Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.cer
File: z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.cer (raw, json)
Hash identifier: TM0BYjUIhWsJNCoqIUHgUeJz7HJbFtcEnuf87YxfcO4=
Subject key identifier: CF:BA:97:0D:B1:87:D1:8E:19:A9:1E:64:F0:0B:0D:31:60:86:0D:B5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC49359DC6D61F932A8C1FD41AB2631FE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 185.5.144.0/24
IP: 2a14:b00::/29
Validation: Failed, certificate revoked on Thu 02 May 2024 13:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:59:dc:6d:61:f9:32:a8:c1:fd:41:ab:26:31:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cfba970db187d18e19a91e64f00b0d3160860db5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:71:a5:8d:2a:fe:79:e4:7d:a0:a2:9d:d8:98:
ce:ce:d9:75:9e:10:2a:de:53:91:ce:3e:07:47:0d:
bf:02:f8:ae:8b:8e:34:0a:2b:ac:80:8f:69:fd:87:
75:03:6a:28:96:48:4c:88:f5:e5:0d:c1:97:c9:25:
23:19:0d:a0:9e:11:40:9d:be:8b:46:e6:b3:3a:b5:
be:dd:83:b7:43:b8:51:64:ca:48:a9:96:fd:5b:22:
2e:7e:7b:54:f8:4a:4a:88:05:fd:37:c9:a1:be:76:
4b:c2:ca:1d:7c:e0:e8:5b:68:98:1a:45:41:40:e8:
1e:00:11:e2:67:57:e9:ac:ff:15:23:91:d4:fc:72:
4b:3b:3a:1c:48:5a:5a:bb:45:04:d0:21:a3:9b:cf:
6a:01:62:e3:09:b0:42:66:4b:8e:56:4d:f3:bf:b8:
6d:32:83:f8:25:9e:72:26:22:ea:06:98:0c:c2:fb:
32:17:8f:d0:f5:57:c2:13:63:7b:d6:25:e2:2a:41:
66:12:ec:d8:a3:4f:fd:f7:6e:b9:8d:29:22:a3:b8:
43:cb:04:84:32:e7:9a:f1:0e:3f:ad:78:37:c1:f3:
d7:32:90:26:ad:8c:84:a5:6d:ab:1f:69:84:94:5e:
07:96:e8:45:55:95:a1:02:1a:83:4d:86:9e:87:2e:
40:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:BA:97:0D:B1:87:D1:8E:19:A9:1E:64:F0:0B:0D:31:60:86:0D:B5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.144.0/24
IPv6:
2a14:b00::/29
Signature Algorithm: sha256WithRSAEncryption
05:d6:01:8c:45:7b:ca:ea:68:0f:52:0b:1a:33:93:32:d6:d7:
f3:53:13:78:59:1f:9a:af:1c:f3:1a:dd:07:57:bd:cd:ea:1b:
bb:6c:88:77:c8:c6:33:1f:2d:90:8e:98:76:75:b9:e6:f5:03:
eb:b1:89:13:22:e7:81:4d:98:a5:9b:62:7b:04:f5:6c:af:bf:
1f:fd:6a:0e:f9:31:25:2f:4d:26:a2:28:76:e4:22:85:a4:20:
a9:c3:65:05:b4:2d:59:63:fa:e3:0f:14:ff:4c:8f:c4:0f:03:
4d:6c:58:cf:c6:9c:f4:f7:24:1b:4a:f3:59:70:26:d6:af:09:
a3:18:c6:34:2f:f9:d8:05:fa:3f:9c:9c:30:b2:66:29:2c:48:
d6:21:ef:84:24:78:55:4a:c4:9f:c7:0a:76:14:36:4a:a2:66:
9c:af:74:23:32:93:5f:7e:33:df:27:79:ed:58:07:ea:c6:53:
78:77:0f:b8:7e:bb:49:82:9c:39:e7:89:60:c1:1e:52:f0:04:
c3:56:4f:53:35:5b:1c:8e:44:a3:ce:c8:fb:86:ce:c8:e4:cf:
65:61:5b:6b:65:1d:11:a1:42:9c:94:3c:f4:ff:e9:e6:26:d5:
9f:5b:2a:23:27:89:4c:32:2d:bd:7b:8b:98:2f:c7:8a:28:98:
5e:34:8b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 16:58:47 2024 by rpki-client on console-fra.rpki-client.org