Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.cer
File: QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.cer (raw, json)
Hash identifier: GAr2FNUg+QkFo+YIlyAOH+/uWuYaHmwG8S3h0JWP4TA=
Subject key identifier: 41:46:7C:76:9B:F6:6A:DA:7D:57:80:A6:9D:CE:13:71:BE:98:49:DE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0185299378AB4DA91BA72A215CD17B9F81FA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 19 Dec 2022 08:50:08 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 185.225.200.0/22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:29:93:78:ab:4d:a9:1b:a7:2a:21:5c:d1:7b:9f:81:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Dec 19 08:50:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41467c769bf66ada7d5780a69dce1371be9849de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:67:a5:96:a8:e8:46:8b:43:6b:10:27:72:bc:
66:7c:2c:47:9e:de:ec:03:1a:2a:e7:6b:19:c8:0a:
f0:48:50:65:25:0b:f2:83:b8:f0:b7:4a:dc:ac:6e:
ae:55:4e:24:16:c3:b9:45:99:f6:b3:01:b3:18:52:
72:be:20:e3:ec:b1:85:bb:d7:d5:62:15:fc:c0:dc:
e8:75:38:79:0c:08:00:28:ad:b4:3d:d2:58:0d:0f:
7c:83:f1:66:73:96:d6:9a:ca:e4:52:95:7b:12:4e:
77:cc:72:d7:40:97:a8:71:97:ee:11:52:b0:81:79:
55:ad:87:38:bb:5c:78:7a:e5:28:45:7d:3d:ae:c6:
72:27:1e:76:7c:79:93:59:cb:e2:13:e0:1e:6d:45:
34:ad:e6:74:8a:33:be:a8:4a:e9:5a:fd:ab:f7:b2:
ba:1b:ed:b1:11:40:c4:b0:5c:fa:a3:ac:88:e2:02:
4e:0d:82:c0:88:7c:c0:bd:10:ab:e9:7d:b7:e5:b7:
6a:e4:00:36:96:40:fc:b2:34:da:19:76:a3:b3:cf:
fb:e0:96:70:09:6b:49:9e:99:1a:86:d8:1d:8e:20:
64:0e:8e:13:7f:8c:41:02:0c:0e:00:1e:4b:c4:d9:
6f:41:de:63:92:be:d1:9b:cb:8d:dc:84:a3:a1:26:
de:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:46:7C:76:9B:F6:6A:DA:7D:57:80:A6:9D:CE:13:71:BE:98:49:DE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5cf3fd-e77d-4c82-b4c7-521556be813a/1/QUZ8dpv2atp9V4Cmnc4Tcb6YSd4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.200.0/22
Signature Algorithm: sha256WithRSAEncryption
86:3b:8c:e6:50:2f:16:e6:91:2b:cf:4b:81:8d:be:09:3e:bd:
80:88:76:73:ab:13:12:04:9b:88:69:6c:49:e6:02:e0:21:1a:
7f:e5:41:ac:c7:47:bf:8b:72:5c:e4:f7:43:a1:f8:43:9b:26:
d0:4d:6f:7a:e6:c7:1d:a4:8a:65:7b:96:be:f4:fc:1b:be:5a:
6c:96:09:d2:53:39:58:8d:98:d1:ab:22:83:29:ec:b3:9e:64:
d0:f3:9f:be:09:77:62:d7:72:24:1a:be:59:82:e0:0a:dc:79:
ce:dd:2a:3b:d5:43:43:ff:ee:7d:56:e6:11:6b:97:be:cf:20:
c0:2e:b3:af:54:9d:f8:9e:c0:4d:ee:82:a9:46:0e:33:64:73:
7a:9a:85:ca:7f:39:9e:08:bb:60:03:25:09:df:cc:d1:a0:2c:
29:a6:66:3b:f7:c4:90:8d:38:8f:31:12:c8:4d:e6:ce:d0:1c:
fa:a1:36:51:8d:c7:db:db:0c:ab:31:17:cf:5e:60:b8:7b:24:
24:d1:15:ea:68:c1:64:9c:81:a7:8d:07:2f:8c:75:62:a5:57:
29:51:0c:b6:47:40:59:eb:7b:3d:99:64:78:f0:63:54:0e:55:
45:00:3e:11:2f:c1:75:ff:00:eb:a9:ac:42:8b:d9:b4:cb:3f:
c3:84:12:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:15 2024 by rpki-client on console-fra.rpki-client.org