Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/D-i6_dPVR_maqGEa_FgCVy31itg.cer
File: D-i6_dPVR_maqGEa_FgCVy31itg.cer (raw, json)
Hash identifier: Kbqca7ZdcrD5rLAlbFj2Hq5g8tSP2eeBEExd6spF/R4=
Subject key identifier: 0F:E8:BA:FD:D3:D5:47:F9:9A:A8:61:1A:FC:58:02:57:2D:F5:8A:D8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A52AF3D185
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1b/7bd881-595b-4270-9be8-c2a1a717b3ef/1/D-i6_dPVR_maqGEa_FgCVy31itg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1b/7bd881-595b-4270-9be8-c2a1a717b3ef/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 10:58:52 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 48707
AS: 212917
IP: 91.230.200.0 -- 91.230.205.255
IP: 185.237.28.0/22
IP: 185.253.212.0/22
IP: 195.2.208.0/23
IP: 2a0c:b40::/29
IP: 2a0c:51c0::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 709390225797 (0xa52af3d185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:58:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fe8bafdd3d547f99aa8611afc5802572df58ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:bd:a9:b7:16:09:25:17:b3:5d:9a:f4:5e:09:
a5:2e:03:aa:64:a3:de:f7:1b:4b:6f:1e:58:b4:ff:
2f:6d:3b:8e:d8:42:94:3d:b0:39:03:d8:c5:06:79:
db:81:d2:24:3b:3d:2d:c8:41:92:ce:0b:b5:9a:65:
6f:f0:65:a1:95:cd:5d:4a:cc:4f:f5:d6:26:da:27:
13:24:f8:72:81:27:81:c6:91:c4:29:2a:f3:ce:4d:
93:37:a8:93:5b:0b:52:cc:44:5e:74:d4:86:22:c1:
1d:e4:15:ea:3f:24:89:fc:24:66:50:23:90:02:89:
f6:e0:c8:1e:bb:ed:83:72:a1:c9:ae:18:4e:b1:0c:
a1:b8:4c:5e:0d:bf:ef:62:0b:d4:9f:bb:06:ec:07:
73:be:bf:66:51:a3:4a:e3:13:15:0d:d3:2a:ae:37:
d1:ac:e7:8d:6e:d8:33:1e:40:2e:c9:47:ff:79:0e:
cd:2f:da:02:0a:ab:9e:1e:43:e7:b8:66:cc:a9:5b:
cd:cc:82:84:02:57:d2:8d:51:d1:8d:92:0e:39:65:
41:a9:e3:07:16:5c:ad:56:7b:2f:47:38:a1:aa:dd:
2a:6f:47:72:18:6b:48:61:da:12:1f:d2:8d:f7:0e:
c0:0e:24:f8:5e:3b:bd:66:76:a1:a5:48:25:73:8d:
a9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E8:BA:FD:D3:D5:47:F9:9A:A8:61:1A:FC:58:02:57:2D:F5:8A:D8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/7bd881-595b-4270-9be8-c2a1a717b3ef/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/7bd881-595b-4270-9be8-c2a1a717b3ef/1/D-i6_dPVR_maqGEa_FgCVy31itg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.200.0-91.230.205.255
185.237.28.0/22
185.253.212.0/22
195.2.208.0/23
IPv6:
2a0c:b40::/29
2a0c:51c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48707
212917
Signature Algorithm: sha256WithRSAEncryption
71:94:5d:f1:a9:4a:27:57:f5:bd:a8:98:8b:a2:58:73:a1:43:
0b:9a:75:53:0a:f0:7a:7a:d1:95:13:52:b9:01:8a:78:98:0f:
a1:a3:3c:ec:b1:bb:bc:c2:41:3b:e3:a8:1c:19:10:0a:5a:12:
6e:a6:40:66:47:30:7c:9c:75:73:c2:5e:45:0c:32:d1:66:3c:
ea:0f:a1:02:70:04:4d:15:78:09:2b:b8:df:b4:c6:81:c7:c9:
10:5b:81:60:c1:ae:d3:49:bf:c8:3a:df:71:9f:9c:50:0c:b2:
a4:4d:03:78:dd:8c:70:81:db:8b:4f:8c:d3:88:4a:67:81:34:
64:72:36:9d:3d:a2:e5:ad:dd:76:8c:24:48:82:c6:78:a3:59:
1f:09:bd:37:39:c1:8d:49:91:dc:dd:60:d3:a9:4d:8b:c8:94:
fc:34:03:41:2c:8d:e1:52:e5:4c:d4:93:1a:66:ff:84:3f:45:
66:dc:e9:45:3c:05:fb:c7:39:28:f7:1b:64:17:d6:1f:75:65:
34:ce:b5:27:e8:36:c3:37:b1:9c:10:57:ac:51:a6:d2:06:d7:
6e:55:8b:d5:14:e4:9e:0a:a4:a6:3b:b6:29:82:6e:28:7e:e6:
a4:f9:fc:71:47:42:4f:1a:30:86:4b:e4:45:a7:ab:17:fc:6a:
2d:7e:28:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:42:03 2024 by rpki-client on console-fra.rpki-client.org