Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tLQGizIfQCMjVt5UG9aL1ESQa6U.cer
File: tLQGizIfQCMjVt5UG9aL1ESQa6U.cer (raw, json)
Hash identifier: keBb3Am4aVEWXSU3iur9BxClVHVQ9Ee/4nIMxw/wqBI=
Subject key identifier: B4:B4:06:8B:32:1F:40:23:23:56:DE:54:1B:D6:8B:D4:44:90:6B:A5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856FAFD4074645058C209024B8BD0C1A25
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f9/8e10ca-0fb5-4b61-8ae6-54b669258eb2/1/tLQGizIfQCMjVt5UG9aL1ESQa6U.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f9/8e10ca-0fb5-4b61-8ae6-54b669258eb2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 23:34:32 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 194.62.104.0/24
IP: 2a11:5a00::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:af:d4:07:46:45:05:8c:20:90:24:b8:bd:0c:1a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:34:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4b4068b321f40232356de541bd68bd444906ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:20:97:94:9a:19:4e:51:fe:d2:6c:43:b5:d0:
0b:7d:0b:77:de:b6:c9:f0:a2:cd:54:b6:ec:fb:46:
47:14:79:00:78:b0:47:65:d3:31:83:d1:d9:65:b7:
62:72:71:c9:73:20:40:85:a2:9f:e1:2b:76:9a:64:
ab:97:9f:7b:4b:f1:78:a0:75:ff:c6:e0:f5:ad:4c:
9f:f3:78:80:cf:00:a5:0e:e5:f0:d9:2d:02:2a:55:
11:64:bd:17:8b:d1:76:ed:1a:14:c4:45:ed:9b:7f:
77:7c:31:af:53:b3:d3:26:e0:f1:5f:d4:eb:6b:fd:
43:49:0e:a5:bd:90:5d:97:e8:e9:dc:86:c8:5c:9b:
70:d8:5b:ec:e3:95:f4:bb:2f:2f:03:7a:26:df:38:
9a:1a:93:39:fd:96:44:e1:43:d9:e2:69:94:13:31:
6c:f6:3b:dd:ff:07:e4:3f:ae:55:e0:1f:59:56:15:
3d:22:53:73:ba:89:61:72:c2:6f:69:59:df:aa:59:
73:aa:e6:3f:06:6a:8b:a8:c0:d4:a1:b7:26:8a:fd:
d8:92:0a:fb:56:4d:63:d6:c9:1d:cb:40:cc:3f:01:
92:d0:59:af:ca:66:3e:e1:88:06:a2:d8:b7:52:2b:
b4:43:d6:b1:ff:ea:db:20:0a:20:b2:69:cc:a6:28:
84:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B4:06:8B:32:1F:40:23:23:56:DE:54:1B:D6:8B:D4:44:90:6B:A5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8e10ca-0fb5-4b61-8ae6-54b669258eb2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8e10ca-0fb5-4b61-8ae6-54b669258eb2/1/tLQGizIfQCMjVt5UG9aL1ESQa6U.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.104.0/24
IPv6:
2a11:5a00::/29
Signature Algorithm: sha256WithRSAEncryption
0d:dc:83:a1:02:ac:ed:09:3a:f3:ac:27:af:4a:72:d2:1c:79:
57:3a:f4:7d:04:78:49:85:7e:2f:70:f9:3b:c0:51:bb:f0:ba:
0c:14:29:aa:9e:53:47:11:67:f4:08:3b:79:99:5c:e1:bd:9a:
67:5c:c3:6e:8e:e8:01:96:0a:98:55:88:e3:a2:b5:31:56:be:
e3:b0:45:6b:50:f3:17:c5:b5:45:dd:d7:04:b5:15:a5:c0:cc:
f6:79:32:c2:0b:2a:73:97:3e:e9:51:dc:ad:52:62:bf:9c:1a:
40:90:3e:6e:6e:54:10:e6:ac:d3:52:ba:2c:69:dd:89:eb:fd:
0b:a6:d2:e3:82:fd:61:cc:1a:16:f6:85:8b:2d:1b:4f:39:d6:
0b:62:0e:b4:d2:de:1d:c8:75:ea:d6:c8:8e:72:71:46:54:cd:
40:99:20:65:81:4e:9e:6e:84:03:a8:47:14:45:c4:40:e9:2c:
77:a8:dd:25:ba:6c:da:e3:00:ae:9f:a9:42:49:11:8f:89:19:
5d:04:b0:8c:b5:50:3e:62:5b:37:2c:6d:7c:63:25:3b:4b:24:
0b:1d:57:4b:2a:08:79:4d:df:df:7d:95:64:72:57:62:f6:c5:
f0:12:f9:d5:c8:5f:4a:bb:4a:dc:1e:6b:c3:98:f8:1d:b7:db:
b6:b3:ff:ce
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgISAYVvr9QHRkUFjCCQJLi9DBolMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMwMTAxMjMzNDMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNGI0MDY4YjMyMWY0MDIzMjM1NmRlNTQxYmQ2OGJkNDQ0OTA2YmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyCXlJoZTlH+0mxDtdALfQt33rbJ
8KLNVLbs+0ZHFHkAeLBHZdMxg9HZZbdicnHJcyBAhaKf4St2mmSrl597S/F4oHX/
xuD1rUyf83iAzwClDuXw2S0CKlURZL0Xi9F27RoUxEXtm393fDGvU7PTJuDxX9Tr
a/1DSQ6lvZBdl+jp3IbIXJtw2Fvs45X0uy8vA3om3ziaGpM5/ZZE4UPZ4mmUEzFs
9jvd/wfkP65V4B9ZVhU9IlNzuolhcsJvaVnfqllzquY/BmqLqMDUobcmiv3Ykgr7
Vk1j1skdy0DMPwGS0FmvymY+4YgGoti3Uiu0Q9ax/+rbIAogsmnMpiiEjwIDAQAB
o4ICkzCCAo8wHQYDVR0OBBYEFLS0BosyH0AjI1beVBvWi9REkGulMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y5LzhlMTBj
YS0wZmI1LTRiNjEtOGFlNi01NGI2NjkyNThlYjIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjkvOGUxMGNh
LTBmYjUtNGI2MS04YWU2LTU0YjY2OTI1OGViMi8xL3RMUUdpeklmUUNNalZ0NVVH
OWFMMUVTUWE2VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAwj5oMA0EAgACMAcDBQMqEVoAMA0GCSqGSIb3
DQEBCwUAA4IBAQAN3IOhAqztCTrzrCevSnLSHHlXOvR9BHhJhX4vcPk7wFG78LoM
FCmqnlNHEWf0CDt5mVzhvZpnXMNujugBlgqYVYjjorUxVr7jsEVrUPMXxbVF3dcE
tRWlwMz2eTLCCypzlz7pUdytUmK/nBpAkD5ublQQ5qzTUrosad2J6/0LptLjgv1h
zBoW9oWLLRtPOdYLYg600t4dyHXq1siOcnFGVM1AmSBlgU6eboQDqEcURcRA6Sx3
qN0lumza4wCun6lCSRGPiRldBLCMtVA+Yls3LG18YyU7SyQLHVdLKgh5Td/ffZVk
cldi9sXwEvnVyF9Ku0rcHmvDmPgdt9u2s//O
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:29 2023 by rpki-client on console.sobornost.net