Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/GAHh5MTRcfyFuD6CTDyOb6JMcVI.cer
File: GAHh5MTRcfyFuD6CTDyOb6JMcVI.cer (raw, json)
Hash identifier: I9OLDiqQ2S0HrKhit+qkN9CKygln4DRn0kVlv5GOg10=
Subject key identifier: 18:01:E1:E4:C4:D1:71:FC:85:B8:3E:82:4C:3C:8E:6F:A2:4C:71:52
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01887C33B737ACEE19AEC7CE34094C19C4B7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/95e3b848-5986-439a-97d2-6850d3490d8e/0/1801E1E4C4D171FC85B83E824C3C8E6FA24C7152.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/95e3b848-5986-439a-97d2-6850d3490d8e/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Fri 02 Jun 2023 13:02:24 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 83.138.50.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7c:33:b7:37:ac:ee:19:ae:c7:ce:34:09:4c:19:c4:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 2 13:02:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1801e1e4c4d171fc85b83e824c3c8e6fa24c7152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:87:47:51:bd:dd:05:28:1e:6b:60:e3:3d:72:
be:5e:9a:b0:ce:78:2d:22:ef:92:94:48:52:45:ba:
4b:a1:57:be:c1:85:46:9c:b3:6a:23:4e:b4:8b:19:
d6:c4:d7:41:46:81:69:78:58:ec:b1:2a:18:6e:76:
7f:d8:95:c4:9c:ee:46:b7:d4:ae:ca:37:4c:c2:fb:
19:58:27:fe:27:23:19:2b:9b:3b:fd:32:b5:27:26:
73:4e:e8:02:51:b8:09:f6:2d:65:1e:bb:a2:a5:53:
22:1b:11:a7:79:1f:df:81:ba:47:45:9e:27:47:1f:
94:f7:e2:f5:fd:ef:8d:bf:83:95:81:5d:aa:73:5a:
25:24:7d:b3:49:d3:e9:39:3a:de:91:28:6b:26:0d:
d2:8a:c9:57:2b:74:1d:e6:88:f8:eb:b4:d3:32:72:
91:dc:8c:b5:6d:5b:f2:28:27:b6:4c:ea:f2:30:fc:
0e:7c:9c:a3:42:30:bc:26:83:2e:d6:3b:5c:23:2f:
1d:18:17:8e:e8:bc:0e:b3:be:85:b0:df:33:a8:5e:
b2:1e:3e:b7:7b:d5:cb:3e:62:be:fb:f2:95:9c:90:
6b:64:3e:3f:23:b0:fc:ab:f9:50:f9:2b:88:fb:e8:
24:c3:07:62:12:29:32:ca:d3:8f:ae:24:c4:e0:b0:
4f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:01:E1:E4:C4:D1:71:FC:85:B8:3E:82:4C:3C:8E:6F:A2:4C:71:52
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/95e3b848-5986-439a-97d2-6850d3490d8e/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/95e3b848-5986-439a-97d2-6850d3490d8e/0/1801E1E4C4D171FC85B83E824C3C8E6FA24C7152.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.50.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:bb:1d:e5:c9:1c:30:c9:6f:fe:31:db:0f:8b:c1:fc:7d:ed:
bf:3f:e5:43:f5:19:51:92:81:61:18:4a:54:98:3f:f7:9a:d1:
91:9c:1d:1b:2f:3b:d7:60:cf:ef:15:9e:0b:d5:9e:84:56:20:
19:73:af:0e:3f:8c:e2:9a:c1:f2:2e:2d:71:89:54:ef:9b:c5:
66:d3:c8:77:db:91:9a:b0:ee:77:1e:f6:4c:e2:ff:8c:e2:bf:
88:5c:87:c3:5c:97:d1:34:c9:ef:4d:de:46:69:c8:10:0e:95:
cf:01:f0:3f:21:13:a0:ec:33:56:87:8d:7c:5c:e8:62:01:89:
1b:83:14:cb:f0:27:ab:fa:db:1e:e5:98:4b:9e:6f:0c:6e:51:
b4:7e:57:71:4f:15:a8:65:53:a9:2a:bb:69:a5:5f:a9:4c:68:
3b:81:13:26:76:d5:b1:e4:38:b1:4f:01:4a:96:e5:6f:28:9c:
53:df:e8:2d:cc:61:33:ac:ff:39:a1:05:97:70:7c:91:40:3b:
6d:97:10:63:60:4d:4d:8a:5c:bb:87:e7:8c:65:71:fa:55:1e:
3a:ef:d4:92:9e:34:8a:ba:20:00:06:d4:58:e8:9a:47:f3:42:
05:80:69:c1:08:69:69:11:8c:cb:49:4a:9c:06:95:11:9e:52:
05:06:8b:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:15 2025 by rpki-client