Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/166aE8bd1yoQyYMhL1IPocizAnQ.cer
File: 166aE8bd1yoQyYMhL1IPocizAnQ.cer (raw, json)
Hash identifier: EV3T4kPQEl9fqaUEMXLnToYR1Jh/MxWJorlbv296l3U=
Subject key identifier: D7:AE:9A:13:C6:DD:D7:2A:10:C9:83:21:2F:52:0F:A1:C8:B3:02:74
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 7E51F04AF1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f7/72888e-fb20-4157-9de7-1f47929b5197/1/166aE8bd1yoQyYMhL1IPocizAnQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f7/72888e-fb20-4157-9de7-1f47929b5197/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 01 Jan 2021 03:48:32 +0000
Certificate not after: Fri 01 Jul 2022 00:00:00 +0000
Subordinate resources: AS: 35251
IP: 185.80.200.0/22
IP: 2a0f:7980::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 542540581617 (0x7e51f04af1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:48:32 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=d7ae9a13c6ddd72a10c983212f520fa1c8b30274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d9:12:e9:a4:08:d8:da:3a:18:70:c2:2c:9c:
a7:83:94:22:2a:9b:bb:53:8e:5e:67:35:9c:7b:8f:
0f:a2:6d:13:83:c0:18:39:65:98:d4:9f:b2:0d:e5:
f9:95:39:06:b7:fa:a2:29:b7:40:ae:43:b2:14:a9:
67:20:21:4c:ed:3e:0b:22:32:24:d4:e9:a8:af:0e:
dc:d1:79:14:0f:97:8e:00:7d:ae:6c:44:ab:09:d1:
b9:80:a6:9c:cd:ab:50:87:f9:57:5e:91:04:e0:63:
34:8e:4a:32:04:59:66:5f:21:95:f9:f3:c0:04:c0:
f1:53:59:41:dc:51:b8:7a:9c:c5:c5:d2:4f:c9:b6:
2c:09:42:54:a3:2d:51:ef:59:ca:f6:4f:6f:e7:b7:
b3:55:be:65:9b:09:18:74:e6:b3:dc:d5:e9:a7:94:
fb:b5:5a:29:8f:a4:11:7b:cd:1a:38:8a:bc:93:10:
4f:a8:a9:e2:1e:0b:66:05:b6:bd:b2:ee:ae:4d:55:
9e:0e:ec:06:70:40:cf:48:f5:da:43:df:62:be:e7:
3f:e6:b1:6c:a1:ba:8e:28:57:ae:02:ab:09:24:e7:
33:a5:3d:3a:e3:d2:3c:ea:1a:1a:81:e3:2a:a2:98:
84:85:06:3e:01:d5:c2:c0:38:59:9e:10:57:4c:9c:
c0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:AE:9A:13:C6:DD:D7:2A:10:C9:83:21:2F:52:0F:A1:C8:B3:02:74
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/72888e-fb20-4157-9de7-1f47929b5197/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/72888e-fb20-4157-9de7-1f47929b5197/1/166aE8bd1yoQyYMhL1IPocizAnQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.200.0/22
IPv6:
2a0f:7980::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35251
Signature Algorithm: sha256WithRSAEncryption
88:1e:39:41:24:7d:14:cf:8e:eb:b4:e8:c2:d3:b7:4b:a5:29:
03:73:00:e1:9b:06:6d:e4:5f:f2:60:8f:93:99:e4:88:95:34:
07:63:5a:64:02:fa:9f:68:4a:60:82:78:14:86:dd:75:df:c2:
56:2e:c6:42:b2:de:4c:0a:76:3d:e4:9c:d4:77:60:29:9e:a7:
33:ab:d9:d1:3f:b8:15:b8:79:01:18:26:5c:77:85:20:51:00:
68:39:c8:83:05:61:84:50:07:23:00:ea:f3:85:ae:ac:f7:25:
26:9f:bd:9e:6a:8e:d5:fb:d5:86:1a:ca:78:01:16:fa:3d:89:
23:09:bb:d7:2c:1d:f2:8e:0b:7b:6c:56:2b:8d:a0:ca:21:83:
50:91:fe:6a:fe:09:c9:0c:b3:ba:9b:21:c6:08:28:11:fd:42:
85:41:77:29:23:e6:e7:7f:00:c2:2c:cf:9b:b2:e2:ed:ed:85:
97:bb:3e:45:fa:73:e3:f6:ad:e3:2d:3b:1c:80:09:c5:83:90:
c5:10:2a:e6:53:dc:96:7c:99:b1:ac:92:1e:cb:c7:44:d1:e1:
cb:8a:67:df:9c:11:4d:c3:3a:18:92:47:ff:1b:6b:62:85:95:
6c:5e:e8:83:e5:e0:4c:5b:72:d9:ce:cc:53:b3:8c:34:42:61:
16:39:65:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:23 2023 by rpki-client on console-ams.rpki-client.org