23:d2:3d:55:8d:6a:d0:c1:
2e:9f:d5:bc:0c:69:e3:e3:70:36:0f:28:08:5a:c5:b5:b9:1d:
ee:58:e1:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:02:28 2024 by rpki-client on console-fra.rpki-client.org