Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0gAZzXVS6lJqT2p7l563sinUHpw.cer
File: 0gAZzXVS6lJqT2p7l563sinUHpw.cer (raw, json)
Hash identifier: 08juPeNDFM3Wewzn9AE0ixvMq8iUE888nvzcivQlSuE=
Subject key identifier: D2:00:19:CD:75:52:EA:52:6A:4F:6A:7B:97:9E:B7:B2:29:D4:1E:9C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 82491DD814
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a8/1d25aa-dab5-4225-8dcd-ebb40a0d3349/1/0gAZzXVS6lJqT2p7l563sinUHpw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a8/1d25aa-dab5-4225-8dcd-ebb40a0d3349/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 01 Jan 2021 06:03:12 +0000
Certificate not after: Fri 01 Jul 2022 00:00:00 +0000
Subordinate resources: IP: 194.242.46.0/24
IP: 194.246.38.0/24
IP: 194.246.84.0/24
IP: 194.246.100.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 559572441108 (0x82491dd814)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:03:12 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=d20019cd7552ea526a4f6a7b979eb7b229d41e9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:19:17:c4:d3:c8:55:40:b0:cf:a8:c7:a9:9a:
6a:cb:e7:73:8a:6a:43:a7:7f:ad:12:f3:aa:d4:d9:
24:97:63:d2:db:b5:d7:77:d3:7b:90:b5:00:1d:37:
c7:10:bc:e5:bb:25:72:c6:8b:bb:b1:31:04:88:92:
f3:8a:43:88:78:5b:64:94:34:4c:f9:43:da:b1:0f:
bd:2a:64:33:3e:68:d4:77:c3:64:09:9a:09:5b:ca:
b1:13:71:e2:98:4c:9f:fd:34:01:0b:5d:41:7c:66:
10:b6:3c:2e:ee:e1:73:5e:ce:90:50:d6:91:e3:b4:
53:a2:c6:1a:a4:a8:ac:e9:e5:7e:29:0c:19:5d:53:
19:57:64:47:cd:b2:4b:0e:e6:b0:3c:0f:eb:2b:91:
4c:46:98:0e:9d:46:3c:f7:a1:b6:7a:9d:c1:ff:87:
57:78:0b:c9:8e:2a:2a:03:a3:a4:6e:da:f1:64:78:
4e:57:b5:0b:06:d7:8d:4c:33:ef:9b:d0:74:3c:73:
f4:6a:d3:8f:cc:7a:6d:a6:07:ad:9e:62:b6:ce:d2:
61:80:6c:eb:fe:96:e7:16:05:8c:08:0c:a1:3d:44:
22:46:bd:5e:0f:bf:66:9a:f4:ad:41:20:68:c3:fb:
52:60:a0:34:67:08:c4:69:a1:15:c4:22:50:85:c2:
41:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:00:19:CD:75:52:EA:52:6A:4F:6A:7B:97:9E:B7:B2:29:D4:1E:9C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1d25aa-dab5-4225-8dcd-ebb40a0d3349/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1d25aa-dab5-4225-8dcd-ebb40a0d3349/1/0gAZzXVS6lJqT2p7l563sinUHpw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.46.0/24
194.246.38.0/24
194.246.84.0/24
194.246.100.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:0c:18:95:39:6d:e4:f2:23:91:76:b4:e8:74:05:7c:02:72:
7f:1b:7f:6f:7f:d4:9b:26:fc:e7:7d:5b:69:32:3c:e8:77:5d:
26:0b:23:ed:52:c5:b8:66:29:93:f9:b5:bf:a4:d2:58:7b:3c:
fb:31:51:da:ab:83:eb:c5:c9:b5:6b:2e:32:39:08:28:8a:5e:
ea:4f:8f:1f:a1:da:0d:57:b6:d5:ba:f6:57:ab:9e:23:ed:55:
ac:8a:a4:98:ef:ad:02:60:48:b2:0f:b6:b3:b5:28:7c:50:3a:
7c:21:8c:37:9f:02:8c:89:cd:a3:60:e6:ba:d5:fc:0b:f3:61:
9d:04:c5:03:b7:fc:ec:ea:6c:ed:b0:15:0c:0f:a4:1c:bc:10:
89:f0:df:66:fc:10:ac:50:68:94:23:cf:b9:25:65:36:4d:37:
7a:86:34:e2:84:b3:2b:00:81:27:ef:de:44:50:67:63:45:9f:
92:1c:46:96:7b:06:ff:61:01:e0:c6:2d:14:37:2f:e4:1e:8e:
81:cd:a1:cb:ec:49:0a:19:21:b7:bb:bb:ed:5a:5d:fc:ef:2d:
62:36:a9:52:c9:1c:c3:ef:91:6b:31:38:e2:ee:81:f5:1b:0c:
4b:42:da:0f:09:3d:bb:fb:c5:fc:09:d4:63:83:ea:4e:3b:7d:
1c:e6:54:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:53 2023 by rpki-client on console-ams.rpki-client.org