Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pmu0WuU5THsBlO4pHgE9QJYqS4Y.cer
File: pmu0WuU5THsBlO4pHgE9QJYqS4Y.cer (raw, json)
Hash identifier: EWEB7LBSEHfQ5Ipyuka50aHFRGr5SpQRdF1V5clx4YY=
Subject key identifier: A6:6B:B4:5A:E5:39:4C:7B:01:94:EE:29:1E:01:3D:40:96:2A:4B:86
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018C319C8312626321D9D2199651A8506D61
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.rp.ki/repo/misakaio/3/A66BB45AE5394C7B0194EE291E013D40962A4B86.mft
caRepository: rsync://rsync.rp.ki/repo/misakaio/3/
Notify URL: https://rrdp.rp.ki/notification.xml
Certificate not before: Sun 03 Dec 2023 21:36:29 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 185.189.72.0/24
IP: 2a11:6e00::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:31:9c:83:12:62:63:21:d9:d2:19:96:51:a8:50:6d:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Dec 3 21:36:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a66bb45ae5394c7b0194ee291e013d40962a4b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:21:27:14:3f:2c:85:7b:8e:c1:4e:f6:5a:e7:
c9:71:96:30:ea:b8:5f:5c:91:15:1d:8e:9e:20:0e:
c0:84:1d:b8:ab:23:1c:39:83:39:4b:cf:c6:c4:f9:
56:34:53:dd:68:09:40:fc:83:98:2b:41:86:ff:94:
11:d7:7b:70:f1:a9:db:70:0f:d1:57:c1:62:db:c1:
1b:d8:7e:16:76:ee:3d:69:ce:c9:14:f9:ba:83:4b:
f7:32:21:a3:35:6b:72:4b:5b:89:f5:37:c7:4b:31:
0b:a4:35:65:6c:36:00:8a:97:8a:32:5a:05:0c:89:
bc:45:d7:2a:c7:c2:81:73:40:e8:4c:f1:6d:c1:8b:
f3:6c:d7:9e:1c:d1:22:a8:a5:39:4a:6b:63:14:0d:
7d:3d:b7:10:aa:a5:1c:32:12:74:de:10:91:6a:69:
d4:2b:90:fb:77:56:cf:a2:21:90:b4:f4:d8:64:43:
1c:08:9e:7a:3d:29:d7:2d:da:71:55:a7:e4:0a:ec:
fb:9c:4c:09:45:25:12:34:7d:ed:6b:fa:c7:b6:fa:
89:2e:5d:5e:73:20:bd:ba:9c:e5:34:92:88:85:91:
04:20:70:34:c1:68:ba:5b:d1:c4:a0:19:8c:82:dd:
43:3e:ff:d6:c8:6a:8e:a8:93:9e:ef:4a:cc:45:db:
06:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6B:B4:5A:E5:39:4C:7B:01:94:EE:29:1E:01:3D:40:96:2A:4B:86
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.rp.ki/repo/misakaio/3/
RPKI Manifest - URI:rsync://rsync.rp.ki/repo/misakaio/3/A66BB45AE5394C7B0194EE291E013D40962A4B86.mft
RPKI Notify - URI:https://rrdp.rp.ki/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.72.0/24
IPv6:
2a11:6e00::/29
Signature Algorithm: sha256WithRSAEncryption
3c:89:ba:e2:ac:ee:61:00:c8:45:00:11:23:fb:7c:14:6f:6c:
41:ac:7d:39:34:02:5f:27:c6:46:1e:79:15:bb:45:0f:5e:e0:
3a:6c:74:97:31:f4:57:8a:c0:80:f4:07:16:aa:e3:60:e6:a0:
ba:77:bd:41:93:14:2b:9f:61:32:c7:22:49:32:a1:84:2b:8d:
ed:ea:38:86:04:b4:ac:15:49:10:bc:18:5f:c5:a1:48:43:47:
67:4c:6b:2c:de:34:a3:86:d6:3b:be:94:a1:2a:f8:9b:54:65:
1c:47:e2:4c:f5:a6:9c:99:9d:c4:2b:37:65:0c:a3:61:2b:57:
b9:c0:87:c8:d7:70:79:73:c8:e0:8b:54:56:34:93:78:b3:80:
47:f5:ff:95:42:41:df:d4:2d:7e:94:e0:1c:5f:16:4c:8b:f0:
b6:d9:94:97:17:fb:a6:f5:e4:7c:86:a9:dd:01:2e:b9:fc:68:
a0:6a:11:a6:db:b2:14:23:c9:7a:56:f8:2a:96:24:2f:13:1d:
39:45:25:40:e0:c7:89:79:d7:9e:09:ad:6b:f3:19:3b:b5:df:
78:7c:65:b3:66:d4:f1:d4:99:1b:76:ae:5d:bb:5e:b3:ce:42:
b3:d4:53:3a:21:b0:79:ff:ad:62:e5:8c:c4:87:1d:a5:5f:ce:
e8:15:25:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:57:38 2025 by rpki-client