Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/S5k5WNR9quNJ7sb9LrooNUN35dQ.cer
File: S5k5WNR9quNJ7sb9LrooNUN35dQ.cer (raw, json)
Hash identifier: oRRa9QrNui/dEXT3L2gjCwMK67FfL/NnzYdoLDlhT/Y=
Subject key identifier: 4B:99:39:58:D4:7D:AA:E3:49:EE:C6:FD:2E:BA:28:35:43:77:E5:D4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7267A7AEA803F92B1BA8941C978A0C9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4b/9c89bf-c81e-413f-a2d4-a05560601ac2/1/S5k5WNR9quNJ7sb9LrooNUN35dQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4b/9c89bf-c81e-413f-a2d4-a05560601ac2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:30:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44196
IP: 195.2.202.0/23
IP: 195.93.132.0/23
Validation: Failed, certificate revoked on Tue 27 Feb 2024 11:36:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:7a:7a:ea:80:3f:92:b1:ba:89:41:c9:78:a0:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b993958d47daae349eec6fd2eba28354377e5d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8e:37:29:37:0e:6b:09:f7:1e:d7:ec:ec:bd:
f7:f9:87:94:99:54:50:6c:9b:47:8b:aa:28:99:1f:
60:90:b8:ed:40:30:f6:1a:87:93:0e:fe:f6:b2:46:
f9:04:78:ba:b0:d3:4f:c8:98:5f:06:48:95:0c:84:
c9:0e:40:69:a8:46:9f:50:99:b4:79:d7:94:15:3c:
0f:c8:d0:8f:87:4c:64:65:a7:7a:cb:d2:c1:e8:3b:
74:75:47:c9:d6:1e:1b:b2:98:7d:e9:72:bc:90:e0:
19:98:4a:a0:49:a2:81:19:63:7c:74:4e:43:65:69:
94:20:7d:9b:63:7d:96:25:9d:65:a8:c6:11:b6:fc:
4b:58:d6:be:2a:e6:46:94:c4:86:cb:ea:dc:96:93:
51:8b:1d:93:94:ea:30:55:16:cf:20:1f:9d:06:f8:
bf:fc:ff:c0:17:51:97:98:da:1a:a6:ad:9a:7f:db:
92:86:47:b3:cb:1c:6b:d9:ff:e5:e8:c0:d8:8a:92:
97:05:40:20:cd:8e:ce:84:4b:83:75:e9:23:30:5b:
6a:17:66:27:d0:3d:95:ad:b1:17:33:cd:1c:ad:f8:
6d:9e:fe:6a:dc:ea:d0:e4:f3:91:2f:9b:db:55:37:
f7:58:d2:e9:15:11:0d:7a:90:ae:0d:73:06:6e:d7:
3b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:99:39:58:D4:7D:AA:E3:49:EE:C6:FD:2E:BA:28:35:43:77:E5:D4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9c89bf-c81e-413f-a2d4-a05560601ac2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9c89bf-c81e-413f-a2d4-a05560601ac2/1/S5k5WNR9quNJ7sb9LrooNUN35dQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.2.202.0/23
195.93.132.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44196
Signature Algorithm: sha256WithRSAEncryption
6a:1c:1c:79:23:3f:f3:bc:a9:be:70:df:62:40:77:46:48:dd:
5e:f8:8c:17:d5:8f:f7:ff:14:76:c3:38:e7:0c:3b:ec:3c:09:
77:45:f4:14:0c:02:75:1c:69:6f:c8:a9:02:c6:a4:b9:01:f5:
3c:05:3a:4a:c2:e8:e9:68:a7:a9:b9:71:05:08:ef:33:44:55:
68:1f:47:80:9d:ae:cb:16:4f:4c:11:da:13:87:0d:c4:85:04:
ce:6f:1d:6c:33:02:23:c4:f4:97:ea:a3:28:ad:fb:65:12:58:
34:46:cd:06:ac:5d:3e:58:ab:0a:c8:20:1b:a1:b5:c6:0d:a4:
8b:5f:75:ea:01:03:cb:63:df:6f:1e:8e:26:7c:31:d7:48:5f:
69:3c:61:4b:93:82:f3:df:55:20:f1:a9:6d:1e:b7:9f:9f:93:
a1:43:d4:7b:fc:87:31:69:b9:9c:7c:11:5c:8e:ba:f3:f7:a7:
45:69:1b:3b:14:97:7f:b6:7e:60:58:a3:02:b3:69:ef:7f:19:
9a:94:2c:e9:a6:18:47:19:92:38:9b:fa:80:2a:0a:56:e2:59:
ae:34:1b:25:2e:dd:c5:95:10:f9:19:63:69:4b:3a:d5:fa:d6:
3b:ee:4d:a9:d0:88:8b:4c:6c:6f:bc:da:dc:39:77:f4:42:82:
7c:91:69:d8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Feb 27 16:06:18 2024 by rpki-client on console.sobornost.net