Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Dc7w4fpKAIj_jXuRuKhk7tnsYdw.cer
File: Dc7w4fpKAIj_jXuRuKhk7tnsYdw.cer (raw, json)
Hash identifier: B8SIrp1ZnsdLIu5QBQfCoeuNJIT62ys6evED9Ks5v4g=
Subject key identifier: 0D:CE:F0:E1:FA:4A:00:88:FF:8D:7B:91:B8:A8:64:EE:D9:EC:61:DC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018692F8F6A109302B2DFB27005CAED0B460
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/Dc7w4fpKAIj_jXuRuKhk7tnsYdw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 27 Feb 2023 13:03:55 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 194.126.176.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:f8:f6:a1:09:30:2b:2d:fb:27:00:5c:ae:d0:b4:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 27 13:03:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0dcef0e1fa4a0088ff8d7b91b8a864eed9ec61dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:40:d2:dc:e5:3d:00:73:16:cd:b4:63:b9:0b:
7f:24:f8:55:05:9e:c6:07:7d:4b:18:5d:d0:20:d3:
d8:72:f2:95:1e:e5:0c:db:c9:99:04:41:50:61:36:
d2:50:ad:d9:f2:47:49:87:d7:a8:5b:92:87:8c:3e:
ac:c0:90:02:6a:aa:dd:a2:61:03:7a:43:27:79:e4:
db:d6:85:c9:53:51:f6:dd:32:22:45:1b:25:bd:96:
6b:49:e2:6e:cd:a6:e6:89:e7:8e:67:7c:6a:dd:1e:
52:88:30:75:45:ec:61:c1:fb:6c:a3:6b:95:3a:78:
ce:8b:99:67:7b:01:61:87:e3:57:66:f3:2a:2e:c1:
27:5c:e0:6b:ee:cd:dd:52:de:ef:64:08:92:eb:43:
ab:7e:11:12:19:38:07:94:4c:4d:8b:95:ac:21:f1:
6c:c4:01:a3:7f:0b:91:05:7c:f1:3b:dc:25:99:fe:
da:fd:5e:8e:41:9c:74:9f:d3:3c:35:d9:31:44:63:
f8:3b:e3:84:24:ff:41:ca:7e:e7:ce:a3:bf:68:89:
a8:60:11:6a:2a:3c:ee:6e:22:2d:11:a5:9b:ac:96:
de:35:6c:91:cd:e8:b3:20:24:50:30:07:38:a6:5e:
93:50:94:08:ca:5f:98:c1:a3:83:c9:2b:dd:f5:7a:
cb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:CE:F0:E1:FA:4A:00:88:FF:8D:7B:91:B8:A8:64:EE:D9:EC:61:DC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/Dc7w4fpKAIj_jXuRuKhk7tnsYdw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.176.0/24
Signature Algorithm: sha256WithRSAEncryption
80:65:a4:be:8c:32:2d:a1:a3:c8:b9:23:49:f6:f8:b4:cb:b8:
97:bb:d1:e5:a4:8b:6e:b3:fe:e0:ca:cc:9d:82:50:1c:aa:46:
da:52:fd:06:0a:00:ea:28:b3:65:2f:b4:86:eb:d4:24:98:c9:
ef:0b:52:84:e7:6e:56:3f:7c:5d:5a:79:53:63:e2:02:0b:99:
20:df:17:0c:9e:04:cb:15:cc:4c:9d:01:ca:27:96:d3:3a:e3:
2e:5b:74:65:10:6d:ff:40:89:9a:38:78:04:86:4b:89:49:6d:
77:28:86:11:63:41:4d:7e:27:6d:aa:fc:bd:c1:c1:e1:c0:fd:
20:d4:57:8c:7c:2b:2d:44:97:ee:c3:56:b2:9b:ed:37:15:84:
17:dd:a4:16:d2:74:f9:02:5d:08:68:25:c3:81:ed:81:c4:9a:
b1:c8:2b:c4:88:49:df:89:a7:cc:fe:51:fb:15:7d:a0:b9:cb:
32:f5:af:33:41:6f:29:1f:0d:43:1e:2b:9b:b4:b6:b7:ee:87:
c2:a4:64:dd:60:1a:cd:dc:be:69:24:03:bc:60:4d:85:7b:4d:
bd:bf:33:4d:f4:59:ba:ee:88:e9:d9:52:05:07:3c:8d:d0:df:
3f:70:18:98:22:8e:f9:78:ff:ba:79:5b:87:5c:ad:95:67:6f:
2c:31:d4:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 09:39:48 2025 by rpki-client