Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OHeiWlMfTIffpIswdfEHP1a6SNU.cer
File: OHeiWlMfTIffpIswdfEHP1a6SNU.cer (raw, json)
Hash identifier: d5qj8jh17jzz0Tqh05AUS0WcJoEGf7oSlpKKfJcMj5Y=
Subject key identifier: 38:77:A2:5A:53:1F:4C:87:DF:A4:8B:30:75:F1:07:3F:56:BA:48:D5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856E65AAFC08880074296BB1146D1A5F04
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2a/08688d-2071-42a6-9ea5-fdf014e57f20/1/OHeiWlMfTIffpIswdfEHP1a6SNU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2a/08688d-2071-42a6-9ea5-fdf014e57f20/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 17:33:54 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 62.3.60.0/24
IP: 2a12:1300::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:65:aa:fc:08:88:00:74:29:6b:b1:14:6d:1a:5f:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 17:33:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3877a25a531f4c87dfa48b3075f1073f56ba48d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:49:a1:0b:50:f7:64:43:0d:a0:1b:b8:fa:f6:
87:fc:25:13:fd:af:8b:87:c9:c8:fd:33:ab:97:13:
0c:e8:6c:d7:24:dc:79:d5:55:f1:a5:ea:53:dd:b1:
1e:d1:e9:59:29:17:43:a7:3b:82:ab:55:9b:a1:0a:
74:74:f7:1b:fc:2f:44:0a:7f:e0:9b:ae:7b:1a:fd:
6f:f6:4a:2f:e1:53:1c:09:ed:1b:ec:13:33:fc:23:
33:19:54:e5:83:37:f0:8f:4d:c5:38:f2:26:fe:4a:
9a:b0:61:38:82:93:ab:73:e8:9d:1a:81:3e:07:64:
5d:03:53:4f:57:2c:38:c4:ef:ff:b6:91:c4:08:3b:
3d:b3:8c:58:b8:e6:50:43:3f:23:d4:71:46:15:f0:
0e:6b:fa:bd:1b:28:b0:dd:92:13:16:94:a6:2d:1b:
0d:b0:f6:84:66:3d:b4:76:2e:8c:c5:a4:fa:07:2d:
0b:c9:5c:83:ef:62:6f:33:ce:7c:19:e5:ec:af:f2:
1c:30:21:ae:32:8f:d0:ed:4a:30:fa:e5:33:fb:cc:
95:1c:af:29:29:9e:30:f8:31:08:0c:4d:35:99:99:
88:3f:d1:42:79:38:63:36:f4:ad:6d:f5:af:8b:f6:
c3:12:73:2e:dd:69:3b:82:a7:82:ab:59:fa:7e:a2:
03:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:77:A2:5A:53:1F:4C:87:DF:A4:8B:30:75:F1:07:3F:56:BA:48:D5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/08688d-2071-42a6-9ea5-fdf014e57f20/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/08688d-2071-42a6-9ea5-fdf014e57f20/1/OHeiWlMfTIffpIswdfEHP1a6SNU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.60.0/24
IPv6:
2a12:1300::/29
Signature Algorithm: sha256WithRSAEncryption
1c:1a:fb:97:00:f4:98:33:78:84:37:ad:1a:5a:3c:c9:dd:c4:
86:b8:89:cf:82:fa:ed:ad:08:5c:f9:0e:c4:24:1d:73:0e:64:
66:6c:b0:b3:22:27:bf:50:c7:34:19:55:a1:dc:1f:85:cc:a2:
e3:77:ec:48:ee:46:09:f3:d5:41:85:9b:04:b3:01:e3:46:9a:
74:84:e2:0e:de:31:0e:14:a4:9f:7d:89:51:6a:9e:eb:62:d8:
3d:6e:c7:9f:a5:41:18:18:3f:c4:79:b3:c8:d4:82:0c:18:0f:
1c:32:84:a3:e7:ac:51:e1:01:5d:7b:25:61:74:6e:77:e8:e4:
c1:d3:89:c0:92:19:a2:a4:e7:bf:fd:d7:6c:09:d4:9f:ef:86:
be:1c:99:91:b9:b0:96:c8:d6:05:a2:07:36:c7:8c:57:fd:6b:
89:99:c8:e9:f0:80:25:2a:a8:0e:d4:b5:2c:cc:42:89:b9:08:
db:45:74:1c:3b:e9:ef:5e:0d:f5:c9:89:ff:72:e7:0f:f5:30:
2e:a2:21:57:9e:1e:89:ae:95:3c:4d:35:89:c3:dc:02:79:00:
a6:94:79:74:ee:da:23:e5:8d:9a:55:48:eb:66:6e:cc:17:4b:
64:40:f9:2c:94:c3:44:95:99:fd:16:58:57:a2:36:22:4c:98:
fd:2f:2c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:11 2023 by rpki-client on console.sobornost.net