Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7fiNZSS1B8DLIeYSCwFYYnb6KAo.cer
File: 7fiNZSS1B8DLIeYSCwFYYnb6KAo.cer (raw, json)
Hash identifier: geQwia9fIG35GcWhp1NPIJZdQOPx4unAhr5ldjRNdpQ=
Subject key identifier: ED:F8:8D:65:24:B5:07:C0:CB:21:E6:12:0B:01:58:62:76:FA:28:0A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 9B40FE2D92
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/dc/253fba-9205-4956-b0f7-13c9965e80aa/1/7fiNZSS1B8DLIeYSCwFYYnb6KAo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/dc/253fba-9205-4956-b0f7-13c9965e80aa/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 02:51:42 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 31321
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 666810330514 (0x9b40fe2d92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:51:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edf88d6524b507c0cb21e6120b01586276fa280a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d5:b7:51:2c:fb:11:b7:72:84:5d:94:3b:7d:
87:58:f7:00:d0:7a:b8:b0:d3:f1:e4:c3:ba:b8:ae:
ee:13:71:3f:1b:fd:c8:06:12:89:83:77:57:2b:92:
98:54:b2:b5:0b:a4:04:8b:a5:6b:c2:90:29:d5:90:
f9:f9:73:d0:16:29:b2:c5:66:75:fc:f9:74:6b:5f:
04:91:19:2e:de:da:cd:7d:9e:25:f5:49:7d:e5:68:
36:41:26:56:f0:35:d3:f5:30:b2:60:ce:81:51:64:
56:56:0f:fd:1e:3c:f2:f7:ed:23:8f:d7:66:73:f8:
70:e7:c0:6f:07:01:c5:53:b9:de:70:7f:8d:02:35:
99:75:e2:17:75:4a:e9:ea:5a:49:ce:3e:0d:d6:ea:
28:64:73:3c:24:d1:30:e1:a3:18:c4:cd:e3:29:6f:
a8:ed:fb:14:a2:72:fc:a9:60:2f:40:ff:d2:a3:d0:
b9:e2:92:1f:b3:17:c9:9d:8a:2f:45:fd:c4:27:90:
64:15:32:6f:2c:7e:6d:61:b5:90:13:35:c9:04:3e:
0a:57:f4:04:86:85:d2:2f:78:e8:25:e2:e3:f2:d8:
52:4d:d1:07:38:d0:b0:54:42:39:91:38:ce:da:51:
51:ba:f1:11:c3:ee:67:8b:07:6f:ce:8c:db:ec:32:
ea:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F8:8D:65:24:B5:07:C0:CB:21:E6:12:0B:01:58:62:76:FA:28:0A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/253fba-9205-4956-b0f7-13c9965e80aa/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/253fba-9205-4956-b0f7-13c9965e80aa/1/7fiNZSS1B8DLIeYSCwFYYnb6KAo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31321
Signature Algorithm: sha256WithRSAEncryption
39:27:c2:e0:77:b5:f2:e7:00:41:d3:9d:d4:dc:50:fc:fe:16:
92:da:ae:92:b5:44:9a:44:1f:70:e4:e8:89:59:29:f9:bd:81:
42:f5:99:3d:b8:33:33:5a:46:e5:af:e8:ae:ba:03:f4:cb:82:
fe:5d:9f:8e:eb:a9:6a:8e:ae:ec:a7:33:fa:a4:87:73:0d:03:
14:51:ac:0f:0a:b5:d2:bf:37:bb:ca:80:e3:1b:51:95:f1:fc:
97:be:4b:46:f8:b2:7f:16:75:71:3f:1c:ca:b8:21:3f:a1:e4:
eb:5f:55:88:18:93:bc:6f:89:5f:16:f9:48:63:96:ef:06:7a:
a1:2e:fc:02:70:f1:52:59:d4:67:dd:d9:a8:8c:2a:5b:dc:f2:
38:34:d8:4a:b0:78:57:9a:99:9c:a2:3a:c2:e5:33:12:c8:f2:
c9:ec:2c:b3:c2:fb:8e:c1:5b:d4:d8:48:21:85:a8:d5:3d:71:
b9:0c:ff:ee:48:7e:40:ec:be:12:8e:e3:f9:c5:33:55:0f:73:
9a:ac:2f:ca:59:12:c8:ab:3b:b0:4f:0e:a5:43:c3:46:71:cd:
46:86:cb:3b:ef:b9:ac:f4:87:3f:ee:bf:b6:87:15:cd:ab:d9:
65:4f:9f:46:42:70:ce:da:65:d5:67:ce:00:d0:8a:33:6d:1a:
25:b7:6c:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:33 2023 by rpki-client on console-fra.rpki-client.org