Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.cer
File: 30ZXgSQ1uxr0gC-WAy-RxXy8yTM.cer (raw, json)
Hash identifier: QvQiwnHP1Ql2jkBvhmn8SgbKkQ3jT4YM2ZYcVmAK5t0=
Subject key identifier: DF:46:57:81:24:35:BB:1A:F4:80:2F:96:03:2F:91:C5:7C:BC:C9:33
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0188E7B3D2AE00380012F94091A5459BE779
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 23 Jun 2023 10:01:41 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 5.180.100.0/24
IP: 5.180.102.0/23
IP: 45.15.252.0/22
IP: 45.93.12.0/22
IP: 77.83.184.0/22
IP: 176.53.133.0 -- 176.53.135.255
IP: 193.187.97.0/24
IP: 194.34.248.0/22
IP: 213.166.88.0/22
IP: 2a09:3900::/29
IP: 2a09:3c80::/29
IP: 2a09:cb00::/29
IP: 2a0d:fb40::/29
IP: 2a0f:ff80::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e7:b3:d2:ae:00:38:00:12:f9:40:91:a5:45:9b:e7:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 23 10:01:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df4657812435bb1af4802f96032f91c57cbcc933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ce:db:20:0b:e7:8a:58:2d:40:2f:c2:be:17:
14:40:a0:25:e3:b2:61:d5:b4:fa:ed:6c:4d:a3:52:
7d:ac:b7:b6:7e:cf:73:5c:12:79:45:0d:7e:c6:48:
8a:63:78:37:9b:ea:d3:f8:43:5f:c7:36:d2:ab:53:
94:2a:69:fe:b8:78:ce:22:7b:62:b1:0b:e4:e0:6b:
88:0b:9d:fe:7b:6f:9f:a2:d5:bf:3a:40:c2:b0:74:
8f:11:13:7b:db:cd:81:23:14:29:38:a5:46:bc:25:
06:ea:b2:ea:2d:43:6b:8b:92:0a:c2:be:18:8d:fb:
80:c3:7c:f1:dd:4d:69:e2:33:67:c9:a4:a6:70:1b:
dc:66:f4:fb:ec:5a:52:3b:c6:c4:f8:9c:e5:cc:a9:
23:f6:5b:be:0c:67:77:17:93:0f:52:c1:c2:0e:7e:
f8:d0:2c:cb:3f:83:d2:24:29:85:e4:9f:14:72:e5:
42:d7:25:32:46:87:e2:c2:a1:f9:f5:d2:3d:56:fd:
67:1e:90:48:d9:07:c5:43:d2:1f:45:94:ad:43:03:
13:89:35:8c:6a:fe:0e:26:0b:05:b1:50:9a:96:42:
c1:94:9a:19:06:96:eb:27:4d:f6:7f:0f:dd:6b:b9:
8a:4b:14:b2:3f:9b:f5:3e:6c:6e:52:12:34:b2:01:
fa:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:46:57:81:24:35:BB:1A:F4:80:2F:96:03:2F:91:C5:7C:BC:C9:33
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.100.0/24
5.180.102.0/23
45.15.252.0/22
45.93.12.0/22
77.83.184.0/22
176.53.133.0-176.53.135.255
193.187.97.0/24
194.34.248.0/22
213.166.88.0/22
IPv6:
2a09:3900::/29
2a09:3c80::/29
2a09:cb00::/29
2a0d:fb40::/29
2a0f:ff80::/29
Signature Algorithm: sha256WithRSAEncryption
1a:67:64:0a:dd:44:f6:77:f8:25:a0:64:9a:d7:f5:a4:c2:a2:
48:6e:f6:4e:2b:dd:6c:a5:6f:53:a0:39:f0:cc:62:b2:b3:01:
5a:b5:aa:d6:d3:9d:d1:42:8f:6d:05:69:7b:c1:60:f4:d1:d7:
13:bf:28:64:db:c5:f6:2b:fa:2a:db:54:c3:03:20:f6:4e:17:
c4:98:a5:59:b4:f4:22:a5:b0:b4:a3:b3:f3:d7:2a:21:e9:df:
51:26:58:f3:f3:e1:b7:92:e5:15:d1:bd:ab:8e:84:c0:b2:81:
4d:56:10:dc:c1:28:a6:90:ce:f1:97:f6:bc:9d:ae:ce:eb:f0:
68:dd:c6:fa:b9:38:11:80:b6:e3:3a:ad:d6:29:62:7f:2b:2d:
44:1a:ed:d0:c5:4a:e4:6b:55:ab:d3:d0:1b:0d:6c:5e:f9:73:
19:48:02:dd:e9:30:55:ea:2c:d3:f2:5c:27:e7:90:2c:02:a5:
79:1a:84:d2:ad:cf:12:44:f9:90:34:d9:cd:5d:a6:2f:34:0e:
0b:02:f0:53:af:5f:01:d4:58:68:5d:e2:b8:55:fb:eb:90:f2:
01:06:a5:f1:af:8d:92:58:b1:e7:7e:57:9f:92:d4:68:b7:e3:
ee:45:5e:e6:8c:36:ca:02:ca:1d:f0:30:04:20:83:d5:f2:0d:
0f:60:76:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 13:49:52 2025 by rpki-client