Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cO9OCMkhbhBnneUGcH3_MKBCFaM.cer
File: cO9OCMkhbhBnneUGcH3_MKBCFaM.cer (raw, json)
Hash identifier: 3hU9iiZos5HOwdrd9DRGFXBJVeUyXj9mRalJQtOwLTg=
Subject key identifier: 70:EF:4E:08:C9:21:6E:10:67:9D:E5:06:70:7D:FF:30:A0:42:15:A3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC493910F5555495F51E309B1E4AD6D85
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e2218-0cbe-4612-8441-baa4c10c214c/1/cO9OCMkhbhBnneUGcH3_MKBCFaM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e2218-0cbe-4612-8441-baa4c10c214c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212558
Validation: Failed, certificate revoked on Mon 22 Jan 2024 11:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:91:0f:55:55:49:5f:51:e3:09:b1:e4:ad:6d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70ef4e08c9216e10679de506707dff30a04215a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:61:4a:ed:2b:84:50:62:9e:e2:97:2b:7b:de:
7a:aa:9f:e4:0b:13:b4:44:b8:a5:d1:6e:60:1a:0d:
43:fd:5a:4d:35:c8:c7:2c:c9:74:ba:3b:9f:f2:0f:
5b:ab:df:92:1b:c0:ad:1c:f0:cf:b8:6f:54:a7:c3:
63:9b:e0:0c:fc:87:75:b7:f3:00:e9:d8:ca:9a:23:
33:b1:f0:ab:9d:04:c5:ab:6b:47:af:e0:df:09:26:
f9:dd:8c:89:50:c6:47:02:c1:50:3d:b3:8d:89:3c:
63:a8:e7:99:02:71:cb:d8:4c:3d:b8:ea:6e:3d:bf:
12:1b:79:62:3d:3c:8b:dc:c3:a9:e0:19:16:7b:85:
b1:5c:1b:c8:38:cd:80:54:dc:48:72:64:49:2c:8d:
ce:25:94:c3:83:f7:05:b8:93:01:0b:33:db:6d:53:
d2:a5:bc:86:48:03:bf:8c:90:04:8e:fc:2c:fe:10:
3f:78:27:28:b7:bd:1b:8e:4c:20:c4:86:80:5c:9e:
3a:6d:30:c8:72:eb:37:4c:00:f6:65:60:35:6d:ab:
1b:ec:da:0a:9c:89:58:e0:c3:98:ec:a8:2a:13:10:
fd:6a:dc:0a:07:a7:01:c6:fe:e5:62:bf:83:08:67:
3a:f9:e8:3e:59:29:31:82:26:9a:50:1f:dd:ee:3d:
66:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EF:4E:08:C9:21:6E:10:67:9D:E5:06:70:7D:FF:30:A0:42:15:A3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e2218-0cbe-4612-8441-baa4c10c214c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e2218-0cbe-4612-8441-baa4c10c214c/1/cO9OCMkhbhBnneUGcH3_MKBCFaM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212558
Signature Algorithm: sha256WithRSAEncryption
13:9d:d4:07:67:74:5e:a5:cb:2b:d1:48:67:d4:21:c0:81:80:
79:88:15:a8:c7:ed:ef:a4:d8:de:40:39:b6:4e:82:02:da:22:
b2:73:46:1e:eb:0f:fc:9e:77:e5:e2:93:ad:63:f8:fa:50:16:
fd:5c:79:f0:ca:35:56:50:e3:c7:33:4d:9e:47:1f:ca:14:72:
62:0c:e9:b5:aa:79:94:90:59:25:08:ae:01:08:c6:22:8b:e0:
80:15:d8:b5:9c:62:70:fc:5f:56:47:74:5b:49:4f:10:67:aa:
7d:8a:97:e0:a7:29:60:66:2a:fe:5f:36:62:45:8e:39:7f:f1:
5f:95:03:3e:13:7f:b7:e4:25:d6:a7:92:f1:56:f3:e4:f9:8c:
3e:96:39:81:41:a6:be:1c:92:b4:a5:c6:5c:11:92:a5:39:2e:
e3:fe:02:6a:34:ea:0b:db:1e:5b:51:06:ff:b1:d5:7e:d2:ec:
9e:29:ee:aa:12:1d:91:f9:fe:96:f3:29:8f:35:18:3e:2a:72:
9a:2b:d9:5a:4a:fc:3b:3d:aa:99:a9:60:8d:d4:e2:03:8d:42:
6c:86:f7:70:01:96:16:04:ba:56:1c:f2:35:1d:54:f0:56:e6:
13:b6:e7:9b:28:93:4d:21:22:f9:fa:ac:56:3c:6f:f3:d8:b7:
0e:02:c9:5c
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYzEk5EPVVVJX1HjCbHkrW2FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTAzMDU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MGVmNGUwOGM5MjE2ZTEwNjc5ZGU1MDY3MDdkZmYzMGEwNDIxNWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWFK7SuEUGKe4pcre956qp/kCxO0
RLil0W5gGg1D/VpNNcjHLMl0ujuf8g9bq9+SG8CtHPDPuG9Up8Njm+AM/Id1t/MA
6djKmiMzsfCrnQTFq2tHr+DfCSb53YyJUMZHAsFQPbONiTxjqOeZAnHL2Ew9uOpu
Pb8SG3liPTyL3MOp4BkWe4WxXBvIOM2AVNxIcmRJLI3OJZTDg/cFuJMBCzPbbVPS
pbyGSAO/jJAEjvws/hA/eCcot70bjkwgxIaAXJ46bTDIcus3TAD2ZWA1basb7NoK
nIlY4MOY7KgqExD9atwKB6cBxv7lYr+DCGc6+eg+WSkxgiaaUB/d7j1mtwIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFHDvTgjJIW4QZ53lBnB9/zCgQhWjMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2RjLzFlMjIx
OC0wY2JlLTQ2MTItODQ0MS1iYWE0YzEwYzIxNGMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGMvMWUyMjE4
LTBjYmUtNDYxMi04NDQxLWJhYTRjMTBjMjE0Yy8xL2NPOU9DTWtoYmhCbm5lVUdj
SDNfTUtCQ0ZhTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwM+TjANBgkqhkiG9w0BAQsFAAOCAQEAE53UB2d0XqXL
K9FIZ9QhwIGAeYgVqMft76TY3kA5tk6CAtoisnNGHusP/J535eKTrWP4+lAW/Vx5
8Mo1VlDjxzNNnkcfyhRyYgzptap5lJBZJQiuAQjGIovggBXYtZxicPxfVkd0W0lP
EGeqfYqX4KcpYGYq/l82YkWOOX/xX5UDPhN/t+Ql1qeS8Vbz5PmMPpY5gUGmvhyS
tKXGXBGSpTku4/4CajTqC9seW1EG/7HVftLsninuqhIdkfn+lvMpjzUYPipymivZ
Wkr8Oz2qmalgjdTiA41CbIb3cAGWFgS6VhzyNR1U8FbmE7bnmyiTTSEi+fqsVjxv
89i3DgLJXA==
-----END CERTIFICATE-----
Generated at Tue Feb 27 01:00:58 2024 by rpki-client on console.sobornost.net