Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tfOkHre0qwKEW1sMCD9fQGwoOho.cer
File: tfOkHre0qwKEW1sMCD9fQGwoOho.cer (raw, json)
Hash identifier: SVYlv2vQRb6yzjBQYpFNjvmJ7U3HQjjdJ9y02xrvWJI=
Subject key identifier: B5:F3:A4:1E:B7:B4:AB:02:84:5B:5B:0C:08:3F:5F:40:6C:28:3A:1A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01905F72A3A3563834CFAFB8CE0851AAD44F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cc/2e8cd3-8859-4ba0-b86e-db1cbe79bf3b/1/tfOkHre0qwKEW1sMCD9fQGwoOho.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cc/2e8cd3-8859-4ba0-b86e-db1cbe79bf3b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 28 Jun 2024 15:24:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 185.30.244.0/22
IP: 2a00:a660::/32
Validation: Failed, certificate revoked on Fri 06 Sep 2024 09:42:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5f:72:a3:a3:56:38:34:cf:af:b8:ce:08:51:aa:d4:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 28 15:24:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5f3a41eb7b4ab02845b5b0c083f5f406c283a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ca:da:c7:97:87:6f:fd:77:b0:7f:5a:7c:31:
af:66:02:d8:5b:2a:8d:46:84:b4:af:d1:c4:5c:7f:
98:26:03:64:2e:49:69:46:fd:61:49:2c:ca:3c:a2:
ef:e3:34:98:66:54:37:45:8d:33:ea:aa:d1:e5:fa:
25:0c:0d:f9:f1:ac:69:3a:9d:24:ce:36:a6:32:b0:
21:ae:7c:59:58:15:40:fd:06:99:40:f9:a4:cb:1e:
f5:b5:b3:35:32:5d:ce:85:e3:fe:01:2a:33:35:b1:
4d:83:fe:da:53:83:55:e0:c4:57:ab:73:96:67:2b:
48:ab:82:ee:88:3f:42:fb:41:8a:7a:f4:3e:3a:f6:
13:83:76:a1:46:ff:e5:6b:5b:9d:d4:2d:42:67:9b:
a2:72:f2:9f:f9:d5:08:2a:21:b3:47:d8:b1:9c:b9:
e3:01:b6:19:e0:14:20:1e:78:33:3c:3c:65:1c:59:
f5:d6:a2:7c:0a:46:bf:a4:ab:46:8f:08:3f:4a:e0:
aa:0c:6c:d1:4c:b2:8a:99:e0:11:43:9e:89:ed:20:
c7:36:f6:8a:b1:55:58:bd:98:0f:7a:6d:6a:16:bf:
24:2b:ad:22:3b:4f:f4:ac:d2:1d:bf:97:ba:b2:bc:
c0:77:fc:9f:8d:29:1c:6c:49:f3:d4:3a:e3:4b:6e:
42:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F3:A4:1E:B7:B4:AB:02:84:5B:5B:0C:08:3F:5F:40:6C:28:3A:1A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2e8cd3-8859-4ba0-b86e-db1cbe79bf3b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2e8cd3-8859-4ba0-b86e-db1cbe79bf3b/1/tfOkHre0qwKEW1sMCD9fQGwoOho.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.244.0/22
IPv6:
2a00:a660::/32
Signature Algorithm: sha256WithRSAEncryption
22:f4:55:4c:76:d8:9f:19:f3:dc:c9:4e:f9:79:88:50:05:17:
54:6a:0a:89:9e:92:b9:26:6a:e4:3a:4b:43:87:94:66:c2:a8:
8b:e9:51:ca:10:d1:90:76:62:14:9d:99:43:39:14:14:60:6b:
d4:54:14:95:56:2d:11:57:c2:79:67:61:6e:cd:eb:2a:50:b6:
8d:0d:06:5a:71:a9:a8:34:eb:19:46:95:c6:41:bc:34:f9:48:
99:3a:9c:f5:7f:c3:b8:8f:1e:73:ed:74:d2:0b:97:5a:f0:20:
bc:21:4b:d7:07:26:e8:76:83:c4:88:47:af:73:e9:ad:8c:50:
35:72:d0:b6:e9:78:08:3c:30:67:7d:05:9b:02:ef:10:ce:f3:
5e:25:8e:b8:f9:c7:1e:a7:3f:cc:6e:23:48:da:67:a1:c9:72:
45:f4:64:ce:67:75:40:c3:20:2f:87:82:0c:e8:9a:8d:3e:4c:
cc:a9:e1:4f:6c:84:0a:5b:39:92:80:86:96:a6:2f:cd:53:7a:
90:c6:21:43:a3:3a:c8:1d:34:1c:d8:be:12:3c:b8:b7:da:fc:
f7:d4:b6:3e:3e:1d:1b:23:c5:8a:db:3c:b1:4e:e3:87:57:96:
d9:93:27:3e:00:1c:ae:f8:ac:b2:a2:86:0c:3b:b8:92:77:a4:
3f:d2:67:85
-----BEGIN CERTIFICATE-----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Generated at Fri Sep 6 10:58:45 2024 by rpki-client on console-fra.rpki-client.org