Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/twASBHxuLSEIBl-4cvpXgxWaNi0.cer
File: twASBHxuLSEIBl-4cvpXgxWaNi0.cer (raw, json)
Hash identifier: 5pBc9s/jbrvkAvtzj0xuFeO/0qhvfaBC2yefIcvquyM=
Subject key identifier: B7:00:12:04:7C:6E:2D:21:08:06:5F:B8:72:FA:57:83:15:9A:36:2D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856CAC919BBE699C817D90CB17FF8D7599
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e6/efc720-7ed5-4453-a7b1-b30faf47f06e/1/twASBHxuLSEIBl-4cvpXgxWaNi0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e6/efc720-7ed5-4453-a7b1-b30faf47f06e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 09:32:06 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 77.72.86.0/24
IP: 2a11:d900::/29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ac:91:9b:be:69:9c:81:7d:90:cb:17:ff:8d:75:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:32:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b70012047c6e2d2108065fb872fa5783159a362d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:79:f0:e6:24:e1:68:69:21:3a:5a:63:8b:04:
d9:4a:88:21:da:07:37:ea:ed:5a:3b:bc:90:64:73:
48:e9:a9:b3:f0:0e:53:a2:6e:6d:b4:98:4f:3b:0f:
5a:99:15:de:f9:04:39:27:e9:22:b2:f2:ab:c2:e9:
ee:32:89:f0:16:32:ff:af:6c:3e:26:45:99:59:a0:
76:35:82:4d:6b:af:d3:2e:34:42:ba:f8:3c:d4:6f:
9e:40:37:f6:0b:ac:02:94:73:e1:0b:71:a3:2f:00:
69:5e:0e:3a:14:41:d9:ae:c7:30:60:01:83:9e:1c:
f1:46:d8:10:84:15:b9:23:ee:cd:cf:11:98:b4:33:
88:74:bb:a4:5e:60:4b:00:42:53:79:93:2e:a8:7f:
65:e3:a9:88:a9:e9:c2:bd:4a:77:6a:27:30:47:cb:
12:e9:e6:40:5d:32:47:90:70:89:cd:7c:b9:d0:e8:
3b:63:19:1d:ca:c3:13:60:02:ec:94:3e:78:3a:03:
dc:d4:b1:f6:c0:76:f7:21:12:4b:8b:91:e3:c7:dd:
e5:d6:59:e0:2b:33:5d:36:15:d8:d5:36:dc:c7:53:
8a:48:06:a4:c5:c7:e2:93:36:f7:af:67:51:3a:f9:
a7:42:ac:75:2c:3b:bb:9c:30:64:ad:bb:2f:9d:d8:
a8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:00:12:04:7C:6E:2D:21:08:06:5F:B8:72:FA:57:83:15:9A:36:2D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/efc720-7ed5-4453-a7b1-b30faf47f06e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/efc720-7ed5-4453-a7b1-b30faf47f06e/1/twASBHxuLSEIBl-4cvpXgxWaNi0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.86.0/24
IPv6:
2a11:d900::/29
Signature Algorithm: sha256WithRSAEncryption
86:3a:92:82:d4:86:8f:18:83:fa:21:85:59:aa:3b:b4:67:21:
ea:f1:ff:b7:7e:0b:06:10:e5:98:87:59:54:3a:ee:6e:40:dd:
fb:82:b9:74:bb:6e:de:32:f5:47:84:8b:36:f4:0f:15:18:c8:
24:32:e0:20:63:53:6e:d7:3d:ea:32:96:19:7e:3d:96:84:5a:
b8:ed:9b:c5:91:91:94:0a:a8:6e:0e:76:41:b9:e6:fb:d3:4f:
13:59:b0:0a:4a:85:97:cd:d3:aa:f1:64:8b:31:68:14:82:d0:
7b:c3:85:49:a0:e5:73:aa:6d:7c:90:8f:0a:f9:0e:bb:79:e3:
3b:8b:eb:c7:f7:80:4b:d7:ff:5c:9c:a4:7b:27:ba:fd:a6:bb:
65:de:4b:4d:a4:b1:c5:59:da:ea:31:d9:ab:6f:b8:a1:37:40:
9e:9e:2f:b2:41:9d:c8:cb:ee:ce:63:b0:c4:59:64:24:f5:1d:
b4:47:30:0b:62:73:5b:84:77:9f:41:56:84:8b:38:8a:b7:51:
e9:17:3b:f0:f2:f3:d6:e5:88:29:95:34:1b:14:ac:a5:b1:00:
0d:31:32:56:7d:18:e6:6f:2e:f7:21:63:7c:2a:e1:6a:3f:35:
1d:02:4d:be:a7:57:dc:77:86:da:13:fb:d6:f9:e7:fe:5f:fe:
92:ff:17:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:30 2023 by rpki-client on console.sobornost.net