Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0IOkaOyMhyvC3zIkdWkrwEYwkFA.cer
File: 0IOkaOyMhyvC3zIkdWkrwEYwkFA.cer (raw, json)
Hash identifier: 8LLe9tlliJ+22ehiq+IYm+KhWdSxAdMZqEX0HrTGQHM=
Subject key identifier: D0:83:A4:68:EC:8C:87:2B:C2:DF:32:24:75:69:2B:C0:46:30:90:50
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 7AAEE02C36
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f6/41c017-4a97-458d-93f3-f699ad52105b/1/0IOkaOyMhyvC3zIkdWkrwEYwkFA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f6/41c017-4a97-458d-93f3-f699ad52105b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 01 Jan 2021 02:20:37 +0000
Certificate not after: Fri 01 Jul 2022 00:00:00 +0000
Subordinate resources: AS: 213382
IP: 2001:678:d04::/48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 526919937078 (0x7aaee02c36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:20:37 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=d083a468ec8c872bc2df322475692bc046309050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1e:1c:74:b0:0a:1d:06:79:c9:c1:7b:89:30:
6d:a2:af:7c:af:cd:87:ad:12:1a:e2:43:d9:d3:6d:
22:14:05:44:8c:c7:2d:e4:dd:21:1d:b2:7d:85:76:
ef:3a:18:b2:95:32:63:20:f8:76:17:01:a7:83:ec:
69:99:a7:e6:88:b6:fe:67:3e:9a:13:ab:33:a8:be:
14:94:f7:bb:0b:38:49:38:39:bd:e1:0e:15:a3:20:
7e:8f:29:fb:9e:88:8d:4f:ea:be:09:05:72:03:8e:
93:66:c1:05:57:19:a9:b5:81:7f:79:ac:70:3b:9d:
ab:77:fd:07:e8:cb:e8:04:85:3b:c4:02:ae:70:1f:
56:94:df:90:e5:87:7e:49:54:79:8e:ba:5f:21:9f:
6b:23:b6:4e:8a:b0:3a:8c:86:c7:da:ed:46:ad:0a:
df:67:16:10:f5:11:2e:c3:1b:8b:79:ac:ba:92:6d:
b6:c5:c0:ff:b3:64:08:c7:c3:0a:90:25:be:5e:29:
f6:7e:41:98:a5:24:11:dd:a9:3a:1d:d7:8a:8c:3d:
b5:dd:d3:76:32:da:08:2d:eb:a5:95:57:ea:0a:42:
46:ac:28:7a:f0:6f:f9:e0:2e:23:3e:81:e6:d3:a1:
ac:d6:6e:f5:03:de:7d:5e:13:20:b3:4e:97:eb:09:
29:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:83:A4:68:EC:8C:87:2B:C2:DF:32:24:75:69:2B:C0:46:30:90:50
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/41c017-4a97-458d-93f3-f699ad52105b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/41c017-4a97-458d-93f3-f699ad52105b/1/0IOkaOyMhyvC3zIkdWkrwEYwkFA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d04::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213382
Signature Algorithm: sha256WithRSAEncryption
95:d9:7b:d5:15:b7:fd:20:2b:58:24:96:e4:53:ad:7d:b6:fb:
09:48:96:67:93:a2:4b:52:3a:6f:bf:77:67:d4:e5:27:c1:00:
7f:3d:a8:8e:91:86:94:05:bf:7d:30:7b:b7:9c:9b:4b:fb:b7:
fe:2d:9a:45:0c:4d:c1:80:30:42:d1:56:d6:ca:f3:ad:bb:05:
02:60:f5:80:12:a3:1c:2a:b0:bd:82:82:58:0a:30:b8:77:69:
55:90:60:3b:7e:77:15:c0:8c:c6:ac:6c:2c:5b:78:70:89:0a:
cc:6f:b0:fd:bd:78:96:87:ac:8c:45:b2:fa:be:4c:c7:e2:79:
e1:2b:a7:78:31:77:da:88:dc:4c:f8:26:55:ef:d4:45:7c:5a:
32:c7:76:e9:69:a3:c6:7e:64:79:8a:7d:a9:14:2b:2c:1e:93:
2b:b1:04:ea:0e:d8:fd:43:0a:a0:ab:24:d5:f2:f6:d5:34:7e:
23:08:17:92:b6:a5:fb:e2:22:1e:6d:dc:4e:35:90:8e:8b:8f:
0c:dc:2a:99:7d:82:a4:78:2e:f9:ec:0f:59:de:85:30:ad:ae:
5e:a0:89:c4:22:7e:10:cf:83:3e:4a:f1:b5:9a:5f:22:03:b8:
af:46:36:b5:d6:35:2c:de:98:02:34:43:10:1d:01:5c:62:17:
f0:ed:92:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:25 2023 by rpki-client on console-fra.rpki-client.org