Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zFshNT-Sy9vzt9JRO5pGWsU7LTk.cer
File: zFshNT-Sy9vzt9JRO5pGWsU7LTk.cer (raw, json)
Hash identifier: u5pItJywkrk0PuztazWPQZFDN6Dh1RVegtzvdd3j7EI=
Subject key identifier: CC:5B:21:35:3F:92:CB:DB:F3:B7:D2:51:3B:9A:46:5A:C5:3B:2D:39
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019407BD7B84120E4C05A64CED176F2EB72A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/zFshNT-Sy9vzt9JRO5pGWsU7LTk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 27 Dec 2024 10:50:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 2a01:65c0::/32
Validation: Failed, certificate revoked on Mon 30 Dec 2024 08:05:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:07:bd:7b:84:12:0e:4c:05:a6:4c:ed:17:6f:2e:b7:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Dec 27 10:50:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc5b21353f92cbdbf3b7d2513b9a465ac53b2d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b9:2a:88:cb:94:b8:50:8f:af:a6:eb:fd:81:
7c:69:e4:7b:fc:75:c4:14:df:6b:79:e1:f4:e8:54:
1b:a9:8e:fd:f8:44:c3:0b:71:71:a6:6f:9d:9f:31:
b4:3e:56:25:0b:52:09:6f:94:fd:95:9b:bf:c7:ee:
e0:21:5d:de:24:09:3c:94:d7:e7:a5:ad:e2:7d:8e:
b0:f5:dc:d9:fd:e3:b9:6c:f7:ec:4d:d0:0f:4b:27:
f0:57:19:84:bd:89:8e:cb:a4:71:3d:d0:57:27:23:
29:e5:d6:8b:4c:5f:fa:82:23:c5:09:53:71:9b:ef:
2a:5d:75:23:62:33:c4:16:3c:4c:64:b8:ba:20:84:
8d:b0:b3:15:8b:c6:ba:19:98:ff:2f:8a:84:5c:f5:
91:e5:ed:aa:65:8e:c1:e4:54:3e:5a:4b:e7:f9:5a:
c5:77:de:5c:f2:1b:ba:e8:53:de:f7:e8:47:6e:25:
08:83:af:72:21:1e:48:50:22:24:bf:78:82:70:94:
29:8c:1f:13:52:59:f1:ef:2b:05:e6:30:1e:7b:74:
7c:4a:f8:df:4a:6e:f2:cd:57:c9:7d:6b:d4:67:ca:
0f:50:71:84:16:ce:1f:e9:70:e1:94:93:0f:87:12:
6b:9c:97:79:3c:f6:30:64:bd:e0:5b:06:99:7b:13:
2c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:5B:21:35:3F:92:CB:DB:F3:B7:D2:51:3B:9A:46:5A:C5:3B:2D:39
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/zFshNT-Sy9vzt9JRO5pGWsU7LTk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:65c0::/32
Signature Algorithm: sha256WithRSAEncryption
31:c7:b4:1b:62:d9:32:cb:99:4b:e2:b1:69:e8:50:64:7b:57:
e4:b3:09:bc:ec:5e:d0:95:56:98:93:06:8e:d3:6e:94:d6:a9:
03:4c:a3:fd:25:2d:64:3b:15:20:17:d3:ce:f4:a8:1e:aa:37:
e1:af:79:35:04:5c:7e:c7:9d:f6:65:33:9a:04:44:40:04:bd:
5f:53:bf:29:ee:14:82:d5:63:a2:09:8a:3a:26:be:91:3c:99:
64:2f:ca:e7:dd:05:d6:92:81:74:4d:1c:40:34:1e:a5:9c:f1:
6c:29:f0:37:f3:89:16:8e:67:9b:86:a2:89:6a:34:6d:5c:77:
c0:b1:98:ad:32:25:64:f4:51:01:eb:85:a1:8c:11:e7:02:b9:
fc:b0:7a:cc:93:ab:5d:91:f0:1a:8c:11:ff:d5:78:fd:d7:87:
af:80:ea:83:c6:9a:0f:3b:99:06:9a:66:dd:5d:c5:b0:c5:04:
0e:24:d3:64:67:94:d0:2d:67:18:43:73:7f:28:dd:0f:d0:5f:
83:48:ff:5f:b7:43:bf:ad:68:19:d4:79:df:e8:ac:54:06:af:
88:ce:29:ec:29:2d:d5:d3:9d:58:f1:ea:c0:81:ff:57:d8:02:
73:aa:4e:d6:a4:39:41:79:d5:eb:78:17:73:91:88:b6:ef:90:
80:6d:55:6e
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAZQHvXuEEg5MBaZM7RdvLrcqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQxMjI3MTA1MDQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzViMjEzNTNmOTJjYmRiZjNiN2QyNTEzYjlhNDY1YWM1M2IyZDM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrkqiMuUuFCPr6br/YF8aeR7/HXE
FN9reeH06FQbqY79+ETDC3Fxpm+dnzG0PlYlC1IJb5T9lZu/x+7gIV3eJAk8lNfn
pa3ifY6w9dzZ/eO5bPfsTdAPSyfwVxmEvYmOy6RxPdBXJyMp5daLTF/6giPFCVNx
m+8qXXUjYjPEFjxMZLi6IISNsLMVi8a6GZj/L4qEXPWR5e2qZY7B5FQ+Wkvn+VrF
d95c8hu66FPe9+hHbiUIg69yIR5IUCIkv3iCcJQpjB8TUlnx7ysF5jAee3R8Svjf
Sm7yzVfJfWvUZ8oPUHGEFs4f6XDhlJMPhxJrnJd5PPYwZL3gWwaZexMsHQIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFMxbITU/ksvb87fSUTuaRlrFOy05MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VkLzRmYjA1
Ny01ZGFlLTQ4NTEtYWQ0Ny01YWQ1ZjMzY2M5OWMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQvNGZiMDU3
LTVkYWUtNDg1MS1hZDQ3LTVhZDVmMzNjYzk5Yy8xL3pGc2hOVC1TeTl2enQ5SlJP
NXBHV3NVN0xUay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUF
BwEHAQH/BBEwDzANBAIAAjAHAwUAKgFlwDANBgkqhkiG9w0BAQsFAAOCAQEAMce0
G2LZMsuZS+KxaehQZHtX5LMJvOxe0JVWmJMGjtNulNapA0yj/SUtZDsVIBfTzvSo
Hqo34a95NQRcfsed9mUzmgREQAS9X1O/Ke4UgtVjogmKOia+kTyZZC/K590F1pKB
dE0cQDQepZzxbCnwN/OJFo5nm4aiiWo0bVx3wLGYrTIlZPRRAeuFoYwR5wK5/LB6
zJOrXZHwGowR/9V4/deHr4Dqg8aaDzuZBppm3V3FsMUEDiTTZGeU0C1nGENzfyjd
D9Bfg0j/X7dDv61oGdR53+isVAaviM4p7Ckt1dOdWPHqwIH/V9gCc6pO1qQ5QXnV
63gXc5GItu+QgG1Vbg==
-----END CERTIFICATE-----
Generated at Wed Apr 23 02:34:23 2025 by rpki-client