Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2wLhy_ge_WJkxY-IVgI1zEdBVOg.cer
File: 2wLhy_ge_WJkxY-IVgI1zEdBVOg.cer (raw, json)
Hash identifier: oxdngu+mQsrRSphRe/u08KH283SJnlaQWmodLaDHUPM=
Subject key identifier: DB:02:E1:CB:F8:1E:FD:62:64:C5:8F:88:56:02:35:CC:47:41:54:E8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01832275D179E3A6D2549857B0A3D633C145
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0d/d40ddf-de5b-4e20-923c-480279cfb22b/1/2wLhy_ge_WJkxY-IVgI1zEdBVOg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0d/d40ddf-de5b-4e20-923c-480279cfb22b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 09 Sep 2022 13:34:50 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 109.122.48.0/21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:22:75:d1:79:e3:a6:d2:54:98:57:b0:a3:d6:33:c1:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 9 13:34:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db02e1cbf81efd6264c58f88560235cc474154e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:aa:0f:11:5c:e1:9f:68:39:46:80:e8:97:95:
0b:c3:6c:b3:97:22:79:c6:12:02:22:35:56:be:5c:
16:47:3e:e8:48:26:74:cd:fa:34:ce:25:74:9f:88:
e4:64:7b:54:00:63:24:48:3e:e6:34:e8:0d:6b:bc:
2e:d1:d7:7e:f5:71:8d:54:e5:20:25:2c:54:5c:02:
af:88:58:0e:80:8d:8a:cc:b9:cc:81:43:ed:32:d7:
ba:a0:8d:50:d8:89:8c:c0:28:47:99:c0:61:fc:15:
bd:c7:29:74:c2:4c:66:70:44:5d:99:47:81:74:bb:
6c:22:5b:55:35:14:ae:90:df:c6:67:90:09:5e:0f:
c2:75:08:22:1b:10:8b:23:fa:aa:57:61:26:e2:d1:
cd:a2:aa:d1:92:36:d4:a1:49:bf:fe:c9:fb:6e:06:
ad:8c:37:22:50:5f:88:e6:2e:a4:b4:fe:59:a0:05:
4c:da:4b:a8:2b:d0:d9:5f:55:9e:aa:66:98:0b:73:
36:06:8a:93:28:7c:97:f1:1e:b0:71:88:d2:18:5f:
0d:ef:7b:7f:48:2c:44:1d:db:a6:2f:24:90:b4:7d:
42:dd:15:91:8c:8a:8d:45:be:b1:81:12:b6:a4:30:
8c:27:92:2b:e0:d6:f2:a3:26:15:ef:9e:3a:e3:a4:
7c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:02:E1:CB:F8:1E:FD:62:64:C5:8F:88:56:02:35:CC:47:41:54:E8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/d40ddf-de5b-4e20-923c-480279cfb22b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/d40ddf-de5b-4e20-923c-480279cfb22b/1/2wLhy_ge_WJkxY-IVgI1zEdBVOg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.48.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:62:5c:10:f8:2c:93:1e:c3:06:40:3c:97:f6:42:04:75:fa:
8d:d9:0a:5b:b2:ea:cf:2b:00:95:ae:b0:12:20:46:8d:e1:dd:
a2:ff:60:46:e1:e8:76:a9:b4:9b:11:02:91:f5:b5:55:94:84:
f6:cd:c4:ff:7d:6b:bb:57:b3:08:39:fc:da:4f:5b:38:31:5c:
b7:85:0c:76:1c:5b:ff:d5:8c:3b:56:d0:a7:e3:ec:02:39:57:
0e:e6:96:02:34:ee:db:a0:b9:c7:bd:22:19:28:22:24:f5:eb:
d5:68:aa:45:22:34:9e:6d:93:b9:5e:91:33:1c:1b:4e:61:2b:
fa:1b:ba:a2:e5:a0:05:01:2b:98:ae:65:1f:e8:52:c5:6b:47:
b2:dc:a2:16:b8:c4:a9:41:77:0c:8e:c4:da:dc:2c:8d:2d:4b:
d1:b9:5f:da:b4:98:9f:ca:38:2b:6e:68:d2:3f:43:8d:70:6d:
fb:cc:9f:10:d7:76:2e:2a:af:d5:10:b0:62:6e:32:52:92:cc:
be:cf:ff:61:9b:a3:ff:95:f5:34:dc:0d:bc:a8:50:2f:29:7b:
8a:32:32:bf:7e:d7:a7:d3:61:9b:b3:e9:5f:8b:61:21:54:1d:
f3:00:46:ae:31:61:8b:2d:b2:0e:52:da:a2:c6:5c:7c:10:21:
d7:aa:cd:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:05 2023 by rpki-client on console-fra.rpki-client.org