Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/AwveBaLNgGoAyAhCXotcXcnPbDs.cer
File: AwveBaLNgGoAyAhCXotcXcnPbDs.cer (raw, json)
Hash identifier: PNa3jJeyWYmYE5F1cVRg6sYP8R/okRqznOOkSuLUBQU=
Subject key identifier: 03:0B:DE:05:A2:CD:80:6A:00:C8:08:42:5E:8B:5C:5D:C9:CF:6C:3B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A1297876EA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/68/62bcff-7d96-453e-9399-c76e4b1f4c2c/1/AwveBaLNgGoAyAhCXotcXcnPbDs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/68/62bcff-7d96-453e-9399-c76e4b1f4c2c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 07:53:19 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 199766
IP: 185.43.144.0/22
IP: 2a04:9600::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 692185495274 (0xa1297876ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:53:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=030bde05a2cd806a00c808425e8b5c5dc9cf6c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8b:b4:c2:ff:52:bc:3c:5c:d1:4b:ec:6f:85:
68:86:f4:f5:a0:8a:65:01:f9:70:49:3c:9f:68:5d:
ac:ea:a0:bf:58:09:c8:f5:cd:2b:58:2c:49:63:dd:
9e:9c:81:c7:22:25:09:43:9f:0f:9f:73:16:3a:f0:
15:00:17:28:8c:af:65:b9:de:f0:44:45:50:7f:5a:
4b:2d:ff:be:0c:c9:1a:df:37:ba:14:59:23:a7:a8:
99:af:df:e3:e6:91:7f:12:5e:c7:37:0c:49:ad:f1:
e7:71:52:7b:a2:db:04:9b:af:8a:2d:db:e0:b6:59:
8f:94:a1:e9:6d:74:3a:57:70:e9:91:50:52:c3:7b:
27:7c:94:7b:71:39:42:84:7a:cf:4a:ed:99:93:b4:
98:70:4f:48:0a:ca:6f:24:7b:2d:85:a3:cd:6f:fa:
85:f6:12:2a:50:08:91:65:a6:06:55:af:c8:14:86:
4d:13:94:b0:2f:d9:dc:36:42:64:c9:20:43:d7:53:
ce:42:6f:ee:b3:e1:44:82:ea:6f:b4:60:bf:4a:69:
44:fe:8e:01:b3:ce:83:2b:0a:0f:cf:13:f9:8e:f2:
00:ef:15:82:73:8c:8e:8a:41:55:90:ab:04:15:64:
df:32:3c:83:8f:aa:3b:1f:dd:74:e0:c7:79:c5:06:
74:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:0B:DE:05:A2:CD:80:6A:00:C8:08:42:5E:8B:5C:5D:C9:CF:6C:3B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/62bcff-7d96-453e-9399-c76e4b1f4c2c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/62bcff-7d96-453e-9399-c76e4b1f4c2c/1/AwveBaLNgGoAyAhCXotcXcnPbDs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.144.0/22
IPv6:
2a04:9600::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199766
Signature Algorithm: sha256WithRSAEncryption
77:69:43:1e:07:87:24:92:10:29:89:5c:c8:77:a0:06:44:88:
f3:60:1d:94:22:03:21:e0:51:90:4b:4f:83:f9:3d:ed:e1:fd:
1f:a3:86:a8:07:15:11:e9:2a:f0:a4:ff:20:56:60:1a:a2:7a:
8b:7b:9e:db:fe:ca:4f:e6:12:fc:15:64:1c:a7:b2:ff:a5:d3:
c2:da:8f:e3:7f:19:ec:9b:e1:ee:36:ec:3b:aa:b0:ee:ac:e2:
12:46:4a:b5:2e:55:d8:3c:85:62:49:e7:23:ed:81:82:72:8e:
9b:79:5b:44:bb:bf:b8:11:07:1a:7d:93:91:68:23:48:24:ef:
a7:cb:58:67:30:e9:66:8f:51:49:47:4d:53:b6:e2:01:45:76:
50:76:41:85:2b:ef:18:29:d8:32:0c:58:57:a3:72:43:ec:7d:
f4:93:fd:ed:10:78:6c:71:e9:f7:e2:9d:7d:60:b1:1b:cf:90:
a4:4d:e9:e1:4e:8f:d1:bc:6a:42:d3:b2:d1:cd:cd:7d:3a:7b:
4c:b9:05:39:ca:ed:e1:01:0a:35:e7:ea:68:9e:57:28:e4:0c:
43:31:07:cf:c9:69:ae:e0:dc:f7:cc:24:d2:87:0c:58:12:58:
a8:27:9b:5c:bb:ae:d5:13:2f:92:ac:6b:2d:a5:4b:af:5c:44:
b7:e3:4a:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:27:07 2024 by rpki-client on console-ams.rpki-client.org