Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0sDuK7qXx3IEh9NaODbk14qDAqQ.cer
File: 0sDuK7qXx3IEh9NaODbk14qDAqQ.cer (raw, json)
Hash identifier: bubunFVUfVf2U65caDq5AZ3xsCkQyOoS6801sKJJ4EE=
Subject key identifier: D2:C0:EE:2B:BA:97:C7:72:04:87:D3:5A:38:36:E4:D7:8A:83:02:A4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A2B8B577DF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f7/2b3515-7fe7-426c-892e-4f0431fc39ab/1/0sDuK7qXx3IEh9NaODbk14qDAqQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f7/2b3515-7fe7-426c-892e-4f0431fc39ab/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 08:57:56 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 212384
IP: 185.180.147.0/24
IP: 2a10:63c0::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 698883602399 (0xa2b8b577df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:57:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2c0ee2bba97c7720487d35a3836e4d78a8302a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:bd:45:a0:34:6c:88:67:45:e4:c4:85:e8:14:
91:89:00:dd:43:21:9f:b6:ba:29:66:05:93:a5:42:
c4:ac:50:8d:fb:83:bb:48:67:bc:22:09:f0:b7:72:
60:c4:85:2f:50:5c:1d:bc:25:ba:55:94:5e:a4:3b:
54:c3:fc:cf:4f:f6:dc:14:1b:68:ae:6a:0c:50:54:
52:24:c5:e3:d7:37:20:c7:e2:01:50:4a:e4:72:1c:
a0:31:ee:fe:bf:16:e5:7d:ab:4c:be:14:53:fd:14:
16:b3:66:fa:8c:48:cb:79:6b:40:32:ab:cf:04:08:
a6:7d:39:b8:0d:0b:16:05:3f:39:ef:b5:40:ed:e6:
ee:f6:6a:a2:1d:5e:64:db:a6:c0:c7:8c:b5:17:0d:
2e:7a:91:e5:36:2a:77:ae:79:d3:46:64:5f:0f:07:
8c:81:23:c0:e3:ef:c3:5d:cd:2d:80:17:6b:2f:39:
57:07:3b:dc:72:4a:13:34:04:6a:0e:22:af:9b:79:
5a:67:22:70:01:88:bc:07:f8:d9:df:9a:8a:fd:85:
ed:60:64:5f:77:23:07:d3:98:0c:dd:b3:5c:1e:65:
ba:e7:f7:bb:a9:ae:74:55:fb:4a:85:cb:58:f3:ff:
06:7a:71:0b:9b:8b:aa:8f:4d:93:2d:7e:45:5c:33:
fa:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:C0:EE:2B:BA:97:C7:72:04:87:D3:5A:38:36:E4:D7:8A:83:02:A4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2b3515-7fe7-426c-892e-4f0431fc39ab/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2b3515-7fe7-426c-892e-4f0431fc39ab/1/0sDuK7qXx3IEh9NaODbk14qDAqQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.147.0/24
IPv6:
2a10:63c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212384
Signature Algorithm: sha256WithRSAEncryption
5d:98:da:06:7f:ff:5d:15:48:4f:14:92:e5:50:f7:8c:fc:07:
31:03:ae:68:01:38:13:a1:88:a3:80:4a:3b:54:86:e3:fd:a3:
ad:0b:86:87:20:3a:a0:aa:d0:ea:09:04:a6:66:6b:4a:e4:7c:
1a:69:d1:33:40:76:d5:b9:f3:5e:44:a4:8f:b2:9c:a6:81:d5:
2b:b0:77:44:32:f3:2f:27:0c:84:8a:6d:4e:3d:a0:44:f4:bc:
71:7e:0e:47:95:e8:bd:ac:6f:1b:04:c2:f3:c5:4e:ce:59:19:
eb:bf:a8:dd:de:79:26:3a:20:ec:29:19:79:df:d8:fa:3c:96:
99:6d:c8:99:d2:4a:6b:ea:91:3a:5d:4e:86:c7:fd:e4:64:f9:
ee:27:19:e7:96:f7:45:bb:a6:07:6d:11:5b:03:4f:eb:b4:78:
1f:7c:5a:9b:ce:b6:b1:42:d3:cb:9d:c4:c6:03:4b:06:7c:0c:
97:8d:76:14:e3:54:2d:8a:89:63:fd:85:10:12:09:ee:52:ed:
04:67:b2:d7:b8:39:80:40:51:50:4a:56:36:47:1c:0c:d1:10:
df:70:d8:d1:24:e8:16:ca:c8:4d:6f:b7:6f:2d:30:1b:f6:2b:
b3:31:25:29:40:6a:7c:9b:99:a8:c5:4d:7e:05:6a:09:49:14:
a8:8b:37:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:56 2023 by rpki-client on console-fra.rpki-client.org