Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/933jPBAn2xjWAFm2B02-lLzkd34.cer
File: 933jPBAn2xjWAFm2B02-lLzkd34.cer (raw, json)
Hash identifier: 2Bi64NHmRa2jzVaNmvYNHb0tYgTbRqkygJz7gAbeDOg=
Subject key identifier: F7:7D:E3:3C:10:27:DB:18:D6:00:59:B6:07:4D:BE:94:BC:E4:77:7E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A52E42D7B0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/75/44fe80-204c-46f0-9acc-b77a4b207c06/1/933jPBAn2xjWAFm2B02-lLzkd34.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/75/44fe80-204c-46f0-9acc-b77a4b207c06/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 10:58:58 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 204821
IP: 185.238.232.0/22
IP: 2a0c:4080::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 709445736368 (0xa52e42d7b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:58:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f77de33c1027db18d60059b6074dbe94bce4777e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:22:01:85:97:fb:f5:1a:33:14:70:d3:66:42:
f0:97:fe:6a:bb:93:8f:7b:e9:89:67:b1:19:60:bc:
c6:22:8f:8d:5b:ec:10:cf:2c:8c:ea:d7:33:a4:65:
09:b2:00:f5:c2:d3:84:98:3d:94:d4:14:5a:0f:55:
ee:2e:8c:37:87:fe:d8:69:20:f5:f6:f2:14:31:ca:
e1:b7:aa:c9:4a:fd:eb:27:a2:74:87:49:02:5f:c4:
f7:cf:72:f0:16:6c:e6:a5:f9:68:ce:93:99:4d:e9:
37:8f:11:5b:b5:73:7f:57:dc:8d:ce:93:e3:c5:f7:
ef:56:79:ef:b7:4d:9f:b8:a1:9b:8b:9e:44:d0:1a:
b7:45:b0:9f:0d:0a:95:a5:56:82:53:30:3e:22:96:
12:43:2f:18:c3:e9:71:39:50:d1:96:ce:2d:d6:b8:
e7:50:7a:04:8a:6d:ef:cd:ca:58:ee:b6:ba:58:9b:
63:b7:a9:f4:8e:02:95:37:2b:e8:1d:08:01:25:e9:
0d:18:53:ce:6e:88:bb:03:46:98:12:44:50:7a:8f:
30:81:09:48:d9:6a:4c:46:95:49:f2:26:b1:4b:e5:
d2:b8:8a:1e:3a:4e:ce:2c:db:a7:6f:4d:03:92:a5:
77:30:07:df:cc:2a:29:50:c4:e4:4c:e5:83:4f:91:
5d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:7D:E3:3C:10:27:DB:18:D6:00:59:B6:07:4D:BE:94:BC:E4:77:7E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/44fe80-204c-46f0-9acc-b77a4b207c06/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/44fe80-204c-46f0-9acc-b77a4b207c06/1/933jPBAn2xjWAFm2B02-lLzkd34.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.232.0/22
IPv6:
2a0c:4080::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204821
Signature Algorithm: sha256WithRSAEncryption
96:cf:74:45:f4:b6:7b:01:7b:d5:ef:28:af:4f:30:d9:2e:80:
f2:3c:3b:c7:8d:14:f8:a9:9c:8e:6c:6c:40:06:09:27:7b:61:
fe:44:69:92:35:83:79:d2:3d:16:33:ab:41:bc:f1:ad:bb:b6:
5f:7c:73:bd:7a:41:4d:26:08:83:22:c3:09:10:ae:46:ec:cf:
