Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/FdHD_NaURW4yWyRgrrx4XJlVheo.cer
File: FdHD_NaURW4yWyRgrrx4XJlVheo.cer (raw, json)
Hash identifier: 5kFr1vZNRUdw1Qqemsfc5fEVBUXmnA4EFoTEBGUoazY=
Subject key identifier: 15:D1:C3:FC:D6:94:45:6E:32:5B:24:60:AE:BC:78:5C:99:55:85:EA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 9B3DCA6545
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4e/ee799c-1dc5-483b-8ec0-8f2fa4316098/1/FdHD_NaURW4yWyRgrrx4XJlVheo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4e/ee799c-1dc5-483b-8ec0-8f2fa4316098/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 02:51:34 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 50191
IP: 193.104.169.0/24
IP: 195.200.230.0/23
IP: 2001:67c:b4::/48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 666756605253 (0x9b3dca6545)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:51:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15d1c3fcd694456e325b2460aebc785c995585ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a4:0c:be:fe:d0:cf:62:8c:a7:bc:21:b0:3e:
a5:dc:d6:41:4e:ad:e1:b1:68:89:37:d2:6d:d7:43:
1b:96:1d:a1:e8:13:53:b8:f0:35:29:4f:54:4a:5c:
41:02:36:61:82:d9:6a:27:2f:96:01:e0:24:40:8f:
7d:2c:6b:43:ab:97:11:8d:9f:a0:08:79:98:5e:21:
6c:0d:b7:02:d1:5f:ef:0b:79:d7:a6:d1:50:8d:0e:
86:d7:6a:a4:d1:7c:53:9e:0e:95:7d:62:a8:69:cf:
3c:55:2b:f6:18:69:f8:ec:a7:41:68:c5:ad:9c:a1:
d5:7a:a8:b6:15:d3:f0:72:c6:8e:6a:dd:dc:ab:63:
68:70:d7:56:00:d3:8d:40:89:b2:ff:e7:1e:c6:f5:
e3:bf:ae:a1:2e:48:a9:36:28:30:d0:13:a2:d4:d6:
02:fa:fd:c9:3e:4a:e5:3a:66:4e:ee:24:86:ec:81:
55:2f:b6:fd:34:18:a2:69:29:ac:8e:bb:5a:c2:7e:
9a:e2:14:b9:f0:e5:5a:7f:9b:70:af:98:f3:58:fc:
1c:b7:83:36:76:c6:12:d8:0e:b1:00:5f:71:74:37:
fc:b0:4a:9f:cd:0c:3b:c2:2c:c8:61:f1:c0:00:73:
f3:2f:f7:db:84:e4:ed:99:e0:99:17:1a:02:29:9d:
69:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D1:C3:FC:D6:94:45:6E:32:5B:24:60:AE:BC:78:5C:99:55:85:EA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ee799c-1dc5-483b-8ec0-8f2fa4316098/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ee799c-1dc5-483b-8ec0-8f2fa4316098/1/FdHD_NaURW4yWyRgrrx4XJlVheo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.169.0/24
195.200.230.0/23
IPv6:
2001:67c:b4::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50191
Signature Algorithm: sha256WithRSAEncryption
a6:41:03:36:5e:97:e3:d1:0f:bf:53:ba:66:7e:70:e1:4d:ef:
87:da:9a:5b:65:7b:08:52:fe:8e:cb:f3:2f:4a:1d:e9:02:eb:
67:7d:23:74:c6:11:30:a6:ec:bb:d3:7c:c7:14:c6:b8:45:23:
7c:6b:db:35:32:ee:61:07:25:a1:eb:2c:52:d5:e3:2b:45:56:
83:ff:56:8c:61:8f:cc:0a:c0:78:2d:02:6d:0c:2f:a5:76:b0:
48:f6:b9:88:28:0a:3c:3c:f6:7a:73:a0:21:68:84:06:3b:2f:
d9:9e:e1:1d:a2:73:2b:2b:6d:b1:f6:5f:53:8e:1f:c0:d5:07:
ec:e4:aa:ad:42:c2:9c:d4:db:d6:b9:54:2c:5d:7e:0e:22:18:
96:df:a9:41:e7:22:73:e1:22:80:d7:1a:8d:bf:f6:94:41:23:
05:32:6d:6c:c0:67:42:f5:82:07:a5:4e:a7:0d:a5:1d:ad:37:
d4:c4:27:99:01:6b:13:e5:0b:9f:e9:8e:51:42:fe:53:37:ca:
52:e0:35:6f:ba:e2:c7:fd:b6:8f:a2:d8:a6:90:64:4d:b3:6d:
f8:18:db:3e:8c:72:ee:9c:05:94:b1:a6:e0:c5:f4:26:39:c2:
d3:f0:a9:14:1f:01:fc:13:9c:da:60:de:12:42:24:49:cf:f5:
76:b4:f0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:14 2023 by rpki-client on console-ams.rpki-client.org