Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9tC8HzUfhdElTdlHh8mNBOD3Fms.cer
File: 9tC8HzUfhdElTdlHh8mNBOD3Fms.cer (raw, json)
Hash identifier: ajkmule9zCZAKZt+pjTKqmMYIMn7lTr5XQhzlu9zNEg=
Subject key identifier: F6:D0:BC:1F:35:1F:85:D1:25:4D:D9:47:87:C9:8D:04:E0:F7:16:6B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0185701E0BD75828BE6EC2299736AFADAA10
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1c/d15599-d7b5-4391-b2c5-ea49312aa1cf/1/9tC8HzUfhdElTdlHh8mNBOD3Fms.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1c/d15599-d7b5-4391-b2c5-ea49312aa1cf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 01:34:55 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 79.110.228.0/24
IP: 2a11:3940::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:0b:d7:58:28:be:6e:c2:29:97:36:af:ad:aa:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 01:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6d0bc1f351f85d1254dd94787c98d04e0f7166b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3c:3c:26:9d:d3:95:ca:03:81:32:c3:3a:3e:
92:68:19:09:01:ee:d7:2f:09:fd:88:11:17:fa:fc:
23:7f:6f:44:f2:e1:8c:66:17:61:ea:28:f9:c8:9b:
fc:cb:fb:91:29:38:15:d5:4f:07:d7:dc:5b:2d:d4:
69:b6:6c:46:9d:8b:e7:60:aa:34:11:76:99:49:2e:
65:54:8d:87:80:0d:f3:9a:92:c5:d0:52:29:cd:5d:
b0:cb:7b:73:56:0e:7a:d4:8d:94:8f:3c:54:c6:af:
6f:8f:40:db:78:11:bf:f9:30:9e:a6:10:ea:54:a1:
51:8f:a6:d3:49:e1:af:af:e5:91:9a:6b:58:3f:80:
43:5a:ff:1c:d9:1f:dc:a1:ed:57:e4:b3:ca:e8:08:
0d:d2:a0:f9:45:6d:66:13:ae:60:fa:4e:e8:8f:65:
46:17:6c:c6:17:c5:57:71:2d:f3:5b:e2:6f:28:21:
59:b7:9b:30:87:9f:ca:e1:cf:69:69:80:75:c6:b1:
04:3d:95:df:44:f0:8e:c0:a7:c4:54:ba:67:0a:3b:
89:dd:9d:53:17:23:d2:d6:64:84:0c:2a:8b:08:29:
2d:82:87:8e:76:c5:43:91:df:3e:73:29:b7:9b:9a:
84:31:dc:b5:35:23:4b:ca:f2:c9:d9:9f:0b:ff:ee:
55:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D0:BC:1F:35:1F:85:D1:25:4D:D9:47:87:C9:8D:04:E0:F7:16:6B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d15599-d7b5-4391-b2c5-ea49312aa1cf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d15599-d7b5-4391-b2c5-ea49312aa1cf/1/9tC8HzUfhdElTdlHh8mNBOD3Fms.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.228.0/24
IPv6:
2a11:3940::/29
Signature Algorithm: sha256WithRSAEncryption
07:5a:9f:94:10:cf:b3:ec:36:9d:d9:5f:53:d3:5d:7c:75:9d:
68:bc:b9:be:2e:d0:78:cb:84:7b:ff:19:54:64:aa:cc:66:e0:
b0:09:0b:64:74:9c:03:2c:00:f2:48:42:1b:90:d5:cd:dd:03:
b7:ae:c6:5a:47:f0:11:1b:a2:d8:d2:55:6d:49:23:bd:0a:75:
18:5d:66:b6:cf:0a:b0:15:de:82:47:73:ff:e8:7e:f8:84:5d:
e8:71:06:23:1d:52:23:17:d0:a8:48:52:15:7d:65:6e:fc:30:
1d:7b:a7:59:d4:70:ef:71:1a:63:ff:35:7b:61:90:7b:18:4e:
7f:a1:74:2c:a3:70:31:27:28:d0:de:3f:7b:0a:d7:da:d9:e0:
6c:d6:f7:85:11:a1:b0:de:27:72:58:36:80:a2:30:72:71:bc:
73:ae:e7:ad:ea:ae:22:5a:d6:98:78:b6:57:5d:d7:a4:de:bf:
44:00:19:31:83:f0:23:e6:dc:f8:ca:b5:43:ce:a2:0c:ae:92:
54:89:72:03:93:e0:89:03:6c:b4:a2:0f:09:06:f2:11:2f:e3:
6f:77:fb:1b:c8:91:e1:ba:2e:a8:3f:69:86:19:41:05:ed:a0:
1c:5a:fa:20:94:77:72:ee:75:df:a7:2b:a7:d3:08:b1:ea:f7:
3d:a6:1c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:38:51 2025 by rpki-client