0e:54:00:83:f7:e8:a9:7d:28:0c:7e:40:7b:c8:71:88:a6:03:
4a:a5:89:59:15:1d:b7:ec:86:27:ea:80:9d:e4:11:67:da:4d:
49:6c:57:3f:a5:ce:47:db:69:c6:04:c0:74:a9:5b:0d:5e:6a:
9b:d9:b6:96:72:cb:e4:67:64:30:86:b8:16:2e:d4:74:7f:db:
b4:15:d4:c2:4e:35:34:b6:8c:18:57:ec:37:52:97:b1:62:fd:
74:24:e0:e2:54:37:b0:35:2c:42:38:e2:3e:6c:fb:c4:57:00:
b8:ea:d7:0d:44:3e:c9:34:9c:ed:35:5a:cb:b8:bd:b4:20:a3:
46:ef:36:35:14:16:e1:29:b1:2e:bc:b7:5e:79:96:9d:09:66:
8b:fd:c4:a8:b2:ed:a2:29:d0:c5:e8:80:af:aa:2b:f4:50:9e:
a3:bb:51:29:64:3d:f1:cd:49:5b:05:95:d2:2c:10:b3:1d:53:
a1:55:66:49
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgIGAKUuQtewMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMT
KDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRkZGU2NjkwHhcNMjIw
MTAxMTA1ODU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmNzdkZTMzYzEw
MjdkYjE4ZDYwMDU5YjYwNzRkYmU5NGJjZTQ3NzdlMIIBIjANBgkqhkiG9w0BAQEF
AAOCAQ8AMIIBCgKCAQEA8yIBhZf79RozFHDTZkLwl/5qu5OPe+mJZ7EZYLzGIo+N
W+wQzyyM6tczpGUJsgD1wtOEmD2U1BRaD1XuLow3h/7YaSD19vIUMcrht6rJSv3r
J6J0h0kCX8T3z3LwFmzmpflozpOZTek3jxFbtXN/V9yNzpPjxffvVnnvt02fuKGb
i55E0Bq3RbCfDQqVpVaCUzA+IpYSQy8Yw+lxOVDRls4t1rjnUHoEim3vzcpY7ra6
WJtjt6n0jgKVNyvoHQgBJekNGFPOboi7A0aYEkRQeo8wgQlI2WpMRpVJ8iaxS+XS
uIoeOk7OLNunb00DkqV3MAffzCopUMTkTOWDT5FdqwIDAQABo4ICrzCCAqswHQYD
VR0OBBYEFPd94zwQJ9sY1gBZtgdNvpS85Hd+MB8GA1UdIwQYMBaAFCqUqN1VSucB
ByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMGAG
CCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jZXIw
ggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc1LzQ0ZmU4MC0yMDRjLTQ2ZjAt
OWFjYy1iNzdhNGIyMDdjMDYvMS8wfAYIKwYBBQUHMAqGcHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUvNDRmZTgwLTIwNGMtNDZmMC05
YWNjLWI3N2E0YjIwN2MwNi8xLzkzM2pQQkFuMnhqV0FGbTJCMDItbEx6a2QzNC5t
ZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5ldC9ub3RpZmljYXRp
b24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMyUUhWVjNkNW1rLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAM
BAIAATAGAwQCue7oMA0EAgACMAcDBQMqDECAMBoGCCsGAQUFBwEIAQH/BAswCaAH
MAUCAwMgFTANBgkqhkiG9w0BAQsFAAOCAQEAls90RfS2ewF71e8or08w2S6A8jw7
x40U+KmcjmxsQAYJJ3th/kRpkjWDedI9FjOrQbzxrbu2X3xzvXpBTSYIgyLDCRCu
RuzPDlQAg/foqX0oDH5Ae8hxiKYDSqWJWRUdt+yGJ+qAneQRZ9pNSWxXP6XOR9tp
xgTAdKlbDV5qm9m2lnLL5GdkMIa4Fi7UdH/btBXUwk41NLaMGFfsN1KXsWL9dCTg
4lQ3sDUsQjjiPmz7xFcAuOrXDUQ+yTSc7TVay7i9tCCjRu82NRQW4SmxLry3XnmW
nQlmi/3EqLLtoinQxeiAr6or9FCeo7tRKWQ98c1JWwWV0iwQsx1ToVVmSQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:23 2023 by rpki-client on console-ams.rpki-client.org