Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2qnMSPdVJW71JU-6HRuftrr_kaA.cer
File: 2qnMSPdVJW71JU-6HRuftrr_kaA.cer (raw, json)
Hash identifier: lDTsJXwxPRaBo8ZueGfvY6W2vzsan+6gtXrQAMb7Akc=
Subject key identifier: DA:A9:CC:48:F7:55:25:6E:F5:25:4F:BA:1D:1B:9F:B6:BA:FF:91:A0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348C54463ADC69770F3A2BB80DF9F99
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2a/5db6fa-6a52-4a48-b8cd-8e04403a325a/1/2qnMSPdVJW71JU-6HRuftrr_kaA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2a/5db6fa-6a52-4a48-b8cd-8e04403a325a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 195.35.92.0/22
Validation: Failed, certificate revoked on Wed 20 Mar 2024 08:54:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:c5:44:63:ad:c6:97:70:f3:a2:bb:80:df:9f:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=daa9cc48f755256ef5254fba1d1b9fb6baff91a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d9:4a:bd:6a:38:1a:27:38:62:22:75:37:4f:
09:30:21:6f:da:c1:ee:32:74:0c:ba:36:87:6a:96:
a0:02:d0:36:fe:8c:33:e3:91:f3:58:76:3a:66:f3:
1c:2a:52:25:4d:1a:de:e4:d0:16:80:b7:45:f6:25:
1e:25:a2:51:5c:d2:f5:da:53:9c:70:87:dd:53:1d:
3f:53:3f:96:08:41:04:a8:e5:52:75:bd:e3:12:70:
56:91:d7:0b:96:70:2d:7d:76:78:34:d4:e6:be:ac:
fe:5b:71:e3:56:3b:f1:14:a6:ac:d1:c4:c7:41:09:
21:48:18:dc:bb:7d:9e:79:7a:2c:87:0c:95:f2:ff:
c1:a3:5d:ac:4b:b4:7a:16:bb:95:67:99:56:ea:04:
9a:39:27:13:c4:6a:9f:df:57:46:22:f6:bf:bb:ae:
0c:77:b5:67:06:46:d9:f3:6a:2f:f2:4b:c8:36:f9:
23:fa:da:ec:17:11:47:3e:ed:e8:92:5c:fa:c6:bd:
1f:ad:f6:80:a0:c7:25:d5:e1:ca:16:54:0a:a7:99:
49:ee:84:f6:59:94:3f:e1:b7:1f:0c:05:78:69:f6:
c1:0a:69:78:27:04:93:6e:25:43:74:76:f2:0a:3f:
38:a0:97:c7:17:ce:d4:95:c1:2b:72:07:17:2d:e1:
e9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:A9:CC:48:F7:55:25:6E:F5:25:4F:BA:1D:1B:9F:B6:BA:FF:91:A0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/5db6fa-6a52-4a48-b8cd-8e04403a325a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/5db6fa-6a52-4a48-b8cd-8e04403a325a/1/2qnMSPdVJW71JU-6HRuftrr_kaA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.35.92.0/22
Signature Algorithm: sha256WithRSAEncryption
80:59:ed:0d:52:62:ed:48:e1:ad:26:b1:fa:33:87:ab:a7:1f:
71:35:b7:c2:98:46:ae:f1:2b:6f:44:d9:7b:48:2e:5f:78:b4:
03:51:ea:bb:c7:3d:56:72:cf:43:12:03:22:c1:63:e7:71:11:
fb:cd:ec:f8:ec:66:87:3d:cd:9c:b3:1d:31:ba:82:b4:9f:6c:
0c:d3:99:3f:34:c1:71:50:b7:c1:ed:6f:ff:79:e6:26:80:2a:
df:85:24:84:d6:e0:2c:b6:55:70:79:33:11:27:75:6c:f9:74:
01:ec:50:4f:54:18:aa:84:48:f8:6b:91:db:4e:0d:8a:18:a7:
80:30:64:1c:5d:50:65:c7:ff:eb:00:64:8c:c4:cb:75:c9:0a:
8e:dc:46:aa:89:d7:37:f2:78:58:dc:b0:b4:f7:2b:48:70:e3:
c5:d1:66:33:01:36:83:f8:db:7f:46:f6:0f:56:ec:0f:fd:9b:
a8:97:40:66:96:06:9a:81:0b:2d:15:f7:40:d5:ef:13:b4:8c:
fd:b4:3f:79:43:bf:9a:b5:1b:a1:90:b0:84:8f:fb:a7:f0:0b:
2f:04:85:d1:2b:85:b2:eb:09:ca:eb:41:2f:b3:ff:f0:8c:e5:
04:11:c7:66:91:ec:8f:c9:4b:45:9c:98:24:e5:91:81:cd:8b:
42:d7:6a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 20 12:27:35 2024 by rpki-client on console.sobornost.net