Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/J488VRMJ_6Rht338x4Goo-xmkjk.cer
File: J488VRMJ_6Rht338x4Goo-xmkjk.cer (raw, json)
Hash identifier: nD4PLf7vBpDvdlN4hRIWUkg8VMOteP2BP/XiF9ssjnw=
Subject key identifier: 27:8F:3C:55:13:09:FF:A4:61:B7:7D:FC:C7:81:A8:A3:EC:66:92:39
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856FAFAACBC4BB96B9449746B7B4B87A5D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/J488VRMJ_6Rht338x4Goo-xmkjk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 23:34:21 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 195.191.99.0/24
IP: 2a12:1f80::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:af:aa:cb:c4:bb:96:b9:44:97:46:b7:b4:b8:7a:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:34:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=278f3c551309ffa461b77dfcc781a8a3ec669239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:70:0f:ed:cb:11:04:1f:27:fd:4a:81:f4:6e:
95:3f:ae:25:3c:aa:91:41:01:c0:0b:31:3f:02:92:
d8:87:7c:ac:f5:6a:ee:19:9a:5a:5c:fc:00:cb:66:
01:d0:8e:45:c8:89:5b:be:0b:b8:f0:34:11:c6:aa:
c8:ef:ef:89:0b:81:f5:f4:58:4d:2c:fa:8f:40:57:
11:09:b0:56:79:c4:72:7c:ee:99:e9:b5:85:60:ff:
70:8c:a7:22:0e:09:40:0c:87:b7:18:3c:62:78:1c:
6b:1a:51:f1:f7:9c:41:8b:54:e5:95:56:e5:6a:40:
d0:92:ae:8f:10:c1:6d:d6:48:30:19:0f:d7:83:a8:
2a:80:58:e6:ad:c2:3d:7c:be:4b:cf:03:19:e2:31:
47:be:24:15:82:c3:ab:83:cc:6e:bd:78:61:41:e4:
23:63:fb:20:d2:7f:64:5e:e2:7d:c1:44:23:a8:95:
35:2c:ae:d2:40:ee:1e:a3:92:bb:2e:fa:d1:99:ba:
45:0a:51:25:4e:8b:d3:56:92:9b:aa:06:ff:7d:2f:
a2:50:f8:73:eb:b4:6f:4b:8c:ec:91:55:4f:eb:c1:
74:1d:88:e2:0a:21:e5:69:27:9f:08:95:dd:d2:93:
29:60:42:17:36:b8:84:c1:59:00:f3:aa:93:dd:b6:
a9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:8F:3C:55:13:09:FF:A4:61:B7:7D:FC:C7:81:A8:A3:EC:66:92:39
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/c7c423-d861-461f-9c87-f31cd68f3a30/1/J488VRMJ_6Rht338x4Goo-xmkjk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.99.0/24
IPv6:
2a12:1f80::/29
Signature Algorithm: sha256WithRSAEncryption
0e:b1:0d:86:6e:0d:0d:da:37:95:22:00:88:ae:42:81:89:e5:
e1:7d:b9:7d:14:05:0f:79:f2:e6:d9:ce:f7:8a:c7:c1:3b:9d:
2e:65:df:59:9a:1f:51:f5:ea:b3:6f:e5:43:36:fd:13:a2:c3:
c4:df:61:9a:f2:84:f8:38:3e:04:ca:4f:d4:e1:de:e5:31:9b:
03:69:31:0a:45:f5:22:f2:9e:9d:0c:4c:70:db:fc:43:42:ce:
5b:0e:d7:7d:5e:c4:95:70:3b:0e:58:fb:32:90:eb:2e:1c:1c:
ef:cf:be:24:dd:cb:72:03:24:b3:cb:fa:b3:ee:5d:a2:d2:97:
7a:df:fc:da:64:6d:9f:a8:2f:45:e7:15:79:d6:49:b5:cc:ea:
ab:0c:fb:2a:b2:11:2e:80:d1:f5:1a:c4:65:7e:26:a1:f2:bc:
8c:59:cd:6d:2d:e0:95:93:47:38:b8:bb:e4:32:d6:3e:2b:47:
ae:24:4c:77:53:d4:bf:e7:0e:02:dd:e1:a9:7f:40:64:27:1a:
69:36:2b:2b:52:fe:55:df:1f:4f:e8:5b:56:06:dc:d1:66:47:
5e:ed:74:a8:67:d0:20:85:7a:d1:db:4f:eb:4f:14:da:34:50:
7a:e7:2a:ba:69:00:5d:21:80:47:45:07:d0:7c:68:4c:51:13:
d3:22:d4:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:50:29 2025 by rpki-client