Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2qlp-QuYyZiEZWmXrDV-2AF9CVU.cer
File: 2qlp-QuYyZiEZWmXrDV-2AF9CVU.cer (raw, json)
Hash identifier: Bf2l1/XWgJ0tJqbhjbTqLXAGtL5JNAnnjOXubE1Y20I=
Subject key identifier: DA:A9:69:F9:0B:98:C9:98:84:65:69:97:AC:35:7E:D8:01:7D:09:55
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 769552367B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c6/bf43e1-f24e-4206-87a3-6106737cdc16/1/2qlp-QuYyZiEZWmXrDV-2AF9CVU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c6/bf43e1-f24e-4206-87a3-6106737cdc16/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 01 Jan 2021 00:31:08 +0000
Certificate not after: Fri 01 Jul 2022 00:00:00 +0000
Subordinate resources: AS: 199327
IP: 185.21.48.0/22
IP: 2a00:5520::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 509311334011 (0x769552367b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:31:08 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=daa969f90b98c99884656997ac357ed8017d0955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ef:3f:86:b0:92:fc:76:e5:2f:fd:3d:16:b1:
fc:42:09:88:65:f7:0c:e4:99:80:fa:fd:4c:50:d3:
a1:5a:d7:19:e5:2f:43:ef:37:aa:f4:1e:4e:09:94:
43:53:c6:f3:26:54:18:af:c2:38:c6:59:b5:9f:b4:
10:ff:11:24:6a:13:f4:16:5a:23:81:f7:ef:06:45:
21:8d:34:d1:49:eb:7b:cd:69:ae:87:c1:e1:6e:80:
fa:0c:a2:be:5b:d0:a8:d2:98:ae:3a:31:a0:18:39:
dc:50:f8:1d:52:76:cc:52:e8:95:f6:04:16:a1:06:
bf:40:39:f2:09:59:ee:d3:33:99:e8:f2:a2:ea:74:
16:b9:c1:74:c0:62:b0:b5:0c:a0:fc:e4:75:d5:cb:
fb:4b:a1:c8:ba:3f:3b:00:eb:a6:fc:23:2f:c2:52:
63:36:b1:dd:48:0f:78:ef:84:ed:46:77:43:0f:55:
2b:3b:08:ec:d6:bd:94:42:26:1a:62:fe:21:59:d4:
b2:45:44:3c:76:79:9b:b3:96:4b:7e:aa:ce:d2:05:
a2:18:7e:61:c3:4b:f8:79:9a:b0:bf:32:a5:d0:ec:
27:82:05:85:58:a1:94:e4:e9:5b:b0:68:d7:88:82:
55:8b:dd:9b:43:b1:c9:0c:d4:75:ed:0a:9a:35:d1:
d4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:A9:69:F9:0B:98:C9:98:84:65:69:97:AC:35:7E:D8:01:7D:09:55
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bf43e1-f24e-4206-87a3-6106737cdc16/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bf43e1-f24e-4206-87a3-6106737cdc16/1/2qlp-QuYyZiEZWmXrDV-2AF9CVU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.48.0/22
IPv6:
2a00:5520::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199327
Signature Algorithm: sha256WithRSAEncryption
58:0c:bc:ef:17:3d:1f:a4:27:48:97:54:76:e6:ff:30:eb:5b:
a2:ce:82:32:19:60:eb:96:e7:20:e6:73:37:c0:d4:7f:21:c0:
df:9e:0e:59:5f:1e:96:d3:47:1a:ff:f9:6c:85:06:1b:dd:c2:
9a:4b:27:3d:a3:ee:a9:6d:93:25:49:df:64:d6:b1:df:ae:09:
6f:23:20:02:aa:fd:32:dc:18:6c:4d:0c:97:9d:62:e2:9d:4b:
c5:00:37:54:60:df:aa:e7:35:6b:86:d3:55:c8:7d:1d:22:f9:
