Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/FtH2R4sqPqleVoqIVZyLSQy3OHo.cer
File: FtH2R4sqPqleVoqIVZyLSQy3OHo.cer (raw, json)
Hash identifier: zwa1NtHICosdWd5H0tIg2Z1E3kgTSbhojzNZpbJPwPQ=
Subject key identifier: 16:D1:F6:47:8B:2A:3E:A9:5E:56:8A:88:55:9C:8B:49:0C:B7:38:7A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0185708C1292F5E51C35F9021980F07BA2A2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c9/11c9ed-15df-4037-bea3-a1529d90d174/1/FtH2R4sqPqleVoqIVZyLSQy3OHo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c9/11c9ed-15df-4037-bea3-a1529d90d174/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 03:35:06 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 185.248.208.0/22
IP: 2a0d:36c0::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:12:92:f5:e5:1c:35:f9:02:19:80:f0:7b:a2:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16d1f6478b2a3ea95e568a88559c8b490cb7387a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:78:92:92:19:fa:de:89:2b:28:4c:76:3e:47:
56:e6:c4:c6:4f:5b:55:be:dd:6e:8b:d4:18:92:f8:
c7:b7:d5:bf:02:9a:a1:ab:2c:98:90:55:54:86:30:
b3:27:e2:82:63:32:77:e5:51:34:27:48:04:12:07:
5e:91:42:79:66:6a:c2:2c:42:10:4e:b0:87:e7:f5:
65:eb:ab:25:8d:88:e4:43:19:0f:78:91:60:22:c2:
bd:b2:35:21:58:9a:46:e9:2f:d2:ae:4b:90:e5:d9:
2c:b8:63:bc:fd:53:00:bc:4a:79:a3:c8:ba:9b:33:
91:bc:c4:5a:7e:c0:01:43:9e:e1:2e:4b:28:c5:88:
00:e7:00:6f:76:2a:be:7f:22:ea:f2:0b:0a:1e:6c:
3e:10:00:b3:96:14:34:ff:db:1f:73:38:fa:be:0a:
92:a0:e0:73:fa:ea:aa:fb:7a:9c:d7:d5:5d:ba:b3:
80:55:08:3b:30:28:1e:0c:3d:37:7e:42:fb:4a:4f:
22:d6:a7:69:3f:56:3b:53:32:0c:26:7f:b1:1a:a7:
99:d5:8f:a0:92:08:c1:f1:08:a0:4f:9b:c1:df:0a:
69:e4:9a:a1:5c:5d:5f:c5:3d:dd:74:58:5c:01:48:
a5:fc:84:72:37:1d:3c:e2:f6:2c:c0:9e:ee:99:f6:
24:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D1:F6:47:8B:2A:3E:A9:5E:56:8A:88:55:9C:8B:49:0C:B7:38:7A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/11c9ed-15df-4037-bea3-a1529d90d174/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/11c9ed-15df-4037-bea3-a1529d90d174/1/FtH2R4sqPqleVoqIVZyLSQy3OHo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.208.0/22
IPv6:
2a0d:36c0::/29
Signature Algorithm: sha256WithRSAEncryption
65:03:cf:5f:ba:fd:bb:b2:8b:25:d6:f6:0d:a7:f9:52:a7:f8:
a5:5c:37:13:e8:7a:c9:d4:39:04:ad:59:f1:57:15:9e:3b:75:
48:81:ec:f6:a9:1d:2f:92:90:e5:60:e9:2f:64:be:af:3e:0b:
88:72:bf:30:20:54:4e:4a:7f:4c:90:bb:f3:1b:51:70:0c:fa:
cd:da:b5:4d:28:58:7d:8b:ca:80:f9:f3:99:b6:74:f5:44:36:
03:9d:01:c1:62:ee:ee:a5:00:e2:4a:2e:aa:7f:d5:c7:bb:cf:
96:35:76:ed:b5:ef:73:3d:57:2e:aa:7f:8d:3c:9e:33:da:89:
8f:ee:88:d6:0c:4d:7e:b1:25:6c:94:68:58:aa:2e:21:d3:dd:
8f:79:b9:8b:a0:c0:81:95:c8:58:b3:31:fb:60:2a:ac:10:3c:
d0:eb:be:f8:d2:46:35:53:a0:5f:00:be:10:16:ac:c6:ae:5e:
3c:14:ed:59:b0:37:4d:a9:39:28:b7:c7:e6:c7:da:7d:dc:1e:
21:85:23:48:61:52:fd:01:56:6b:01:54:84:70:9f:5f:ee:b6:
1c:49:e0:03:64:f7:3e:c2:d0:49:a6:44:3f:c9:17:53:20:4e:
ec:a2:ab:3a:27:4a:19:ee:b9:c1:26:bd:25:e0:c2:dc:d0:ac:
f6:67:93:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:34:32 2025 by rpki-client