Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JdAzqzvCJhGo3FkVKMYWzVTk0PQ.cer
File: JdAzqzvCJhGo3FkVKMYWzVTk0PQ.cer (raw, json)
Hash identifier: f5fYpQoZ2rjGBnMmIegrBKLz0e/kFGgKuLHGzUbIF8w=
Subject key identifier: 25:D0:33:AB:3B:C2:26:11:A8:DC:59:15:28:C6:16:CD:54:E4:D0:F4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A2804A142E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1f/5d6f8f-6a5f-4b38-8ac5-51fd83aee936/1/JdAzqzvCJhGo3FkVKMYWzVTk0PQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1f/5d6f8f-6a5f-4b38-8ac5-51fd83aee936/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 08:55:22 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 51188
IP: 193.93.132.0/22
IP: 194.28.0.0/22
IP: 2001:67c:25c::/48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 697937040430 (0xa2804a142e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25d033ab3bc22611a8dc591528c616cd54e4d0f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f4:cd:59:11:03:69:ca:2f:1d:5b:45:cd:6f:
30:27:27:ab:85:f8:c0:b4:e0:58:46:f7:69:8c:ec:
0c:72:9c:09:43:97:e6:1f:6c:da:f7:4b:12:b8:74:
0e:7a:b4:9e:e6:60:f9:71:1f:49:49:7f:6c:6a:0f:
1f:24:0e:ad:28:87:b1:f6:1d:b8:2f:04:bd:34:ee:
32:a0:75:62:af:14:c9:2c:ba:b3:23:2d:59:8f:a2:
9b:98:c5:b2:ca:32:99:66:0c:67:99:65:d2:87:6c:
2a:f2:d9:86:41:b1:93:3c:e1:35:f3:10:19:36:bc:
59:ee:7b:3e:ee:cc:48:4a:21:dc:9a:c2:ab:2a:27:
be:1e:26:66:e9:57:87:22:a3:84:10:07:50:2a:ad:
8d:dd:ee:c4:b4:b8:db:f6:36:8e:1c:e6:a9:ec:0d:
8f:24:b6:f2:ed:87:12:8b:06:70:2b:b6:3b:b0:6d:
2c:38:7f:a2:1e:80:1c:c5:4b:34:15:15:98:d7:d8:
43:cd:ba:88:d7:d3:04:7e:20:6c:f5:43:a6:40:91:
31:bb:14:be:4c:23:60:dc:45:96:ae:a8:33:bb:dd:
ec:11:5a:ed:1b:55:0c:eb:fd:78:12:bb:6a:07:71:
cd:c6:d8:4e:97:23:a0:ea:73:cd:8e:5e:bf:13:c5:
12:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D0:33:AB:3B:C2:26:11:A8:DC:59:15:28:C6:16:CD:54:E4:D0:F4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/5d6f8f-6a5f-4b38-8ac5-51fd83aee936/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/5d6f8f-6a5f-4b38-8ac5-51fd83aee936/1/JdAzqzvCJhGo3FkVKMYWzVTk0PQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.132.0/22
194.28.0.0/22
IPv6:
2001:67c:25c::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51188
Signature Algorithm: sha256WithRSAEncryption
40:d4:95:d6:7c:6d:df:51:1b:8d:8b:16:78:33:8b:06:c4:78:
72:95:9d:84:75:22:ea:6c:69:6f:45:69:76:75:9f:4c:b3:df:
2f:e9:cd:ab:33:37:16:c9:bd:f1:6a:eb:d6:15:80:aa:7a:d2:
f8:9f:52:29:47:a2:81:65:94:d0:f7:5c:bd:4e:4a:4a:da:71:
50:56:8d:90:90:9b:a6:35:bf:a6:80:8e:d0:9b:da:cc:19:4a:
90:bb:71:30:a3:c2:da:b3:7f:0c:01:01:60:c8:39:7c:63:52:
f6:3b:1f:16:15:55:e7:86:05:b8:56:5d:d7:19:de:a0:0c:96:
af:db:fa:4f:05:53:5a:02:d0:b8:d7:b6:c6:db:f3:44:36:00:
50:14:c8:9c:b7:fe:1e:34:21:e4:15:ae:92:b4:3f:29:20:a0:
46:a6:7f:52:cb:db:10:a9:f8:7f:49:47:e8:ef:2d:8f:aa:20:
b6:0b:48:c1:fd:e1:98:17:73:3c:e7:d9:bf:51:02:54:02:61:
d5:a5:96:4d:07:64:ed:92:dc:c4:30:da:9d:2c:2f:a9:a5:63:
0c:04:ea:09:ed:70:cc:85:c8:89:e0:69:b5:d2:45:63:a1:19:
1d:9b:29:a9:e7:11:fa:61:92:51:bf:2b:b5:0a:5b:2c:80:ef:
ad:c8:a4:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:37 2024 by rpki-client on console-fra.rpki-client.org