Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/I2HDh-_vUmfZQr8Gly6dlMBiC4M.cer
File: I2HDh-_vUmfZQr8Gly6dlMBiC4M.cer (raw, json)
Hash identifier: PE3bAPWNhZJeXYDrEDdPRIXbW2QWJcRfujNnAE5HIb8=
Subject key identifier: 23:61:C3:87:EF:EF:52:67:D9:42:BF:06:97:2E:9D:94:C0:62:0B:83
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A9EFD91B47
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/53/4be6b9-4d1e-4455-9860-5cd787385f98/1/I2HDh-_vUmfZQr8Gly6dlMBiC4M.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/53/4be6b9-4d1e-4455-9860-5cd787385f98/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 15:02:52 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 211620
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 729873455943 (0xa9efd91b47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 15:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2361c387efef5267d942bf06972e9d94c0620b83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:ff:77:06:5d:ff:ca:89:69:0f:2c:9b:72:
0a:ca:fd:b7:8c:39:4a:70:2a:21:25:a9:dd:5b:0d:
8a:61:52:6c:75:d6:1a:d9:0c:fa:ee:9c:20:7c:1f:
b3:ca:1c:18:bd:a3:d9:67:f1:87:f5:a8:44:62:3c:
be:42:3a:1e:55:0f:1d:1e:d5:c9:8f:a4:8f:be:1a:
e1:9a:82:a0:d5:3c:63:e2:f6:19:12:ff:80:f6:d5:
74:a3:86:74:1a:bc:11:fe:c4:50:19:e3:c3:38:1e:
57:63:be:af:2f:24:c3:ae:71:ec:1c:88:16:69:e4:
91:99:8b:fe:52:02:a6:78:f3:b4:ab:e7:f2:c4:62:
ac:29:4e:68:71:f2:ca:20:7d:26:be:16:58:9a:93:
11:58:18:fe:14:af:83:c7:47:92:d0:f5:22:6c:db:
ee:d5:5f:4c:0f:39:83:e5:2c:c6:04:0f:2f:63:7f:
fe:f3:2c:80:54:16:60:23:74:8a:f3:4e:cd:2c:df:
06:f3:37:f4:b7:56:94:20:a2:19:48:8d:f5:97:67:
20:4a:d8:c6:ba:16:53:92:fb:3c:26:ca:1e:72:1f:
05:b4:2b:ef:9c:7b:fc:7d:48:a4:8c:ba:71:bf:96:
ae:9b:75:e5:85:5d:8a:06:30:fc:8a:a0:f1:ae:ba:
19:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:61:C3:87:EF:EF:52:67:D9:42:BF:06:97:2E:9D:94:C0:62:0B:83
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4be6b9-4d1e-4455-9860-5cd787385f98/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4be6b9-4d1e-4455-9860-5cd787385f98/1/I2HDh-_vUmfZQr8Gly6dlMBiC4M.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211620
Signature Algorithm: sha256WithRSAEncryption
a6:c0:29:94:46:92:99:e8:c3:dc:ae:28:28:38:12:3e:11:94:
b1:39:2e:b4:b4:c6:c6:ab:6c:2d:13:16:17:30:47:5a:d4:cf:
72:87:20:26:80:6c:06:fd:6c:a7:d6:e9:b7:28:5d:33:f8:5f:
15:3f:55:41:73:6c:8d:ad:d9:9d:ff:3f:e1:3e:fd:ec:ce:d6:
7f:55:8a:b1:d4:17:69:4e:31:ad:24:f0:39:3c:62:43:b7:37:
95:aa:21:ab:be:72:60:c1:fd:81:66:37:ba:5b:34:ce:8b:a8:
f3:3b:5a:33:d6:b5:b5:8f:2d:10:c0:a4:56:6e:d0:30:15:5e:
3d:5f:2c:52:45:86:21:0a:c1:93:51:b6:8d:60:0c:a4:98:74:
f8:1e:05:b3:3f:18:42:a5:cd:f5:68:64:33:22:65:88:4a:5a:
19:96:63:5e:ff:6f:5a:fc:3c:e4:75:60:3f:a6:cd:ac:47:3d:
a6:7c:39:07:8c:69:90:41:8e:59:4d:ac:95:0d:72:10:96:27:
9c:36:6a:32:b2:35:48:53:5e:72:19:25:e1:b4:68:a0:ff:ce:
1f:95:3f:28:51:81:2e:68:bd:7b:1e:2a:b0:08:39:d7:cd:21:
f9:e7:d6:9c:af:f9:c9:89:b1:e7:34:41:d9:ed:f7:cd:3d:44:
97:a8:ef:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:29:30 2024 by rpki-client on console-ams.rpki-client.org