Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/C5APIXkXPv0t_lB5Bg0pM7fk_nA.cer
File: C5APIXkXPv0t_lB5Bg0pM7fk_nA.cer (raw, json)
Hash identifier: fzODHbyhEPM0bMj0mfZQc+p2PlWvNX11KH39lOhLZcs=
Subject key identifier: 0B:90:0F:21:79:17:3E:FD:2D:FE:50:79:06:0D:29:33:B7:E4:FE:70
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 98BA67A2EC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.roa.net/rrdp/xTom/29/0B900F2179173EFD2DFE5079060D2933B7E4FE70.mft
caRepository: rsync://rpki.roa.net/rrdp/xTom/29
Notify URL: https://rpki.roa.net/rrdp/notification.xml
Certificate not before: Sat 01 Jan 2022 00:01:27 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 45.128.220.0/22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 655962383084 (0x98ba67a2ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:01:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b900f2179173efd2dfe5079060d2933b7e4fe70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1e:e2:a0:a6:c3:0b:5f:c2:04:e5:d7:67:a0:
30:10:4a:e5:38:fa:3c:00:df:c2:9d:18:b3:7e:b7:
21:44:b0:8c:db:af:a1:04:8d:8b:41:b2:bf:6d:1d:
10:b7:12:ae:86:41:46:40:0b:02:5c:5a:7d:1b:73:
6e:59:99:60:44:73:b8:55:8f:fb:d4:95:a4:3c:23:
ba:34:28:42:29:a1:04:1e:19:f8:80:ff:2a:41:d1:
fc:0d:1f:6f:e5:01:95:5b:5e:4e:80:53:94:f5:50:
ed:d3:7b:13:18:e5:23:fe:98:2f:f4:be:b5:3a:24:
d7:4a:ba:9f:49:c7:f6:5d:f7:db:f2:37:ed:80:f5:
f9:c4:fc:94:cb:34:83:6d:1f:4d:d9:5b:6f:86:de:
b4:f3:d8:e8:97:13:54:28:16:43:3e:eb:f3:b1:d3:
ae:93:a0:8f:bb:58:14:60:3d:9c:41:05:a1:c7:58:
80:63:e0:43:2a:f7:31:18:ff:3f:31:1d:ca:e0:8b:
cc:d9:12:a3:8c:87:d2:b0:a7:e6:5f:80:cf:90:65:
76:58:30:12:5c:c6:c7:1f:40:97:cf:c7:2c:28:94:
90:be:8d:16:b8:bf:da:18:e3:03:78:7f:53:50:5b:
0c:99:23:e1:7f:f4:67:20:e5:30:3f:1a:22:a0:0d:
e3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:90:0F:21:79:17:3E:FD:2D:FE:50:79:06:0D:29:33:B7:E4:FE:70
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.roa.net/rrdp/xTom/29
RPKI Manifest - URI:rsync://rpki.roa.net/rrdp/xTom/29/0B900F2179173EFD2DFE5079060D2933B7E4FE70.mft
RPKI Notify - URI:https://rpki.roa.net/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.220.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:3f:2f:fd:da:d4:52:be:ad:21:32:67:e2:b2:fc:31:13:9f:
0f:d8:86:8c:c2:86:89:83:f0:75:ec:ae:c2:21:d2:e1:62:4f:
4f:97:4c:7c:aa:a9:bb:2d:53:33:07:60:b7:9d:96:36:bb:80:
88:ef:e3:26:d0:41:18:5d:04:85:70:46:fa:2b:76:90:a1:86:
dc:cf:a1:99:1b:de:b5:94:57:f3:fb:77:ad:7f:9c:6a:b7:2d:
