Certificate
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CDEF171BE1DFC492DBDF9FEBFB40C2C0BA326F06.cer
File: CDEF171BE1DFC492DBDF9FEBFB40C2C0BA326F06.cer (raw, json)
Hash identifier: x4PaHXHMEIZhQYskDGhoLW4re3crd/KP72f1sQ/P9XY=
Subject key identifier: CD:EF:17:1B:E1:DF:C4:92:DB:DF:9F:EB:FB:40:C2:C0:BA:32:6F:06
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1C4F99C83E0039FA0BE8CBC7ACB917902D8032A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/40d6c6f5-aa32-49d7-abfa-e6084bc7fa44/7/CDEF171BE1DFC492DBDF9FEBFB40C2C0BA326F06.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/40d6c6f5-aa32-49d7-abfa-e6084bc7fa44/7/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Fri 21 Apr 2023 03:24:21 +0000
Certificate not after: Fri 19 Apr 2024 03:29:21 +0000
Subordinate resources: IP: 2a06:a005:b70:: -- 2a06:a005:b9f:ffff:ffff:ffff:ffff:ffff
IP: 2a06:a005:bd0:: -- 2a06:a005:bff:ffff:ffff:ffff:ffff:ffff
IP: 2a06:a005:d41::/48
IP: 2a06:a005:1040::/43
IP: 2a06:a005:1490:: -- 2a06:a005:14df:ffff:ffff:ffff:ffff:ffff
IP: 2a06:a005:1600::/44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:4f:99:c8:3e:00:39:fa:0b:e8:cb:c7:ac:b9:17:90:2d:80:32:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Apr 21 03:24:21 2023 GMT
Not After : Apr 19 03:29:21 2024 GMT
Subject: CN=CDEF171BE1DFC492DBDF9FEBFB40C2C0BA326F06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:61:81:c3:5a:33:67:44:50:e9:21:d3:27:18:
98:3e:1c:f7:8e:df:ec:64:65:5b:cc:97:39:3b:12:
b8:af:d9:6c:ea:c5:c6:ba:8d:51:d0:d1:6b:fa:7b:
92:09:ec:69:34:7b:0c:88:3b:ae:aa:7c:60:72:3d:
dd:38:9d:96:f6:3a:5f:bc:6b:06:69:8d:aa:2e:64:
6c:f8:94:97:c2:e9:e6:22:fa:96:9a:d1:79:d1:dd:
13:62:bf:b7:1e:c6:4f:a3:56:b6:1f:46:63:25:b2:
0b:03:02:1c:d5:f8:0e:22:99:5e:cd:a0:78:38:b6:
31:b9:1d:ea:30:40:5c:33:31:fc:31:b7:6f:bd:02:
67:e4:e7:28:62:76:33:ed:04:0d:49:b5:5e:be:bc:
3a:bd:66:51:b8:2f:21:8b:d5:82:e4:80:cf:bd:42:
a3:7c:bc:24:80:9f:14:10:62:5a:54:43:32:15:d6:
1b:90:56:c9:a5:5f:09:1a:a9:28:f3:89:6c:80:c3:
c8:00:be:77:48:1f:2c:06:17:4b:2c:5d:5e:46:dd:
d3:1c:46:3b:b3:f7:48:f2:72:9d:ce:04:b9:fd:ed:
56:3d:1a:df:ba:14:b4:45:96:f6:d4:e4:0a:df:62:
28:48:3e:20:ec:dd:8c:41:f6:87:73:66:3b:a4:54:
c2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
CD:EF:17:1B:E1:DF:C4:92:DB:DF:9F:EB:FB:40:C2:C0:BA:32:6F:06
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/40d6c6f5-aa32-49d7-abfa-e6084bc7fa44/7
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/40d6c6f5-aa32-49d7-abfa-e6084bc7fa44/7/CDEF171BE1DFC492DBDF9FEBFB40C2C0BA326F06.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:b70::-2a06:a005:b9f:ffff:ffff:ffff:ffff:ffff
2a06:a005:bd0::-2a06:a005:bff:ffff:ffff:ffff:ffff:ffff
2a06:a005:d41::/48
2a06:a005:1040::/43
2a06:a005:1490::-2a06:a005:14df:ffff:ffff:ffff:ffff:ffff
2a06:a005:1600::/44
Signature Algorithm: sha256WithRSAEncryption
6d:63:a2:a2:a4:80:20:91:d3:9a:5a:4d:e0:52:a4:28:ec:19:
c8:8d:94:33:cf:7b:3c:94:d1:17:81:00:bb:9a:10:55:ee:28:
bf:66:72:c0:73:e2:e7:70:64:2b:a5:0e:c2:d7:28:d7:0d:92:
1a:26:6d:33:f7:17:04:58:0a:14:32:ac:39:1d:47:39:13:d9:
6e:70:17:a3:ef:6f:67:b8:63:8d:01:23:8d:8b:61:6c:1a:51:
4f:a4:b5:95:05:a9:ff:e8:d7:5f:19:0a:b6:26:06:ec:03:a0:
87:43:a7:fb:20:86:ea:34:0c:25:3b:12:1c:9f:da:54:d6:9c:
ae:e9:53:10:82:02:de:b2:6b:e9:de:ed:39:6f:6f:3d:cd:50:
b1:e9:1a:ad:70:80:fb:d3:9d:96:2c:cd:2d:4c:ac:3d:1f:cf:
90:12:9a:dc:d2:6b:bb:d8:38:f7:4e:1f:a2:6c:09:b7:c0:54:
4f:75:83:1d:a9:54:20:71:bd:00:d9:a4:26:5c:b1:ed:cf:3d:
5a:8d:6c:04:c0:a0:2b:5c:dc:3b:85:12:69:08:95:a2:8c:cc:
13:00:0b:fb:25:0e:cc:43:e0:ad:de:3e:fe:0f:28:86:26:28:
45:61:d8:d9:0b:4d:e4:14:88:52:e7:61:7a:7a:f0:c6:25:43:
e2:5f:a9:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:05:26 2025 by rpki-client