Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pmL-vIa9OcnqxKukczoBwOscDxo.cer
File: pmL-vIa9OcnqxKukczoBwOscDxo.cer (raw, json)
Hash identifier: gfHyQKHoPAymm46a2HIwMQ9WPVtV3Nq4JgHW2R7/peg=
Subject key identifier: A6:62:FE:BC:86:BD:39:C9:EA:C4:AB:A4:73:3A:01:C0:EB:1C:0F:1A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190B6C95C8D820610ACCF97E93126411020
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.sub.apnic.net/repository/A916C75D0000/3/A662FEBC86BD39C9EAC4ABA4733A01C0EB1C0F1A.mft
caRepository: rsync://rpki.sub.apnic.net/repository/A916C75D0000/3/
Notify URL: https://rrdp.sub.apnic.net/notification.xml
Certificate not before: Mon 15 Jul 2024 14:26:08 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 59436
IP: 88.135.74.0/24
IP: 2a14:5c0::/29
Validation: Failed, certificate revoked on Fri 16 Aug 2024 06:57:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b6:c9:5c:8d:82:06:10:ac:cf:97:e9:31:26:41:10:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 15 14:26:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a662febc86bd39c9eac4aba4733a01c0eb1c0f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ec:58:2c:f7:43:c9:b5:43:61:3f:94:77:be:
16:4e:00:b0:5a:30:d0:45:c8:63:a4:83:11:83:ad:
bc:48:a6:98:b4:5f:48:e5:5f:1b:96:f0:ac:f6:ac:
af:ba:b9:90:08:64:57:b1:18:c6:0d:b1:28:26:e9:
6e:17:c7:83:09:20:2e:5a:ed:70:b2:a8:de:4b:f1:
2b:71:2a:96:6c:99:68:c5:7c:be:c0:cd:7b:73:89:
b9:48:93:d6:1d:fc:76:20:3f:d5:9e:cd:01:33:3f:
a2:6b:f1:1b:14:38:09:c5:d8:20:3a:f5:2d:ba:60:
da:5f:1f:06:3b:94:9d:af:b0:9c:ee:98:dd:fd:13:
cf:70:3c:61:81:99:8b:18:79:5a:f3:80:e1:92:fe:
d8:d5:5f:95:1e:e6:ff:34:96:63:12:92:69:11:fd:
e3:00:17:a6:26:e5:11:25:ae:72:c3:09:82:94:49:
71:55:10:78:23:bf:e8:57:90:0b:fc:a5:5a:67:be:
b0:a1:0d:ee:bb:bf:97:50:1e:d0:5d:f7:4b:67:8f:
76:78:49:58:5a:aa:d8:ae:92:cd:17:15:ba:85:ec:
a3:e9:17:32:18:a2:cf:3e:9a:16:7b:51:d5:79:09:
d3:57:e1:7c:04:c5:70:34:63:ed:0f:e0:93:4f:82:
ca:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:62:FE:BC:86:BD:39:C9:EA:C4:AB:A4:73:3A:01:C0:EB:1C:0F:1A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.sub.apnic.net/repository/A916C75D0000/3/
RPKI Manifest - URI:rsync://rpki.sub.apnic.net/repository/A916C75D0000/3/A662FEBC86BD39C9EAC4ABA4733A01C0EB1C0F1A.mft
RPKI Notify - URI:https://rrdp.sub.apnic.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.74.0/24
IPv6:
2a14:5c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59436
Signature Algorithm: sha256WithRSAEncryption
9f:df:c1:6f:fc:32:92:0d:fc:39:4b:a5:b7:03:bf:12:22:9d:
e7:89:53:b5:a9:2d:01:78:6f:51:5f:9b:d2:ce:d6:a2:f6:ab:
5e:7a:a9:a6:83:b4:81:1f:40:f6:61:21:59:3a:f0:cc:23:b4:
fe:14:ae:ae:0c:0d:55:34:06:0c:29:f1:85:81:7b:2f:fb:24:
c1:f0:70:62:9d:bb:44:e8:2b:e4:b9:4e:f5:af:f7:41:60:dd:
b6:27:fd:d1:3c:3d:41:15:ca:5d:32:36:e8:ab:5d:85:ff:72:
fb:9b:c0:7e:39:ef:a1:24:36:7b:cb:87:82:56:3b:ae:76:15:
15:90:9e:82:40:76:34:79:b8:34:c1:4e:08:98:bd:4d:72:c2:
39:ea:6e:9f:e5:a0:3f:ea:02:52:a0:f2:83:7d:f3:60:4d:8b:
f8:0b:33:86:14:84:19:0c:aa:d2:a5:e9:09:fa:25:66:f9:6d:
57:df:1a:1e:f8:20:48:c3:ad:dc:a9:32:8b:36:90:85:ba:a6:
d6:9d:02:ce:5d:15:cc:5c:18:c0:ae:e1:24:c2:8b:ad:7d:fb:
9c:58:84:b7:1b:3f:5d:86:c5:a2:dc:01:4a:e6:f3:a7:30:3c:
6e:b8:39:d6:d2:0f:ed:8e:4b:87:87:b5:3a:b8:f5:79:be:41:
65:9a:fd:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 16 09:53:36 2024 by rpki-client on console-ams.rpki-client.org