Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/A2OUpdPgBLVC5RnOmcQkntZ5Zqg.cer
File: A2OUpdPgBLVC5RnOmcQkntZ5Zqg.cer (raw, json)
Hash identifier: dLSOIw/HBlgK6V3bM2XEBO9lDvGWhgAWJf0SV/DQkU0=
Subject key identifier: 03:63:94:A5:D3:E0:04:B5:42:E5:19:CE:99:C4:24:9E:D6:79:66:A8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 9F219140AC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/44/2fd410-1188-4c3d-b783-33e6858e2550/1/A2OUpdPgBLVC5RnOmcQkntZ5Zqg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/44/2fd410-1188-4c3d-b783-33e6858e2550/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 05:56:56 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 205989
IP: 185.129.160.0/22
IP: 2a0d:5280::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 683462967468 (0x9f219140ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=036394a5d3e004b542e519ce99c4249ed67966a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0d:04:f2:df:f0:65:2c:0a:b1:7d:a3:50:6c:
79:94:2c:35:5a:ee:df:fa:e8:a4:92:e1:b4:05:c9:
75:0a:33:8a:c1:44:2e:66:c7:44:1a:27:d1:b9:c7:
75:ee:ef:97:31:e3:82:e2:c5:9c:52:d0:0e:c8:4c:
0d:3b:9b:18:af:e0:da:1d:32:69:3d:96:92:1a:d4:
61:e3:3f:f2:1f:db:81:04:13:86:33:7f:11:bf:f0:
14:d3:58:7f:6a:01:9a:fc:53:7d:9b:e2:09:6c:80:
93:a1:b0:13:df:0d:df:22:e9:7b:9f:7a:53:29:05:
80:e9:c0:96:5a:89:de:2a:2e:4e:0d:fa:42:1e:24:
c0:5c:31:b2:92:8e:bb:0b:44:cc:39:83:99:68:7c:
49:11:d7:59:28:96:c8:9a:c5:dc:b0:f4:11:34:bb:
88:2f:65:3b:ae:e3:e6:f8:39:fa:01:ae:8f:bb:27:
96:7f:a5:c7:76:54:59:10:d0:15:0b:0b:ad:de:85:
70:dd:7e:1c:d5:19:f2:2d:93:70:9f:65:5b:eb:3f:
db:a1:66:9f:4a:5f:7f:b8:ae:75:28:a6:9d:3f:3a:
91:b4:06:a8:70:c7:30:ad:56:65:97:d2:30:c3:a9:
d6:a5:45:8b:d6:c5:2a:6c:10:02:5f:eb:2b:fb:65:
e8:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:63:94:A5:D3:E0:04:B5:42:E5:19:CE:99:C4:24:9E:D6:79:66:A8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2fd410-1188-4c3d-b783-33e6858e2550/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2fd410-1188-4c3d-b783-33e6858e2550/1/A2OUpdPgBLVC5RnOmcQkntZ5Zqg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.160.0/22
IPv6:
2a0d:5280::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205989
Signature Algorithm: sha256WithRSAEncryption
5e:60:97:00:da:2c:e0:9a:d4:60:0e:c3:53:a2:4d:91:de:e0:
85:06:03:8d:19:e9:5b:40:49:e4:8b:91:74:d2:8f:06:b3:23:
58:40:c1:8a:66:f7:d6:50:f0:d0:6c:8e:8e:10:45:67:68:5f:
44:f5:2f:70:c4:ad:79:87:8f:b4:b2:fe:a7:10:e2:d0:6e:55:
35:a9:b2:ff:92:82:d1:e9:28:6d:c4:60:05:f7:76:1d:a0:5c:
0a:de:e4:6d:0b:9f:c1:ba:87:23:6c:2a:ac:89:70:71:6c:8f:
d4:ed:51:92:ff:fe:00:e7:c3:75:3d:da:06:8f:c0:d8:9a:9f:
b1:b2:c4:89:1b:e4:9c:75:11:82:4d:43:05:38:e0:79:2c:e9:
3c:b9:33:e7:57:5f:a3:e5:30:db:cb:84:af:47:cb:b5:61:ed:
a3:8b:be:c7:d1:e3:26:bb:a7:32:2f:de:de:74:27:28:e9:06:
70:e4:31:ad:df:f9:55:3b:f8:d8:90:72:1f:bd:82:ce:a7:d0:
e8:d4:9d:6b:d5:75:7d:8a:db:3b:b9:ba:ff:45:0d:11:f9:34:
89:4b:00:10:fb:ce:d7:60:ec:f5:5e:28:be:39:f3:f6:e2:50:
c3:8f:fa:5a:08:e1:e8:dc:13:05:73:f8:91:64:43:19:3f:3d:
38:3b:fe:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:10 2023 by rpki-client on console-fra.rpki-client.org