Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/APJMn86WcM0RIG3fc4oMbJHbwyo.cer
File: APJMn86WcM0RIG3fc4oMbJHbwyo.cer (raw, json)
Hash identifier: XLqqOS4sJb5uAaQgfnP83kQ3S8PbG90n6CJpzvYUwwk=
Subject key identifier: 00:F2:4C:9F:CE:96:70:CD:11:20:6D:DF:73:8A:0C:6C:91:DB:C3:2A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A3EE839D0C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/05/418417-bb27-43be-b81f-263990a82a38/1/APJMn86WcM0RIG3fc4oMbJHbwyo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/05/418417-bb27-43be-b81f-263990a82a38/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 09:58:56 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 202754
IP: 185.153.16.0/22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 704081272076 (0xa3ee839d0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00f24c9fce9670cd11206ddf738a0c6c91dbc32a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b0:5b:a1:4d:5f:df:5c:5d:f7:b9:16:fc:ff:
5e:22:4c:3f:b5:a6:d6:9e:9b:c0:07:96:bf:64:5d:
dd:c6:68:9e:65:6d:0e:0d:29:1e:05:62:da:39:c3:
56:1d:ce:10:6b:73:bd:03:92:9e:a8:1e:14:b9:75:
12:06:30:f9:aa:19:85:12:f6:e2:2a:ab:cc:e8:fd:
1b:c3:0f:2f:d2:df:79:aa:23:d7:a1:8e:69:d9:8c:
13:89:77:70:3c:4e:9b:9f:8c:29:8f:ae:5e:7b:67:
14:81:58:b7:80:fc:f8:9d:5e:2a:ed:c2:49:9a:4f:
a8:bf:15:7e:28:fd:63:2a:18:cd:cd:c6:a8:45:8a:
a8:ad:b8:62:90:ce:e7:a6:4e:80:2d:77:9f:06:8b:
aa:3e:19:75:d0:8a:bc:03:47:d0:16:dd:9e:8e:6e:
5d:5c:e6:c7:2d:c0:da:c2:d7:9e:9f:bc:0c:be:94:
54:67:bd:93:81:30:61:2a:40:b6:75:e1:1d:d1:99:
48:24:4f:16:ba:b3:78:ef:b8:f7:37:3e:f5:5d:86:
d8:2c:bc:db:76:f0:38:3e:10:d7:e3:3c:19:f6:32:
30:0c:e0:4d:b5:0f:04:35:77:72:a9:23:13:6a:86:
19:ce:5f:bd:72:6b:b9:cd:15:87:28:ac:91:4c:3f:
16:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F2:4C:9F:CE:96:70:CD:11:20:6D:DF:73:8A:0C:6C:91:DB:C3:2A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/418417-bb27-43be-b81f-263990a82a38/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/418417-bb27-43be-b81f-263990a82a38/1/APJMn86WcM0RIG3fc4oMbJHbwyo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.16.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202754
Signature Algorithm: sha256WithRSAEncryption
62:49:da:b8:e0:98:fb:cf:2f:a5:63:f2:8f:df:25:c8:c1:56:
77:a7:8b:9e:37:7c:a7:82:f8:02:3b:35:f1:6e:cf:14:42:a3:
4e:ee:4d:d2:4f:e2:f5:a1:84:53:1c:8e:bc:a6:11:96:17:ab:
34:ed:91:ee:46:f7:93:22:84:e9:97:c0:79:e6:7d:7c:f1:e5:
02:a7:87:66:68:83:e7:76:5e:a1:47:67:96:06:6a:e3:ab:ad:
21:87:f3:b0:b3:9c:7c:0c:6a:65:3e:ea:25:4c:24:b6:39:1a:
e4:02:da:12:43:3d:b9:cd:e9:7e:5c:8c:2c:cd:23:3e:bf:5f:
f0:be:a2:a3:61:70:de:f1:d3:37:1d:02:37:28:9a:c7:f4:55:
8f:8b:f6:f8:f7:43:8a:69:08:57:ce:4f:dd:71:39:6a:95:0d:
f9:f0:8b:dc:d2:67:d2:e9:22:72:41:53:ff:b8:a1:7a:18:e2:
ad:56:8b:3f:49:0f:6b:cc:aa:c3:5c:9e:d3:ed:27:d4:4c:92:
6c:2b:bb:45:8f:50:dd:71:43:3b:25:a0:49:7f:fb:e2:b4:99:
65:a0:ed:c7:49:62:ae:a3:da:07:b8:da:c7:bc:17:aa:db:75:
c3:81:c8:ba:69:7f:37:c1:be:0b:7f:3e:90:47:f3:b8:14:09:
0e:72:8d:a1
-----BEGIN CERTIFICATE-----
MIIFiDCCBHCgAwIBAgIGAKPug50MMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMT
KDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRkZGU2NjkwHhcNMjIw
MTAxMDk1ODU2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwMGYyNGM5ZmNl
OTY3MGNkMTEyMDZkZGY3MzhhMGM2YzkxZGJjMzJhMIIBIjANBgkqhkiG9w0BAQEF
AAOCAQ8AMIIBCgKCAQEAnrBboU1f31xd97kW/P9eIkw/tabWnpvAB5a/ZF3dxmie
ZW0ODSkeBWLaOcNWHc4Qa3O9A5KeqB4UuXUSBjD5qhmFEvbiKqvM6P0bww8v0t95
qiPXoY5p2YwTiXdwPE6bn4wpj65ee2cUgVi3gPz4nV4q7cJJmk+ovxV+KP1jKhjN
zcaoRYqorbhikM7npk6ALXefBouqPhl10Iq8A0fQFt2ejm5dXObHLcDawteen7wM
vpRUZ72TgTBhKkC2deEd0ZlIJE8WurN477j3Nz71XYbYLLzbdvA4PhDX4zwZ9jIw
DOBNtQ8ENXdyqSMTaoYZzl+9cmu5zRWHKKyRTD8WsQIDAQABo4ICoDCCApwwHQYD
VR0OBBYEFADyTJ/OlnDNESBt33OKDGyR28MqMB8GA1UdIwQYMBaAFCqUqN1VSucB
ByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMGAG
CCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jZXIw
ggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA1LzQxODQxNy1iYjI3LTQzYmUt
YjgxZi0yNjM5OTBhODJhMzgvMS8wfAYIKwYBBQUHMAqGcHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUvNDE4NDE3LWJiMjctNDNiZS1i
ODFmLTI2Mzk5MGE4MmEzOC8xL0FQSk1uODZXY00wUklHM2ZjNG9NYkpIYnd5by5t
ZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5ldC9ub3RpZmljYXRp
b24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMyUUhWVjNkNW1rLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQCuZkQMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMYAjANBgkqhkiG
9w0BAQsFAAOCAQEAYknauOCY+88vpWPyj98lyMFWd6eLnjd8p4L4Ajs18W7PFEKj
Tu5N0k/i9aGEUxyOvKYRlherNO2R7kb3kyKE6ZfAeeZ9fPHlAqeHZmiD53ZeoUdn
lgZq46utIYfzsLOcfAxqZT7qJUwktjka5ALaEkM9uc3pflyMLM0jPr9f8L6io2Fw
3vHTNx0CNyiax/RVj4v2+PdDimkIV85P3XE5apUN+fCL3NJn0ukickFT/7ihehji
rVaLP0kPa8yqw1ye0+0n1EySbCu7RY9Q3XFDOyWgSX/74rSZZaDtx0lirqPaB7ja
x7wXqtt1w4HIuml/N8G+C38+kEfzuBQJDnKNoQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:26 2024 by rpki-client on console-fra.rpki-client.org