Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KJZh0omwOm4rBVH4U6Xcjxlo9q0.cer
File: KJZh0omwOm4rBVH4U6Xcjxlo9q0.cer (raw, json)
Hash identifier: MM07pSg2sB4PRSJeBGyd9KjXJ1YDxOeSHsThssdxdAc=
Subject key identifier: 28:96:61:D2:89:B0:3A:6E:2B:05:51:F8:53:A5:DC:8F:19:68:F6:AD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0183EB516F0A483289E02D0A54C10CEBE37D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/27/743cb4-44d3-4ab1-ac78-add86c095bfe/1/KJZh0omwOm4rBVH4U6Xcjxlo9q0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/27/743cb4-44d3-4ab1-ac78-add86c095bfe/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 18 Oct 2022 13:38:46 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 2a0a:b400::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:eb:51:6f:0a:48:32:89:e0:2d:0a:54:c1:0c:eb:e3:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 18 13:38:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=289661d289b03a6e2b0551f853a5dc8f1968f6ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:69:11:43:ca:6a:26:89:45:d6:1b:79:e7:1c:
aa:47:76:13:db:0c:0a:9e:bc:d0:c8:ab:94:53:3f:
cd:8e:f4:a6:de:6d:96:44:3a:28:7d:90:b9:f7:8a:
8d:5d:00:de:31:02:3c:42:04:ac:0b:a2:88:52:75:
9f:89:4f:1e:ef:43:2e:53:21:3f:dd:4e:b9:01:cc:
8b:a6:a7:9e:c4:46:ad:89:bc:da:65:3e:09:24:dd:
0f:7b:3f:78:7e:6e:8f:a1:9f:6a:31:ce:26:47:4c:
06:a2:b5:4a:72:65:cd:b7:a0:78:6c:75:60:f7:a0:
0b:7b:7e:f1:b1:59:76:46:9a:9a:4e:8c:08:4d:39:
f0:af:70:ad:36:65:d5:de:1c:d3:e2:29:33:c3:8e:
cf:9d:45:e0:55:37:ae:c7:64:15:eb:d3:04:76:de:
b7:32:c7:c6:ff:10:6e:76:f7:26:ad:65:33:08:b8:
0f:22:4b:5a:af:d4:1f:dc:09:7d:79:cc:a2:18:ec:
16:90:53:34:63:9e:b3:1a:06:61:f4:c9:9a:b1:48:
c9:de:96:3f:32:22:67:0f:ee:f5:6c:b0:94:0e:7e:
31:ba:f8:42:31:13:a5:ed:57:0c:bd:e7:d5:27:c6:
63:cf:7c:16:c4:5e:f3:7c:a2:15:fc:7c:29:7d:2b:
53:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:96:61:D2:89:B0:3A:6E:2B:05:51:F8:53:A5:DC:8F:19:68:F6:AD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/743cb4-44d3-4ab1-ac78-add86c095bfe/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/743cb4-44d3-4ab1-ac78-add86c095bfe/1/KJZh0omwOm4rBVH4U6Xcjxlo9q0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:b400::/29
Signature Algorithm: sha256WithRSAEncryption
33:81:bd:ad:98:eb:15:4d:5e:f6:07:d4:74:b6:a5:c8:4f:5c:
cc:45:63:03:f5:96:a5:e2:df:0a:ca:23:cd:3e:4b:1b:7b:d9:
9e:ab:d3:7f:17:00:6e:d6:75:70:c9:08:29:64:33:10:d3:11:
0a:2e:58:64:37:80:71:41:8f:3a:56:42:15:d2:14:1c:70:ab:
bc:63:f4:93:27:80:40:c3:4e:7a:3a:89:37:eb:b9:3e:6f:29:
49:0c:f3:d5:60:89:fd:50:25:4b:7a:cb:52:25:18:d4:06:6a:
07:2f:06:3b:34:9a:ed:9f:c2:eb:75:c7:e3:c4:77:f0:08:29:
9d:0c:35:41:45:7d:c5:26:2a:29:6c:24:57:ab:dd:6e:a4:79:
f8:d3:ea:8a:fa:e6:8c:da:20:f6:e1:58:05:eb:fb:e5:00:33:
59:4d:be:c7:fe:52:94:17:f2:85:ce:d8:5c:02:8e:bc:27:45:
07:2d:84:f1:db:8a:03:eb:9e:8f:ed:e5:f6:97:07:5a:82:1d:
72:89:d4:56:4b:f4:01:dd:32:13:5b:ca:0a:fe:25:6d:73:19:
94:b5:d0:12:12:1d:63:e4:ca:3c:a5:fb:59:8e:75:84:d4:47:
25:45:c6:4f:07:c4:95:8c:7c:24:17:f8:b4:c0:65:91:57:cc:
d5:a2:07:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:47 2024 by rpki-client on console-fra.rpki-client.org