Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oQ194HhEe1-3M6xkZWgvq1etgAM.cer
File: oQ194HhEe1-3M6xkZWgvq1etgAM.cer (raw, json)
Hash identifier: xNgKbRc4gB++Of8GIncT3Qni+Td2bCMkNxANEXT+kg8=
Subject key identifier: A1:0D:7D:E0:78:44:7B:5F:B7:33:AC:64:65:68:2F:AB:57:AD:80:03
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856B63348955BBF772576C603A0D91AF8A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/85/fe3aef-8fb4-4f6c-bc71-56c899c6f8d8/1/oQ194HhEe1-3M6xkZWgvq1etgAM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/85/fe3aef-8fb4-4f6c-bc71-56c899c6f8d8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 03:32:21 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 21058
IP: 80.83.160.0/20
IP: 2a0e:30c0::/29
Validation: Failed, certificate revoked on Thu 05 Jan 2023 15:20:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:63:34:89:55:bb:f7:72:57:6c:60:3a:0d:91:af:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:32:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a10d7de078447b5fb733ac6465682fab57ad8003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:77:d9:77:d4:6e:61:2c:28:b5:8e:5a:fa:f4:
ec:97:c6:63:18:b9:ec:1e:71:86:f3:d6:46:ed:34:
31:48:b3:17:10:ca:9d:90:8a:58:68:43:21:f7:b7:
97:23:23:ed:4c:5b:12:84:64:10:ba:01:84:fd:27:
7b:31:c6:50:31:c9:9c:36:98:44:80:fe:4a:f3:3d:
1c:5a:0a:a9:9e:9f:54:54:64:7b:5c:20:1c:a9:4f:
f9:09:6e:e6:ce:0b:a4:9c:30:2f:c3:68:fc:a5:90:
a5:78:91:bd:dc:93:ea:3a:65:bf:7e:2a:39:a4:5d:
35:11:c8:8e:5f:7b:75:38:86:81:26:24:5f:33:55:
1b:8b:aa:f8:a0:d8:b1:19:ee:9c:67:94:f2:68:9d:
2c:a4:80:f9:35:59:dd:e7:29:d7:c2:3b:72:d7:c7:
3a:60:13:4e:c8:78:01:65:1d:73:36:44:03:89:de:
1f:75:fa:95:b7:70:69:78:42:77:c6:21:cd:04:7d:
f8:f9:8f:79:3f:f9:53:7a:79:c4:09:54:37:86:a6:
b0:a1:7b:6d:c5:ec:43:b8:ac:ef:4a:40:02:7e:cc:
79:8b:77:df:77:14:ef:86:80:ec:4f:eb:a2:83:ec:
6f:28:32:0c:bd:b1:6f:cd:e0:82:15:5b:62:7b:f8:
ae:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:0D:7D:E0:78:44:7B:5F:B7:33:AC:64:65:68:2F:AB:57:AD:80:03
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/fe3aef-8fb4-4f6c-bc71-56c899c6f8d8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/fe3aef-8fb4-4f6c-bc71-56c899c6f8d8/1/oQ194HhEe1-3M6xkZWgvq1etgAM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.83.160.0/20
IPv6:
2a0e:30c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21058
Signature Algorithm: sha256WithRSAEncryption
a5:88:48:cd:b4:80:f1:7a:d3:64:76:2b:35:a6:f7:4b:cc:8c:
ca:ab:95:a6:06:ce:4d:7f:2c:30:04:9e:29:09:e4:d2:21:5f:
fd:a9:85:15:f7:33:e3:13:c4:44:11:d4:58:f0:f6:d6:b6:7a:
11:8b:13:ad:63:73:6e:a4:71:5b:6a:5a:32:60:3b:14:6f:fd:
8c:31:44:14:a3:27:db:56:ae:72:79:a3:f4:f8:e1:c6:cc:ce:
50:47:be:0b:5b:a9:95:f4:d7:a8:b3:47:f5:35:c5:4d:fc:7c:
57:c4:19:d7:b8:5b:7a:a1:31:5a:93:5e:5d:78:38:95:8b:a4:
c5:c8:b5:2c:bd:44:cd:b2:e1:64:dd:bc:bc:10:69:ec:ea:7d:
98:4b:d2:63:8b:53:bc:48:44:b4:bb:d7:8a:bb:05:44:8e:0e:
18:34:9b:30:97:62:e9:45:90:e2:9d:e3:37:7b:26:8a:9a:b6:
fa:60:31:f6:ab:23:fe:ce:46:54:5f:78:10:a9:14:99:39:dd:
c4:ed:08:35:2d:d7:41:e4:77:02:29:ca:bf:2a:92:08:b7:fd:
84:82:12:d5:47:9b:87:1b:57:88:dd:2d:0e:ca:2c:8b:ae:da:
0f:28:19:83:94:45:56:c3:9e:a3:db:bc:97:99:49:9f:0e:69:
b6:5e:97:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:56:44 2024 by rpki-client on console-ams.rpki-client.org