Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JTrMOM5LwpVqh4v3ff1VKZL1Ipk.cer
File: JTrMOM5LwpVqh4v3ff1VKZL1Ipk.cer (raw, json)
Hash identifier: 0tPwk5aR8kZpODGTDyfPwJCum7lbqrez/qkY3bhJOVg=
Subject key identifier: 25:3A:CC:38:CE:4B:C2:95:6A:87:8B:F7:7D:FD:55:29:92:F5:22:99
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856C631EAFDCCAA3D5FD1F6417075EC6DC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ezdomain.ru/repo/localname/0/253ACC38CE4BC2956A878BF77DFD552992F52299.mft
caRepository: rsync://rpki.ezdomain.ru/repo/localname/0/
Notify URL: https://rpki.ezdomain.ru/rrdp/notification.xml
Certificate not before: Sun 01 Jan 2023 08:11:53 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 206016
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:63:1e:af:dc:ca:a3:d5:fd:1f:64:17:07:5e:c6:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:11:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=253acc38ce4bc2956a878bf77dfd552992f52299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c8:51:91:77:6a:f9:c1:bc:d1:e0:4e:33:28:
4d:53:32:94:99:a2:bf:83:fd:96:e9:5d:b4:9d:8d:
1f:31:c4:f0:d6:a4:88:dd:eb:42:6c:9d:c2:6f:66:
59:85:16:48:64:cd:63:c3:05:62:21:92:4c:63:fd:
e8:7e:8b:ab:c0:fe:9e:d4:b7:46:e2:58:fa:f8:85:
a3:1d:8a:5b:64:c2:c3:bc:73:d1:4f:99:bd:ed:8a:
04:35:f8:30:25:4b:4a:70:ff:0f:91:f9:7a:8b:f2:
ad:e2:7b:64:5a:93:57:a3:5f:68:5a:27:4d:b5:bf:
87:7f:dd:11:57:80:9b:e8:75:8d:b6:b1:94:7f:63:
6d:c4:f7:9f:94:0a:8c:b2:ce:3f:27:f0:03:77:6c:
65:27:5c:79:89:e7:56:17:70:2a:6a:93:06:76:d3:
af:cd:ac:15:51:6d:34:94:78:c4:50:21:95:e7:7a:
ef:94:95:8d:c4:cf:98:21:bf:0d:a3:46:db:e9:03:
cd:df:fa:f5:e8:e3:a0:c0:6b:03:59:5d:8e:be:8e:
d9:b3:45:1d:63:62:de:d3:ec:60:74:97:52:51:08:
b8:51:e9:10:d2:86:64:68:2c:ca:b6:f0:65:42:8a:
02:6b:e4:6c:41:fb:e9:be:a5:f4:90:af:3b:ae:7d:
e6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:3A:CC:38:CE:4B:C2:95:6A:87:8B:F7:7D:FD:55:29:92:F5:22:99
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ezdomain.ru/repo/localname/0
RPKI Manifest - URI:rsync://rpki.ezdomain.ru/repo/localname/0/253ACC38CE4BC2956A878BF77DFD552992F52299.mft
RPKI Notify - URI:https://rpki.ezdomain.ru/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206016
Signature Algorithm: sha256WithRSAEncryption
5c:9d:f0:b7:12:72:46:56:12:a2:cf:14:3b:0c:3e:61:16:5c:
c0:bc:cb:70:0b:bb:b5:a0:31:62:69:5c:2b:99:48:6d:7b:b1:
41:2d:cb:e5:90:a4:d8:e9:64:36:e7:6e:f0:08:0e:47:c9:57:
0b:db:9c:b4:84:6a:04:c9:43:7f:e2:61:8e:a0:67:50:12:63:
3a:fe:f0:a6:b5:15:c4:aa:46:53:70:a0:b6:1a:6d:20:19:27:
26:84:7f:f3:d4:96:fc:c5:35:e2:27:3d:84:8c:29:f4:d2:dd:
d5:8e:e6:46:fc:bb:c3:8b:79:9f:7d:26:7b:2d:4f:9f:20:e7:
02:3f:0a:4c:78:b2:52:79:17:bc:69:0c:34:ea:fa:c5:be:f3:
17:d2:f7:aa:af:3b:3a:bd:c0:4c:35:92:c1:61:ff:cf:4d:dd:
50:49:7e:fe:19:5a:35:c0:16:12:f5:04:75:56:d3:81:89:58:
6e:30:48:8a:79:33:41:81:b0:11:39:f8:25:9e:1a:c8:53:6b:
9a:05:78:06:9c:4d:b9:0f:c1:26:67:d7:ef:10:23:c1:f1:d6:
ee:8c:6a:b2:fd:d6:27:06:ed:8c:93:50:b1:f7:0d:e2:80:56:
8e:85:e8:8c:e0:26:ed:31:34:fb:9e:2d:62:88:3a:4a:f8:64:
75:27:c8:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 20:07:31 2025 by rpki-client