Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PhPrYvx9_wfvAFMxe09n67FMfbo.cer
File: PhPrYvx9_wfvAFMxe09n67FMfbo.cer (raw, json)
Hash identifier: 8tWko0K2Bl5iLhCBKvCbAqwvWeJLPe0HNLsvPRiv0lQ=
Subject key identifier: 3E:13:EB:62:FC:7D:FF:07:EF:00:53:31:7B:4F:67:EB:B1:4C:7D:BA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856D1AF9C61986820D2DA760E7202B20CE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3f/f9e8e0-57d4-45c1-96db-28e1cca65e89/1/PhPrYvx9_wfvAFMxe09n67FMfbo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3f/f9e8e0-57d4-45c1-96db-28e1cca65e89/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 11:32:42 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 205444
IP: 91.228.227.0/24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:1a:f9:c6:19:86:82:0d:2d:a7:60:e7:20:2b:20:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:32:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e13eb62fc7dff07ef0053317b4f67ebb14c7dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:35:da:2a:81:a0:7b:11:c8:32:cd:c6:a7:8f:
0d:b8:40:be:8a:20:9a:1c:aa:cf:61:0f:6c:46:0f:
71:95:df:0c:ad:3a:20:da:b7:04:aa:1e:78:15:56:
34:d8:5a:1d:99:e7:5c:fe:6d:7b:95:cf:5c:9c:6a:
cd:4e:f1:dd:98:7c:aa:fc:60:b1:e5:d2:27:9b:01:
47:06:b5:4d:0d:8a:e0:38:19:04:96:6c:5b:1f:8f:
f4:24:ac:ee:e8:01:44:92:30:91:bb:30:d9:12:c0:
41:69:fe:c7:f7:0a:5c:86:a9:be:8e:f7:a5:d8:78:
d0:3a:36:59:3d:35:2d:6f:b0:12:6e:4f:f9:a4:52:
a9:e3:da:db:a8:3c:d6:06:6a:72:3b:cd:d4:e2:8b:
ab:77:10:40:36:ee:52:79:14:ea:63:9c:3d:36:58:
e6:2d:19:89:93:6b:f9:87:e9:b5:16:73:e0:58:84:
40:32:05:fd:63:53:7e:ee:da:cf:2a:25:63:1e:3b:
22:e9:b7:48:8a:f8:69:2e:6b:76:79:8e:11:76:13:
d5:26:d4:06:f5:9f:5b:63:2d:30:df:ac:81:be:5b:
aa:6b:45:a2:fd:d2:70:03:c7:a7:08:55:3a:f2:72:
6a:4d:45:49:87:1f:b8:41:22:c0:42:06:72:a6:6f:
5f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:13:EB:62:FC:7D:FF:07:EF:00:53:31:7B:4F:67:EB:B1:4C:7D:BA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/f9e8e0-57d4-45c1-96db-28e1cca65e89/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/f9e8e0-57d4-45c1-96db-28e1cca65e89/1/PhPrYvx9_wfvAFMxe09n67FMfbo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.227.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205444
Signature Algorithm: sha256WithRSAEncryption
9e:f3:d6:50:8e:2b:50:f3:db:6e:03:8e:9c:96:84:b5:4b:ff:
33:99:d2:39:c2:d9:73:9a:e7:62:68:89:65:e7:ed:dc:d8:48:
35:ce:82:d7:30:b5:62:11:f9:38:ce:5c:0e:cb:da:2e:f3:94:
90:34:80:31:fb:ba:df:6d:08:e3:4c:3a:2a:8c:a1:bd:3b:40:
2d:ef:92:ef:b0:3b:46:b0:69:03:51:41:1a:96:2b:01:d4:46:
f7:d3:db:16:48:74:21:86:a1:93:17:3c:97:e0:60:05:bf:1f:
f3:fc:7a:0f:5d:a3:fc:dc:a1:9b:a3:04:4f:88:d7:62:78:18:
fa:cc:21:7f:8e:12:7f:16:64:a6:c9:f7:5f:c5:45:33:60:14:
92:d7:37:5a:6b:7c:17:f2:7d:b9:df:39:e9:5a:19:a0:fe:87:
1d:df:b7:71:d1:f7:15:1d:79:f8:9b:32:88:72:6b:9f:02:77:
c1:f0:eb:c8:df:94:95:0e:c5:d7:19:a1:39:c6:49:02:63:eb:
d1:96:36:2f:d5:0b:ba:46:3a:25:42:12:27:b8:09:23:05:66:
8e:a8:1a:82:4c:77:95:78:a2:7b:e4:93:71:be:55:aa:cf:13:
37:2b:a1:47:20:79:5e:fd:e5:32:9e:0f:31:30:82:a9:3c:00:
93:df:64:6f
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAYVtGvnGGYaCDS2nYOcgKyDOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMwMTAxMTEzMjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZTEzZWI2MmZjN2RmZjA3ZWYwMDUzMzE3YjRmNjdlYmIxNGM3ZGJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjXaKoGgexHIMs3Gp48NuEC+iiCa
HKrPYQ9sRg9xld8MrTog2rcEqh54FVY02Fodmedc/m17lc9cnGrNTvHdmHyq/GCx
5dInmwFHBrVNDYrgOBkElmxbH4/0JKzu6AFEkjCRuzDZEsBBaf7H9wpchqm+jvel
2HjQOjZZPTUtb7ASbk/5pFKp49rbqDzWBmpyO83U4ourdxBANu5SeRTqY5w9Nljm
LRmJk2v5h+m1FnPgWIRAMgX9Y1N+7trPKiVjHjsi6bdIivhpLmt2eY4RdhPVJtQG
9Z9bYy0w36yBvluqa0Wi/dJwA8enCFU68nJqTUVJhx+4QSLAQgZypm9f3wIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFD4T62L8ff8H7wBTMXtPZ+uxTH26MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNmL2Y5ZThl
MC01N2Q0LTQ1YzEtOTZkYi0yOGUxY2NhNjVlODkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2YvZjllOGUw
LTU3ZDQtNDVjMS05NmRiLTI4ZTFjY2E2NWU4OS8xL1BoUHJZdng5X3dmdkFGTXhl
MDluNjdGTWZiby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAW+TjMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC
AwMihDANBgkqhkiG9w0BAQsFAAOCAQEAnvPWUI4rUPPbbgOOnJaEtUv/M5nSOcLZ
c5rnYmiJZeft3NhINc6C1zC1YhH5OM5cDsvaLvOUkDSAMfu6320I40w6KoyhvTtA
Le+S77A7RrBpA1FBGpYrAdRG99PbFkh0IYahkxc8l+BgBb8f8/x6D12j/Nyhm6ME
T4jXYngY+swhf44SfxZkpsn3X8VFM2AUktc3Wmt8F/J9ud856VoZoP6HHd+3cdH3
FR15+JsyiHJrnwJ3wfDryN+UlQ7F1xmhOcZJAmPr0ZY2L9ULukY6JUISJ7gJIwVm
jqgagkx3lXiie+STcb5Vqs8TNyuhRyB5Xv3lMp4PMTCCqTwAk99kbw==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:20 2023 by rpki-client on console.sobornost.net