Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/14082299D486857A824F7308B67507C731520D07.cer
File: 14082299D486857A824F7308B67507C731520D07.cer (raw, json)
Hash identifier: DLQIGOaWZVz11etCfh+CvaTMQUZUaSKB4u98xpNq2HE=
Subject key identifier: 14:08:22:99:D4:86:85:7A:82:4F:73:08:B6:75:07:C7:31:52:0D:07
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 069F636964334683F5171071F9B818496D84EDD8
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Manifest: rsync://rpki.zappiehost.com/repo/HAZEL_UID_18860/2/14082299D486857A824F7308B67507C731520D07.mft
caRepository: rsync://rpki.zappiehost.com/repo/HAZEL_UID_18860/2/
Notify URL: https://rpki.zappiehost.com/rrdp/notification.xml
Certificate not before: Fri 19 Jan 2024 17:22:14 +0000
Certificate not after: Fri 17 Jan 2025 17:27:14 +0000
Subordinate resources: IP: 2a07:54c0::/32
Validation: Failed, certificate revoked on Sat 20 Jan 2024 19:50:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:9f:63:69:64:33:46:83:f5:17:10:71:f9:b8:18:49:6d:84:ed:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: Jan 19 17:22:14 2024 GMT
Not After : Jan 17 17:27:14 2025 GMT
Subject: CN=14082299D486857A824F7308B67507C731520D07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a5:77:bc:ed:06:60:01:bd:4c:80:d9:5f:d0:
12:7e:10:e3:fb:a7:9d:fc:1f:14:55:1a:47:03:d5:
7f:a0:42:1c:f9:fd:c4:f3:d9:4f:b7:ed:d1:6e:1e:
c4:4a:a2:a2:75:ae:4f:5f:d8:fe:5b:91:e0:37:90:
26:33:c8:a4:e1:19:33:60:65:2e:dc:58:09:93:fe:
67:e5:fa:f0:08:d3:81:cc:ff:8d:66:fd:96:7f:56:
f6:28:90:73:6f:de:2d:84:ff:e4:b1:ef:5c:a9:16:
ce:9c:00:aa:53:d4:5a:e4:be:ce:31:04:2e:4c:ad:
6e:a0:01:42:f2:b0:06:db:ef:83:c3:13:12:17:73:
38:1b:c5:b0:4e:17:0e:4f:d2:3f:dc:97:3a:1c:92:
fc:a5:e0:3b:9c:b9:e8:90:2a:23:2e:da:b1:9b:86:
d2:cf:6f:ae:bf:fb:9a:32:24:e2:87:b0:83:5b:54:
41:57:d5:87:13:30:6c:7a:a3:c6:cd:5b:13:6d:a1:
c5:34:b3:3b:9a:8e:f6:98:52:28:ea:35:4f:b7:cb:
15:9a:36:63:ba:f6:8a:b5:95:fd:15:8f:de:f2:eb:
ef:1e:84:a0:40:d8:dd:d4:d5:34:ca:1b:4a:45:af:
f8:e2:f0:dc:e2:e8:fc:59:3e:ea:25:e7:c2:9a:c0:
d9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
14:08:22:99:D4:86:85:7A:82:4F:73:08:B6:75:07:C7:31:52:0D:07
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.zappiehost.com/repo/HAZEL_UID_18860/2/
RPKI Manifest - URI:rsync://rpki.zappiehost.com/repo/HAZEL_UID_18860/2/14082299D486857A824F7308B67507C731520D07.mft
RPKI Notify - URI:https://rpki.zappiehost.com/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c0::/32
Signature Algorithm: sha256WithRSAEncryption
60:db:3b:cd:f2:b6:ce:63:40:f8:4b:7b:2a:5a:32:03:2c:b8:
4b:47:0c:2b:36:72:81:94:90:5e:c5:2c:5e:a5:fe:60:6c:26:
1e:48:9b:14:59:fd:b9:86:30:7f:13:dc:75:e1:3f:e9:d2:70:
f9:e9:7d:f5:04:d2:76:ce:fa:8b:e1:dc:fd:a2:76:52:8e:a5:
71:8b:52:87:4f:59:04:44:c6:48:b9:65:6e:22:27:60:aa:82:
64:5d:43:d1:c7:4c:ac:d8:2c:4f:60:0d:0f:b1:8a:af:5d:aa:
c1:32:a3:54:e6:41:59:7a:71:1f:3e:9d:39:f7:73:b4:d3:68:
33:6f:45:1c:2b:6b:26:96:db:91:e9:56:59:27:d8:2d:81:f8:
10:99:d8:9c:cf:0d:8f:3c:35:de:04:90:7c:15:24:e8:fc:87:
8e:ad:b8:e4:31:50:3a:bf:01:70:86:71:aa:b0:7b:62:1a:55:
b9:75:60:63:2a:f3:ce:83:8e:fd:a5:37:4d:6a:ac:09:4e:4b:
f9:57:d0:76:4b:e0:b4:f8:ac:e4:5e:61:8a:b5:d4:80:a4:0f:
fb:62:a5:f4:3e:86:ea:e2:8f:4e:2b:de:09:0a:e1:b0:46:67:
40:3b:e7:32:b9:0a:92:07:07:8d:8d:28:50:94:00:13:6f:04:
c1:82:01:8a
-----BEGIN CERTIFICATE-----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Generated at Sat Jan 20 22:48:22 2024 by rpki-client on console-fra.rpki-client.org