Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/abZFrOVjl7sZZtEr0qPch8FdnvA.cer
File: abZFrOVjl7sZZtEr0qPch8FdnvA.cer (raw, json)
Hash identifier: ZPV6rHV95Dc0+rUXDyQwCTBjPuGWiRSyrb5dFdtHb0I=
Subject key identifier: 69:B6:45:AC:E5:63:97:BB:19:66:D1:2B:D2:A3:DC:87:C1:5D:9E:F0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018B436FC3A228BD5805F589A4A7A4F04020
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/87/e4e55e-83c1-4285-91ea-6452456da13a/1/abZFrOVjl7sZZtEr0qPch8FdnvA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/87/e4e55e-83c1-4285-91ea-6452456da13a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 18 Oct 2023 15:37:59 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 216138
IP: 2a14:3000::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:43:6f:c3:a2:28:bd:58:05:f5:89:a4:a7:a4:f0:40:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 18 15:37:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69b645ace56397bb1966d12bd2a3dc87c15d9ef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:da:27:10:c2:31:c1:0c:a3:cd:34:50:02:d8:
9a:0c:ba:42:fe:96:34:75:ed:61:a5:da:3d:9f:25:
47:34:43:28:95:d3:59:fe:9c:3f:eb:c7:32:cb:12:
22:d9:51:c7:e1:54:fb:34:f9:0e:b0:10:eb:1a:ff:
22:1b:71:22:20:1b:ff:52:33:dd:cc:ff:0a:0e:6c:
48:cd:e2:15:cb:23:ef:1f:25:7c:8c:77:b3:68:40:
e9:5b:95:09:51:a0:e0:58:55:3f:ab:c5:b5:cb:ae:
c3:b7:59:20:16:28:81:c7:47:1e:73:02:62:0b:eb:
a8:30:ca:7c:45:06:3b:fe:92:cd:58:ff:5d:17:a7:
dc:a6:fc:2e:34:15:9b:ff:10:ea:ea:4f:2c:c5:93:
95:df:8e:55:13:86:fa:74:74:7f:00:43:4e:b5:a5:
e8:c5:ca:8c:30:79:a2:fe:31:ab:07:40:a2:2e:50:
02:27:aa:bf:b4:f0:b9:34:5c:1f:0a:1b:d6:9c:f2:
a7:b7:d8:66:03:2b:71:3d:32:91:22:a1:83:2b:4d:
81:91:8a:d4:21:01:e9:63:22:0b:b9:a8:ac:a8:0d:
14:6a:f8:53:1d:bd:61:5b:79:05:63:3f:1b:f3:9e:
65:c2:b9:b7:82:da:38:5c:9e:27:44:ce:84:f9:32:
73:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B6:45:AC:E5:63:97:BB:19:66:D1:2B:D2:A3:DC:87:C1:5D:9E:F0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/e4e55e-83c1-4285-91ea-6452456da13a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/e4e55e-83c1-4285-91ea-6452456da13a/1/abZFrOVjl7sZZtEr0qPch8FdnvA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:3000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216138
Signature Algorithm: sha256WithRSAEncryption
87:c6:24:b5:ad:41:12:7b:f9:80:2e:28:25:63:b7:63:f5:20:
be:08:8d:37:19:85:3a:88:3d:75:70:50:a0:2e:40:a6:64:30:
0d:71:7c:b2:1b:83:f6:d6:0c:0c:5f:2b:a2:d1:17:1b:10:02:
99:51:27:9b:36:95:db:e2:ac:77:a3:b4:a4:d7:9d:c1:94:d1:
ca:76:2f:3a:d7:c2:47:a2:0c:73:37:02:3f:47:b1:5e:9d:f2:
92:32:6f:a1:e7:cc:77:2a:b4:0a:5a:e6:77:bf:87:43:71:90:
f5:95:1c:aa:07:04:85:91:9b:a8:9b:12:8b:49:5d:b0:6e:df:
07:d3:45:6f:ad:43:11:a9:17:02:08:97:b5:7a:7f:3c:47:31:
8a:b2:e0:c1:d5:5b:b6:38:5f:fb:ba:8e:9a:3b:2e:00:c3:9a:
b6:05:fe:bb:b8:ac:ea:71:be:1b:a6:50:c9:93:77:f9:c5:45:
69:d5:c3:94:89:88:95:fc:03:1d:a9:4a:ec:c0:33:f4:77:7d:
34:e6:4b:66:5c:81:1b:47:16:6e:48:0d:d7:26:3c:f7:8d:fd:
dd:a2:56:5d:ec:cc:dd:03:52:96:20:33:e5:bb:7f:19:0e:ea:
a2:7a:e3:90:2c:ff:68:b5:d2:89:ad:94:0e:dd:cf:1d:c9:e2:
99:e5:ec:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:11 2023 by rpki-client on console.sobornost.net