Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Fw73GkIqLw_pEWBXmkBQYY2LrxA.cer
File: Fw73GkIqLw_pEWBXmkBQYY2LrxA.cer (raw, json)
Hash identifier: MD/Xj8bInt1gyOOg5digx5mwKoaTr0EVl6ZmBokkysA=
Subject key identifier: 17:0E:F7:1A:42:2A:2F:0F:E9:11:60:57:9A:40:50:61:8D:8B:AF:10
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 9EF5580887
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/e5f7e9-80f9-4317-b21e-8336fec488f3/1/Fw73GkIqLw_pEWBXmkBQYY2LrxA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/e5f7e9-80f9-4317-b21e-8336fec488f3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 05:54:32 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 51088
AS: 61180
IP: 5.10.192.0/24
IP: 5.180.84.0/22
IP: 46.244.0.0/19
IP: 46.244.96.0/19
IP: 92.240.144.0/21
IP: 178.249.152.0/21
IP: 185.51.48.0/21
IP: 185.70.112.0/22
IP: 185.102.172.0/22
IP: 185.205.52.0/22
IP: 2a02:1668::/29
IP: 2a04:30c0::/29
IP: 2a05:2900::/29
IP: 2a06:2600::/29
IP: 2a0a:e80::/29
IP: 2a0b:1c0::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 682721020039 (0x9ef5580887)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:54:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=170ef71a422a2f0fe91160579a4050618d8baf10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a1:59:29:2d:5f:25:53:d7:1c:39:1e:45:bd:
f4:44:f6:17:e2:f2:f6:ce:e0:81:93:aa:a3:c2:7f:
4a:4e:b9:b4:7a:d1:7e:ec:b5:10:2e:fb:b9:99:af:
e9:76:42:1e:ad:61:cf:c3:0d:e5:21:a0:7f:d4:b9:
12:7e:7c:6c:c9:21:b3:11:a7:22:4c:32:18:f3:d0:
10:b3:67:c8:4d:fe:65:3c:26:e4:31:0b:76:06:87:
45:50:c8:75:38:5f:25:af:09:4b:b2:fd:2c:35:9a:
9c:f2:fd:83:97:af:3a:3c:3d:51:98:e6:4e:11:15:
28:ea:58:59:e6:7d:70:7d:2c:7d:f8:4e:72:c1:46:
b2:67:2c:fa:4b:f8:a9:14:ee:0b:cc:a9:41:b9:0e:
cd:bd:14:f1:93:69:d7:5e:0e:5e:9b:e4:e6:e0:54:
26:0b:8b:87:06:76:69:7b:b5:98:38:71:e1:3e:25:
e7:d1:0d:f3:b2:2d:93:63:e1:a1:d1:42:e4:e7:73:
b6:92:6e:48:06:6a:45:aa:fa:52:2b:f4:f2:6a:f0:
70:cb:20:54:fb:96:ab:62:76:16:13:8a:d9:23:32:
c5:1f:45:80:9b:62:f4:46:4f:aa:0a:86:df:b5:f8:
34:29:6d:b7:ab:f1:a9:ca:2b:04:8f:71:2f:f9:f6:
4d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:0E:F7:1A:42:2A:2F:0F:E9:11:60:57:9A:40:50:61:8D:8B:AF:10
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5f7e9-80f9-4317-b21e-8336fec488f3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e5f7e9-80f9-4317-b21e-8336fec488f3/1/Fw73GkIqLw_pEWBXmkBQYY2LrxA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.192.0/24
5.180.84.0/22
46.244.0.0/19
46.244.96.0/19
92.240.144.0/21
178.249.152.0/21
185.51.48.0/21
185.70.112.0/22
185.102.172.0/22
185.205.52.0/22
IPv6:
2a02:1668::/29
2a04:30c0::/29
2a05:2900::/29
2a06:2600::/29
2a0a:e80::/29
2a0b:1c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51088
61180
Signature Algorithm: sha256WithRSAEncryption
a1:4a:d6:d3:82:57:b9:c8:57:a6:2b:af:0a:a7:90:f7:93:8e:
74:7e:6f:4a:d8:dc:99:5e:7c:b5:7b:9d:3b:02:e6:fc:97:d4:
3f:e0:c0:9a:17:28:e3:d7:ed:02:e7:fd:e5:1e:8b:f1:a7:da:
cb:8e:4a:be:c2:44:4c:5d:80:bc:79:e4:01:3b:96:b4:51:1c:
02:b5:d2:71:07:30:96:bf:26:b2:42:cc:0e:c4:61:ab:17:f5:
c2:ef:2a:ea:d5:88:93:b3:42:d7:fb:e0:8b:32:17:4f:e3:e6:
4b:56:25:83:91:20:da:a0:e3:b5:5d:ad:0d:68:ea:e0:2a:9a:
bd:01:8a:13:f6:f5:f3:80:44:0f:d2:ee:8b:0a:fa:9f:d5:b2:
e3:f4:7b:bb:1c:15:d2:f4:02:20:1e:9d:e1:f6:fc:a8:c4:8e:
a3:f6:53:ea:43:53:7b:64:be:59:15:ef:1f:00:41:53:42:eb:
0b:fb:2e:a0:1d:b3:04:d5:b3:a3:42:f3:0a:95:cd:98:a6:35:
5b:51:24:85:f8:86:9e:7b:5c:22:e2:29:7b:96:59:72:80:1d:
18:d8:ca:e6:9f:18:99:61:e7:cb:86:4a:8a:12:98:d8:b3:ff:
c1:2d:1e:b1:5c:d4:4d:c5:c1:4e:8a:8b:d7:10:fc:04:43:71:
6c:ae:e6:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:28:46 2024 by rpki-client on console-ams.rpki-client.org