8f:a6:28:b6:6f:3d:60:88:2b:cb:1f:db:da:0f:6c:ee:f4:4c:
41:45:08:a6:44:da:01:39:a7:d6:c8:6b:c8:02:20:09:ce:53:
43:2e:8f:e1:16:85:6e:58:bf:bc:ae:d9:83:91:34:11:a5:05:
d5:05:a3:24:43:9a:43:54:32:e2:5a:7f:22:b6:25:ea:18:b2:
48:13:b0:a9:01:eb:53:dc:b0:d9:05:20:3c:ee:1e:af:0f:45:
6a:b1:24:b1:cd:99:bc:5b:d1:87:d9:f0:0e:d6:92:f0:17:df:
ed:3a:f0:7c:ee:f6:30:5c:4d:cf:6f:0c:09:c1:bf:68:70:20:
de:77:61:3e:b1:92:95:01:13:ca:98:e9:a4:0d:6a:04:c8:88:
93:d8:26:92
-----BEGIN CERTIFICATE-----
MIIFljCCBH6gAwIBAgIFdpVSNnswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMo
MmE5NGE4ZGQ1NTRhZTcwMTA3MjA5OWM3MGI2NDA3NTU1ZGRkZTY2OTAeFw0yMTAx
MDEwMDMxMDhaFw0yMjA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKGRhYTk2OWY5MGI5
OGM5OTg4NDY1Njk5N2FjMzU3ZWQ4MDE3ZDA5NTUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCb7z+GsJL8duUv/T0WsfxCCYhl9wzkmYD6/UxQ06Fa1xnl
L0PvN6r0Hk4JlENTxvMmVBivwjjGWbWftBD/ESRqE/QWWiOB9+8GRSGNNNFJ63vN
aa6HweFugPoMor5b0KjSmK46MaAYOdxQ+B1SdsxS6JX2BBahBr9AOfIJWe7TM5no
8qLqdBa5wXTAYrC1DKD85HXVy/tLoci6PzsA66b8Iy/CUmM2sd1ID3jvhO1Gd0MP
VSs7COzWvZRCJhpi/iFZ1LJFRDx2eZuzlkt+qs7SBaIYfmHDS/h5mrC/MqXQ7CeC
BYVYoZTk6VuwaNeIglWL3ZtDsckM1HXtCpo10dTnAgMBAAGjggKvMIICqzAdBgNV
HQ4EFgQU2qlp+QuYyZiEZWmXrDV+2AF9CVUwHwYDVR0jBBgwFoAUKpSo3VVK5wEH
IJnHC2QHVV3d5mkwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwYAYI
KwYBBQUHAQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2kucmlwZS5uZXQv
cmVwb3NpdG9yeS9hY2EvS3BTbzNWVks1d0VISUpuSEMyUUhWVjNkNW1rLmNlcjCC
ASMGCCsGAQUFBwELBIIBFTCCAREwXQYIKwYBBQUHMAWGUXJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzYvYmY0M2UxLWYyNGUtNDIwNi04
N2EzLTYxMDY3MzdjZGMxNi8xLzB8BggrBgEFBQcwCoZwcnN5bmM6Ly9ycGtpLnJp
cGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi9iZjQzZTEtZjI0ZS00MjA2LTg3
YTMtNjEwNjczN2NkYzE2LzEvMnFscC1RdVl5WmlFWldtWHJEVi0yQUY5Q1ZVLm1m
dDAyBggrBgEFBQcwDYYmaHR0cHM6Ly9ycmRwLnJpcGUubmV0L25vdGlmaWNhdGlv
bi54bWwwWQYDVR0fBFIwUDBOoEygSoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3Jl
cG9zaXRvcnkvREVGQVVMVC9LcFNvM1ZWSzV3RUhJSm5IQzJRSFZWM2Q1bWsuY3Js
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwE
AgABMAYDBAK5FTAwDQQCAAIwBwMFACoAVSAwGgYIKwYBBQUHAQgBAf8ECzAJoAcw
BQIDAwqfMA0GCSqGSIb3DQEBCwUAA4IBAQBYDLzvFz0fpCdIl1R25v8w61uizoIy
GWDrlucg5nM3wNR/IcDfng5ZXx6W00ca//lshQYb3cKaSyc9o+6pbZMlSd9k1rHf
rglvIyACqv0y3BhsTQyXnWLinUvFADdUYN+q5zVrhtNVyH0dIvmPpii2bz1giCvL
H9vaD2zu9ExBRQimRNoBOafWyGvIAiAJzlNDLo/hFoVuWL+8rtmDkTQRpQXVBaMk
Q5pDVDLiWn8itiXqGLJIE7CpAetT3LDZBSA87h6vD0VqsSSxzZm8W9GH2fAO1pLw
F9/tOvB87vYwXE3PbwwJwb9ocCDed2E+sZKVARPKmOmkDWoEyIiT2CaS
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:50 2023 by rpki-client on console-ams.rpki-client.org