Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8WV-kMpyvz6dm9mP0HGZhMsHirg.cer
File: 8WV-kMpyvz6dm9mP0HGZhMsHirg.cer (raw, json)
Hash identifier: fow90eARPyssHsvxe9tHpTd2edklNGkiBPKR/Lk2vKs=
Subject key identifier: F1:65:7E:90:CA:72:BF:3E:9D:9B:D9:8F:D0:71:99:84:CB:07:8A:B8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A7C91D691C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4c/5629b7-851d-457b-bd1b-88558f4db9a5/1/8WV-kMpyvz6dm9mP0HGZhMsHirg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4c/5629b7-851d-457b-bd1b-88558f4db9a5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 13:05:18 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 1891
AS: 3304
AS: 8644
IP: 62.235.0.0/16
IP: 80.236.128.0/17
IP: 81.11.128.0/17
IP: 83.134.0.0/16
IP: 88.197.128.0/17
IP: 193.28.47.0/24
IP: 193.74.0.0/16
IP: 193.75.128.0/17
IP: 193.91.96.0/19
IP: 193.121.0.0/16
IP: 194.119.224.0/19
IP: 195.0.0.0/17
IP: 195.74.192.0/19
IP: 195.95.0.0/17
IP: 195.207.0.0/16
IP: 212.233.0.0/19
IP: 212.239.128.0/17
IP: 213.49.0.0/16
IP: 213.177.128.0/19
IP: 2a04:6c40::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 720633686300 (0xa7c91d691c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 13:05:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1657e90ca72bf3e9d9bd98fd0719984cb078ab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2b:7d:d6:84:c9:9f:85:19:f7:d3:94:ca:f3:
35:24:e7:53:fb:aa:a6:c0:06:d1:78:e2:07:b0:83:
19:75:69:74:c6:32:96:34:7f:1e:19:7b:22:2b:8f:
47:7d:ff:9b:fa:38:c5:5d:d2:c0:45:fd:45:28:74:
e0:89:fa:a1:13:c8:7f:99:aa:62:58:0f:a0:45:b2:
5f:f5:ae:9f:29:d5:b6:38:8d:09:2a:5e:81:34:ff:
b8:eb:d8:fc:b7:7e:08:fa:74:56:aa:3f:f5:e5:dc:
7b:13:95:15:8a:e8:6e:e8:70:e2:6e:16:ed:a1:24:
f7:38:90:77:9a:c5:ff:63:b2:c1:46:a1:9f:1d:56:
0b:44:8d:5a:0c:cc:31:aa:74:53:f5:60:71:72:15:
6b:9e:04:44:4f:18:07:42:43:55:cd:ed:e6:c2:ef:
19:b9:99:c8:33:2f:c2:a8:d0:eb:c1:07:0a:dd:94:
ae:33:5c:bc:e8:9c:d8:3d:f8:e1:a3:f9:9d:ba:b3:
db:35:b5:f3:77:ab:44:18:93:88:49:17:fb:d3:e1:
d0:3f:28:ec:9a:e6:22:f8:a7:de:98:6d:92:8e:52:
da:78:96:5f:ad:45:37:b0:92:bc:3f:4c:26:98:2e:
be:17:9e:f1:fb:12:3c:f1:a9:42:e8:e1:58:6d:d6:
ce:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:65:7E:90:CA:72:BF:3E:9D:9B:D9:8F:D0:71:99:84:CB:07:8A:B8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5629b7-851d-457b-bd1b-88558f4db9a5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5629b7-851d-457b-bd1b-88558f4db9a5/1/8WV-kMpyvz6dm9mP0HGZhMsHirg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.235.0.0/16
80.236.128.0/17
81.11.128.0/17
83.134.0.0/16
88.197.128.0/17
193.28.47.0/24
193.74.0.0/16
193.75.128.0/17
193.91.96.0/19
193.121.0.0/16
194.119.224.0/19
195.0.0.0/17
195.74.192.0/19
195.95.0.0/17
195.207.0.0/16
212.233.0.0/19
212.239.128.0/17
213.49.0.0/16
213.177.128.0/19
IPv6:
2a04:6c40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
1891
3304
8644
Signature Algorithm: sha256WithRSAEncryption
5d:96:64:fd:ab:9b:e7:3d:82:c6:9e:2e:ac:44:17:e8:0d:f8:
d4:b1:3a:c4:10:92:bc:0e:83:02:dd:e8:97:39:77:4f:e4:d1:
c0:66:d7:fb:6a:8b:e2:89:63:72:25:28:37:27:42:ef:96:50:
57:f7:d5:d2:6a:6d:ff:c3:9b:08:9b:95:96:09:04:57:2b:1d:
b5:9a:d4:df:f3:05:ae:38:e0:b5:a9:7f:61:df:43:7e:7d:c9:
32:96:36:98:44:59:c1:59:ed:ce:31:22:48:2a:78:aa:b3:f5:
72:7c:0c:0e:d1:45:0e:fd:a8:f0:be:99:48:52:9d:3a:f9:15:
c2:78:f0:91:b7:d8:04:f2:b4:46:a8:51:1a:49:f2:02:5b:de:
ad:1c:21:22:b4:09:92:90:5f:19:a9:08:cd:ee:e5:c0:d7:9e:
04:4e:7d:65:2c:e2:73:f4:aa:74:72:68:c6:2e:a2:f7:b7:a7:
9f:7a:52:09:86:d4:53:b2:f4:cc:10:a6:18:43:f5:8c:69:49:
30:8e:5c:41:c2:87:bc:42:a0:92:ec:4e:bd:70:9c:7a:9c:15:
ab:05:27:62:6e:33:d9:25:4d:cb:29:ef:ad:46:87:16:59:70:
69:1b:29:7e:61:38:00:6f:6b:31:28:7c:c2:af:ac:29:2a:9f:
be:67:f1:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:06 2023 by rpki-client on console-fra.rpki-client.org