Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tZ2dDCjvR_5BQupRkFWHFyywMwY.cer
File: tZ2dDCjvR_5BQupRkFWHFyywMwY.cer (raw, json)
Hash identifier: MDo/7kXwDVBhTBjK860JN3mCGaf8KCMDGJwQWC82PVs=
Subject key identifier: B5:9D:9D:0C:28:EF:47:FE:41:42:EA:51:90:55:87:17:2C:B0:33:06
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856F4088D8D8F2B8AF0C7A97CC2039B04F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/75/8cd8ba-a04a-43b9-9807-3f8f8fb83ccf/1/tZ2dDCjvR_5BQupRkFWHFyywMwY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/75/8cd8ba-a04a-43b9-9807-3f8f8fb83ccf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 21:32:58 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 176.126.109.0/24
IP: 2a11:ed40::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:40:88:d8:d8:f2:b8:af:0c:7a:97:cc:20:39:b0:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:32:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b59d9d0c28ef47fe4142ea51905587172cb03306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e7:42:80:92:a8:22:7e:47:f0:78:2d:22:38:
02:63:88:c7:8b:2e:02:db:22:5e:a5:00:1a:b9:bf:
3e:d8:c1:84:5f:60:3f:76:74:c8:6a:4c:d7:90:97:
37:69:7d:5e:98:46:11:83:b0:2f:e4:e8:df:73:c3:
56:a8:84:54:06:07:00:10:e6:0d:b3:c1:87:3a:49:
12:c3:22:4b:62:a9:ab:bc:79:f0:65:85:3c:36:de:
74:66:f4:3e:2e:c3:ac:36:a1:35:d5:62:d7:c2:96:
dc:36:2f:47:4f:5d:17:41:61:4a:d0:9b:80:c9:69:
dc:00:c6:21:69:a1:b0:85:36:ef:9f:79:16:b1:e9:
dc:ed:17:02:f6:43:83:5a:41:ae:6d:96:6b:82:0b:
2c:af:9d:9c:d0:18:e8:6d:2b:5f:fd:6b:30:0b:d1:
ed:93:50:c6:96:33:35:b9:77:7a:97:b7:12:58:6c:
d4:6b:15:1f:00:6a:b2:5a:72:62:fe:54:5a:ee:a0:
53:de:3f:2f:0c:cc:4c:8c:8e:96:84:3d:b2:32:d4:
e0:b6:ea:44:41:17:7a:fd:fd:b8:42:46:b0:e6:20:
d0:27:c5:f4:55:6d:10:00:82:62:45:7e:43:6d:cf:
65:40:6c:51:80:48:8c:d7:54:2c:71:9b:2e:20:51:
67:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:9D:9D:0C:28:EF:47:FE:41:42:EA:51:90:55:87:17:2C:B0:33:06
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8cd8ba-a04a-43b9-9807-3f8f8fb83ccf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8cd8ba-a04a-43b9-9807-3f8f8fb83ccf/1/tZ2dDCjvR_5BQupRkFWHFyywMwY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.109.0/24
IPv6:
2a11:ed40::/29
Signature Algorithm: sha256WithRSAEncryption
ac:0c:04:70:7c:22:4e:df:b8:b9:7a:5d:e4:a7:0d:ce:25:30:
22:8b:50:c8:93:4d:cb:c2:f9:41:01:e5:0b:2c:60:58:0f:01:
1b:ea:ab:b0:04:e5:8e:af:8c:17:5d:5d:14:ab:87:59:6c:c9:
b1:2d:70:a7:f8:c8:87:9c:37:14:f7:60:70:76:3b:f0:7e:76:
e8:0a:49:f0:1c:59:26:7c:e5:c2:72:be:b7:65:ad:3c:12:b3:
9f:1e:7d:11:43:cf:8a:2b:a0:d0:b3:9a:b2:bc:a2:82:d7:1b:
c2:04:2a:a9:90:04:38:ec:a3:12:f8:eb:4c:e2:8a:4a:33:2f:
19:0d:6f:e3:e9:81:16:5d:38:c0:1e:b2:7a:2c:32:dd:ab:bf:
1a:1d:86:21:5c:fb:6f:2c:1f:cd:aa:2b:1c:cc:56:73:29:a6:
ff:4d:ee:45:48:de:bb:82:44:67:66:9d:78:8f:93:42:ef:90:
69:79:56:48:a6:05:a1:3d:d1:c4:82:0c:f6:28:17:84:cf:28:
cf:ff:33:1e:a3:8a:1d:54:46:c7:04:85:c4:5e:a8:08:ec:9d:
b0:f2:2f:8b:76:3f:1c:91:f9:18:0f:2c:fa:3c:71:53:ba:fe:
05:f2:51:c9:d5:7f:e4:15:d0:d6:57:84:b0:8a:c0:72:02:65:
f4:57:6d:f6
-----BEGIN CERTIFICATE-----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Generated at Thu Nov 2 16:32:49 2023 by rpki-client on console-ams.rpki-client.org