Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rbm2KP0zCT-irAiQ7hzlVcuoJnE.cer
File: rbm2KP0zCT-irAiQ7hzlVcuoJnE.cer (raw, json)
Hash identifier: yi1VJLeKHtw+td3W0JfBAvxQPUBKOt3ieVdmpf9fKaY=
Subject key identifier: AD:B9:B6:28:FD:33:09:3F:A2:AC:08:90:EE:1C:E5:55:CB:A8:26:71
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7953E30F5309B8BE72DBC02DDFA9B2B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/24/d75206-3b0e-45e6-b0aa-37d41c5b81bf/1/rbm2KP0zCT-irAiQ7hzlVcuoJnE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/24/d75206-3b0e-45e6-b0aa-37d41c5b81bf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 185.225.191.0/24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 11:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:3e:30:f5:30:9b:8b:e7:2d:bc:02:dd:fa:9b:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=adb9b628fd33093fa2ac0890ee1ce555cba82671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2a:82:ec:13:5b:e5:be:3f:fe:be:ed:48:6f:
28:67:34:78:2a:50:b9:88:56:1d:22:32:a9:92:64:
08:26:b7:c6:3a:4e:9d:05:95:6d:fa:d0:4d:4f:f5:
56:ad:30:60:43:3e:25:2a:df:aa:dc:65:d3:23:ba:
ef:b8:4d:ed:25:74:b9:79:83:a6:c4:a4:eb:1c:54:
9f:15:9e:bc:84:b5:0e:67:4e:84:6b:81:2c:20:b7:
d8:6c:b3:e1:61:30:6d:24:d2:7f:84:6a:6b:55:3e:
13:76:c9:0a:4d:af:a6:b9:24:17:e8:51:3a:d9:43:
36:e2:51:4b:86:62:02:76:f2:c9:81:57:09:be:db:
df:45:2e:5c:b1:04:b2:00:1d:45:da:d1:4a:b2:96:
3a:d1:65:b8:40:cf:5f:49:07:b0:47:e6:91:e0:e2:
98:cb:4d:15:14:25:3f:e3:26:15:2d:54:c5:18:7f:
86:4c:f6:15:33:ea:8b:61:ab:96:3f:b4:d9:35:b9:
85:31:83:5b:58:68:e8:9c:ea:bf:7b:88:f4:3e:cb:
60:ce:4a:5d:15:9d:f1:35:8d:fe:68:f6:df:3f:b2:
39:bd:e2:f4:4d:e8:02:b3:4b:d9:cb:90:bc:61:70:
9b:2b:bd:71:fc:19:56:1d:e5:2a:0e:e2:6f:a3:ca:
0a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B9:B6:28:FD:33:09:3F:A2:AC:08:90:EE:1C:E5:55:CB:A8:26:71
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d75206-3b0e-45e6-b0aa-37d41c5b81bf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d75206-3b0e-45e6-b0aa-37d41c5b81bf/1/rbm2KP0zCT-irAiQ7hzlVcuoJnE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.191.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:5f:b4:37:b6:c2:07:52:3d:5c:9b:bd:36:89:f3:8d:fa:d4:
76:c5:15:f6:96:39:c0:0b:6f:35:e3:cd:70:f9:ff:63:d0:20:
c0:69:2a:aa:f6:dd:4f:fa:87:60:05:b8:bd:fa:fe:80:aa:02:
53:86:05:44:17:8d:80:96:fb:b3:73:b3:e0:d0:21:87:1c:39:
5c:0a:e1:1e:e4:f8:2a:31:6e:d3:d6:6e:e4:84:83:e2:63:42:
3c:ec:8f:b9:4e:66:92:d5:77:33:c9:75:0f:03:b6:58:60:43:
f9:9b:62:27:3d:ff:41:17:f0:2d:3b:ec:95:b6:33:a1:9f:d8:
04:43:e9:e6:20:13:28:d4:b4:f3:50:5c:1c:8c:f2:ce:b4:b6:
56:f8:14:ec:1c:3d:bd:79:fc:da:90:4a:ce:3b:72:83:90:8a:
77:fc:01:a9:99:95:23:8d:cc:b0:28:c3:9c:e7:bf:2c:e7:ca:
76:0f:0d:cd:d7:88:33:0c:cd:12:de:df:b7:bd:4c:3d:cc:ed:
07:6e:79:11:5c:bb:f1:a0:60:a6:1e:0f:79:18:d9:c9:38:2c:
7a:8d:01:e3:7b:26:88:f7:c9:2e:1f:ae:59:81:34:23:bd:65:
bb:4e:04:b8:42:f0:b2:0a:c1:4b:43:1e:b6:42:e0:ca:b7:07:
d8:0d:1d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:03:05 2024 by rpki-client on console-fra.rpki-client.org