Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/IIXM3tKKaNhyy_GXVDEeb2FmSbE.cer
File: IIXM3tKKaNhyy_GXVDEeb2FmSbE.cer (raw, json)
Hash identifier: 9IZ9FlcnQmMsMq68dHuYtc43udaHXhgCATloywf2kPI=
Subject key identifier: 20:85:CC:DE:D2:8A:68:D8:72:CB:F1:97:54:31:1E:6F:61:66:49:B1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856AAD927DD34314ABF1FBB7AA6926E964
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki1.terratransit.de/repo/TerraTransit/177/2085CCDED28A68D872CBF19754311E6F616649B1.mft
caRepository: rsync://rpki1.terratransit.de/repo/TerraTransit/177
Notify URL: https://rpki1.terratransit.de/rrdp/notification.xml
Certificate not before: Sun 01 Jan 2023 00:13:58 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 153.92.40.0/24
IP: 157.97.132.0 -- 157.97.134.255
IP: 185.153.176.0/22
IP: 185.162.44.0/22
IP: 185.163.52.0/22
IP: 185.164.108.0/22
IP: 185.165.84.0/22
IP: 185.169.0.0/22
IP: 185.169.252.0/22
IP: 185.170.196.0/22
IP: 185.172.52.0/22
IP: 185.173.108.0/22
IP: 185.174.252.0/22
IP: 185.175.232.0/22
IP: 185.176.252.0/22
IP: 185.178.72.0/22
IP: 185.179.152.0/22
IP: 185.181.112.0/22
IP: 185.182.232.0/22
IP: 185.183.176.0/22
IP: 2a07:87c0::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6a:ad:92:7d:d3:43:14:ab:f1:fb:b7:aa:69:26:e9:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2085ccded28a68d872cbf19754311e6f616649b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:20:bb:9d:90:1b:28:bf:0d:20:83:ae:5c:5d:
c4:0e:e9:f7:85:0c:8a:f0:98:81:05:c3:da:b7:6e:
9a:2d:0b:04:51:e2:72:d7:53:6e:d2:3a:5a:58:51:
95:2e:d9:31:cc:40:5b:cf:34:d2:e6:78:29:5a:fa:
50:61:aa:ac:29:4c:0b:e1:14:86:31:b0:92:5b:a3:
f8:76:9c:1a:cb:34:4b:59:6b:5d:c2:3e:51:8a:43:
42:96:90:37:4c:3f:e0:a2:32:f5:86:2f:03:18:03:
bc:46:65:3c:12:7c:24:f6:c8:4a:84:ab:47:76:2a:
f4:c3:24:b2:b9:d7:9d:0f:b4:81:68:64:4a:c6:82:
11:c7:1e:f2:ec:12:34:8b:8f:23:74:c8:3a:e4:38:
ab:67:b0:34:37:b9:f4:da:0a:23:c6:bb:13:b0:02:
20:26:bd:10:09:40:dd:d2:bf:9c:51:8b:16:08:69:
9b:6f:2f:c5:0b:c0:5e:bd:88:54:45:59:b0:b5:02:
71:fa:e9:25:97:0c:06:59:37:e2:18:de:bb:a1:62:
2b:48:f5:30:22:db:02:aa:71:11:8c:e3:34:7d:9a:
ee:6d:96:ca:50:6e:87:8d:38:cc:d3:97:41:f1:57:
ff:c9:43:b3:98:d3:7a:5d:c7:14:90:de:dc:31:6c:
b5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:85:CC:DE:D2:8A:68:D8:72:CB:F1:97:54:31:1E:6F:61:66:49:B1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/177
RPKI Manifest - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/177/2085CCDED28A68D872CBF19754311E6F616649B1.mft
RPKI Notify - URI:https://rpki1.terratransit.de/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.92.40.0/24
157.97.132.0-157.97.134.255
185.153.176.0/22
185.162.44.0/22
185.163.52.0/22
185.164.108.0/22
185.165.84.0/22
185.169.0.0/22
185.169.252.0/22
185.170.196.0/22
185.172.52.0/22
185.173.108.0/22
185.174.252.0/22
185.175.232.0/22
185.176.252.0/22
185.178.72.0/22
185.179.152.0/22
185.181.112.0/22
185.182.232.0/22
185.183.176.0/22
IPv6:
2a07:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
8d:06:a1:c6:62:f2:bb:5f:96:08:1e:64:62:28:c5:37:c0:02:
4b:a2:af:5a:54:6f:10:47:e3:1d:4f:bb:53:55:1d:ce:da:ae:
73:0c:88:d8:be:5c:05:9a:c2:62:70:a1:53:e0:9b:60:82:db:
84:b6:20:23:61:5c:c1:6e:ed:64:eb:ca:35:46:92:1f:e3:c6:
e4:ff:fc:09:9c:89:26:6a:dc:fb:0c:f3:48:50:82:90:a4:58:
79:9e:df:3e:b0:d4:8c:99:c3:5b:d0:20:7c:56:b9:4e:d4:51:
58:cb:ad:5c:22:f8:ab:28:5e:ac:bf:ff:d2:49:3e:e4:dd:f4:
33:77:2d:ed:df:a2:77:a3:d0:7d:df:5b:68:8e:78:18:ef:e0:
2d:7d:cf:98:04:08:67:13:6e:b4:12:b6:3b:3f:7c:03:11:18:
0a:95:12:49:bb:ce:6e:b5:ce:85:ff:04:04:8c:51:09:e2:47:
73:0f:4b:56:5f:b6:74:09:04:6f:04:86:af:37:3a:c3:11:b8:
90:0c:91:a1:1b:f1:30:a3:24:6b:38:09:d6:84:88:22:df:d8:
46:a4:50:66:d5:c4:bb:f0:59:e1:3b:ba:43:ad:26:dc:fd:bc:
ca:0c:ce:9a:3f:75:c7:8c:28:43:e1:30:3d:ac:53:17:89:5d:
17:1d:11:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:31 2023 by rpki-client on console.sobornost.net