Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ydc0TAK9qDL1LQ5nCxIWlkre6Dg.cer
File: Ydc0TAK9qDL1LQ5nCxIWlkre6Dg.cer (raw, json)
Hash identifier: iHo1IyOMwcSfbLayVNoIEMj7sTA1qQ5q19hvoJeGngo=
Subject key identifier: 61:D7:34:4C:02:BD:A8:32:F5:2D:0E:67:0B:12:16:96:4A:DE:E8:38
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 753FA96B4B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://nostromo.heficed.net/repo/1123681/0/61D7344C02BDA832F52D0E670B1216964ADEE838.mft
caRepository: rsync://nostromo.heficed.net/repo/1123681/0/
Notify URL: https://nostromo.heficed.net/rrdp/notification.xml
Certificate not before: Fri 01 Jan 2021 00:02:12 +0000
Certificate not after: Fri 01 Jul 2022 00:00:00 +0000
Subordinate resources: IP: 185.173.32.0/22
IP: 2a0b:3700::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 503579241291 (0x753fa96b4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:02:12 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=61d7344c02bda832f52d0e670b1216964adee838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ad:07:63:ff:32:61:57:7b:58:56:08:28:47:
33:46:89:31:b1:96:d9:89:0e:ba:c9:10:06:41:bd:
fc:f9:d0:1a:35:fb:6f:0c:c9:4d:b9:9b:62:06:c2:
a0:dc:dc:d8:0c:54:68:d7:33:ae:ca:5a:47:04:a7:
13:7e:bd:ba:b2:00:e5:f2:1d:ee:49:0b:76:f8:7e:
71:54:a9:0d:e9:a4:92:ed:a0:08:b1:fa:93:5d:80:
f2:fa:f9:c2:74:e3:4a:88:cc:44:b3:e8:71:49:f6:
97:89:4d:9a:33:65:26:97:e5:69:b6:02:46:ca:fb:
a1:98:dd:53:ce:e9:82:bc:ee:bf:a6:8c:0a:57:7c:
3b:ea:e1:5c:d2:08:4e:26:fe:2a:5b:0e:52:88:47:
b9:98:95:ab:e1:14:b1:ee:73:37:98:ee:62:80:2b:
4d:12:19:39:14:a6:e8:da:73:48:04:65:ee:7b:85:
9f:26:8b:82:ee:c1:42:bf:e4:7d:55:6e:80:aa:5d:
84:8e:ba:93:2a:a9:27:01:f8:de:f0:07:7f:eb:7c:
e6:88:0a:bb:d5:b8:06:57:e7:3e:a8:34:9e:39:8e:
86:01:d5:cf:31:a2:6a:fc:c3:f4:e0:3e:22:ad:1c:
45:67:c5:46:e3:4c:42:96:dd:d3:ea:f4:14:76:0b:
aa:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D7:34:4C:02:BD:A8:32:F5:2D:0E:67:0B:12:16:96:4A:DE:E8:38
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://nostromo.heficed.net/repo/1123681/0/
RPKI Manifest - URI:rsync://nostromo.heficed.net/repo/1123681/0/61D7344C02BDA832F52D0E670B1216964ADEE838.mft
RPKI Notify - URI:https://nostromo.heficed.net/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.32.0/22
IPv6:
2a0b:3700::/29
Signature Algorithm: sha256WithRSAEncryption
2c:bd:28:fc:55:38:25:44:08:00:b4:34:bc:dd:6c:70:87:0e:
13:c3:04:0b:95:8c:33:41:5f:cc:5f:a3:af:0c:85:b4:bd:bb:
c0:7d:63:11:8b:6e:75:a5:d7:5f:22:89:f7:8a:b4:7c:8a:3c:
9b:7e:25:a6:72:24:2f:e2:de:b8:6f:3e:e3:26:f9:5c:84:6c:
03:1e:d8:e0:5a:83:60:39:6c:4f:f1:63:20:bb:34:ff:6c:0f:
91:6b:83:db:a8:e1:b1:20:c6:2a:3f:ac:25:4b:34:43:cf:18:
71:f5:50:8d:d4:ef:8f:49:67:86:87:d2:64:8f:85:b8:27:23:
fb:0a:87:6b:56:f8:bc:ec:55:33:57:06:68:0a:4a:ea:d4:ff:
be:81:ae:ce:a5:b2:5c:b2:0c:1d:b2:4b:20:7d:c3:dc:af:c8:
86:71:2b:c2:fe:d5:2d:27:25:a5:f6:89:31:17:9e:d2:5e:8a:
5f:c3:11:d7:82:d3:83:84:bb:cd:09:7c:74:fb:47:79:e9:78:
ee:81:6d:06:cd:78:3c:a4:8a:27:af:ac:39:bb:cb:62:ea:a9:
fc:52:6a:4f:61:f5:44:98:58:ea:d7:cf:80:31:51:42:8a:db:
90:1e:90:88:9f:d3:bd:3d:fd:57:1a:86:67:30:4c:7e:08:f8:
b7:c9:b4:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:15 2023 by rpki-client on console-ams.rpki-client.org