36:22:08:6e:28:ec:24:31:cb:ba:1a:67:da:fe:7d:5c:b0:c7:
2a:be:d5:ba:b2:71:cb:e4:99:85:3f:71:e9:ae:81:97:87:57:
7f:95:bc:c8:e9:83:97:13:d0:9b:2d:b9:e2:62:6f:f3:04:ff:
78:76:1e:45:00:54:8c:c7:55:45:a9:5b:8e:6b:49:c1:1b:00:
33:62:d6:e9:d0:89:7b:bf:6b:a7:ae:91:05:8d:83:c4:d6:3a:
dc:c6:4b:ff:3d:a6:d1:20:e3:82:ec:1d:c6:68:23:84:e5:8b:
3e:4b:c6:59:41:d1:ee:52:e5:21:a6:c9:57:cb:ec:ef:6a:bb:
0b:41:a2:7f:30:a7:6a:96:d3:8f:64:28:17:8e:b4:29:20:05:
64:70:66:e7:83:fe:94:0b:ad:be:00:3a:76:b5:e3:7f:7c:3f:
11:8c:e7:b7
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgIGAJi6Z6LsMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMT
KDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRkZGU2NjkwHhcNMjIw
MTAxMDAwMTI3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwYjkwMGYyMTc5
MTczZWZkMmRmZTUwNzkwNjBkMjkzM2I3ZTRmZTcwMIIBIjANBgkqhkiG9w0BAQEF
AAOCAQ8AMIIBCgKCAQEAoh7ioKbDC1/CBOXXZ6AwEErlOPo8AN/CnRizfrchRLCM
26+hBI2LQbK/bR0QtxKuhkFGQAsCXFp9G3NuWZlgRHO4VY/71JWkPCO6NChCKaEE
Hhn4gP8qQdH8DR9v5QGVW15OgFOU9VDt03sTGOUj/pgv9L61OiTXSrqfScf2Xffb
8jftgPX5xPyUyzSDbR9N2Vtvht6089jolxNUKBZDPuvzsdOuk6CPu1gUYD2cQQWh
x1iAY+BDKvcxGP8/MR3K4IvM2RKjjIfSsKfmX4DPkGV2WDASXMbHH0CXz8csKJSQ
vo0WuL/aGOMDeH9TUFsMmSPhf/RnIOUwPxoioA3jZQIDAQABo4ICMzCCAi8wHQYD
VR0OBBYEFAuQDyF5Fz79Lf5QeQYNKTO35P5wMB8GA1UdIwQYMBaAFCqUqN1VSucB
ByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMGAG
CCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jZXIw
gdMGCCsGAQUFBwELBIHGMIHDMC0GCCsGAQUFBzAFhiFyc3luYzovL3Jwa2kucm9h
Lm5ldC9ycmRwL3hUb20vMjkwWgYIKwYBBQUHMAqGTnJzeW5jOi8vcnBraS5yb2Eu
bmV0L3JyZHAveFRvbS8yOS8wQjkwMEYyMTc5MTczRUZEMkRGRTUwNzkwNjBEMjkz
M0I3RTRGRTcwLm1mdDA2BggrBgEFBQcwDYYqaHR0cHM6Ly9ycGtpLnJvYS5uZXQv
cnJkcC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8v
cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpu
SEMyUUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsG
AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYDcMA0GCSqGSIb3DQEBCwUAA4IBAQCr
Py/92tRSvq0hMmfisvwxE58P2IaMwoaJg/B17K7CIdLhYk9Pl0x8qqm7LVMzB2C3
nZY2u4CI7+Mm0EEYXQSFcEb6K3aQoYbcz6GZG961lFfz+3etf5xqty02IghuKOwk
Mcu6Gmfa/n1csMcqvtW6snHL5JmFP3HproGXh1d/lbzI6YOXE9CbLbniYm/zBP94
dh5FAFSMx1VFqVuOa0nBGwAzYtbp0Il7v2unrpEFjYPE1jrcxkv/PabRIOOC7B3G
aCOE5Ys+S8ZZQdHuUuUhpslXy+zvarsLQaJ/MKdqltOPZCgXjrQpIAVkcGbng/6U
C62+ADp2teN/fD8RjOe3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:27:30 2024 by rpki-client on console-ams.rpki-client.org