Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/LWQjAltXu5yu7J5WWk9wctEwdAQ.cer
File: LWQjAltXu5yu7J5WWk9wctEwdAQ.cer (raw, json)
Hash identifier: rPBqV4eZOsvbFW/34G0La/AAujlns7xK98q2r29NvbY=
Subject key identifier: 2D:64:23:02:5B:57:BB:9C:AE:EC:9E:56:5A:4F:70:72:D1:30:74:04
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A27FF1FCF1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fd/7c64cd-def0-48ac-ab9e-e8347372ba6c/1/LWQjAltXu5yu7J5WWk9wctEwdAQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fd/7c64cd-def0-48ac-ab9e-e8347372ba6c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 08:55:21 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 194.11.230.0/23
IP: 194.11.234.0/23
IP: 2a0f:940::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 697931267313 (0xa27ff1fcf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d6423025b57bb9caeec9e565a4f7072d1307404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:12:18:c0:7b:58:c3:d4:77:7f:60:6d:19:89:
26:16:13:14:8c:43:91:22:0e:ee:16:2b:f7:16:69:
49:f7:24:b1:d9:be:8d:a7:81:cc:3d:e4:cf:b3:59:
0a:c4:b5:8d:15:ed:d4:17:f4:9f:f6:dc:09:0b:42:
c3:4a:07:18:55:92:e0:20:83:65:fc:ef:5d:99:5d:
fa:05:eb:40:6c:33:98:87:b1:d6:76:ed:2e:1c:16:
a7:c3:41:62:d5:7e:87:d4:44:74:c0:01:68:23:9a:
3c:71:a6:68:3e:7a:87:ba:5d:cf:b1:7b:ee:96:f4:
96:3d:01:46:68:de:e4:e4:d7:f6:61:94:1a:0e:9d:
37:21:11:49:f2:45:b4:83:86:ce:ce:45:1a:61:52:
31:3d:b7:2f:e0:88:ea:08:6e:ab:bf:80:eb:25:8f:
22:a0:78:9e:79:61:a9:a7:1e:57:a3:be:37:94:c5:
ea:73:c2:20:67:68:bf:36:cf:44:ff:86:36:cd:2c:
4a:c5:03:65:41:d0:f1:f7:f2:a9:07:dc:ab:e4:5e:
ab:c4:31:1a:a5:9d:45:53:49:22:2a:88:be:84:8a:
52:88:95:aa:8a:64:2d:ea:ab:f7:36:d8:4e:cf:f2:
1d:75:65:18:20:97:e9:59:da:c0:b2:fb:45:53:cf:
68:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:64:23:02:5B:57:BB:9C:AE:EC:9E:56:5A:4F:70:72:D1:30:74:04
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/7c64cd-def0-48ac-ab9e-e8347372ba6c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/7c64cd-def0-48ac-ab9e-e8347372ba6c/1/LWQjAltXu5yu7J5WWk9wctEwdAQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.11.230.0/23
194.11.234.0/23
IPv6:
2a0f:940::/29
Signature Algorithm: sha256WithRSAEncryption
62:d8:a6:d7:e4:69:8a:ad:c1:20:dc:21:19:82:c4:6a:51:96:
68:04:a2:bd:ed:f6:aa:39:50:70:cc:50:8b:64:b1:3a:24:5c:
f9:32:18:a4:e3:35:e7:74:59:f6:b6:b8:6c:99:00:a9:07:7d:
53:b8:85:af:fc:b3:10:47:07:39:18:0c:45:42:de:6e:ca:0d:
2e:d4:1c:1d:06:22:4e:74:4c:16:d6:9d:67:8e:49:fe:d5:ea:
14:29:49:4e:09:7c:d9:36:90:30:91:5d:f4:63:43:70:fb:08:
8e:3a:e6:93:e2:b0:50:95:d4:d9:e4:7a:fa:9b:1b:d6:0c:2d:
6b:29:bf:a9:68:61:05:77:e2:70:63:f3:85:6e:e0:68:c0:f2:
26:07:a5:6c:24:55:55:3f:1d:01:d6:76:e5:1c:b2:26:38:a9:
c8:7b:03:c6:11:2f:e9:3b:94:66:fe:5b:63:00:ab:59:62:01:
3e:51:b6:c3:55:56:b4:d0:6a:4f:40:c2:7c:5c:ba:61:1c:52:
b4:22:04:50:e6:81:22:64:27:35:e8:5a:3b:3e:e9:22:f0:92:
55:89:a4:2f:0c:de:cf:8c:49:5f:6d:ea:0a:08:2a:5a:ce:d4:
df:75:e0:64:1c:82:97:c3:8d:c5:3a:96:8b:c3:c5:fc:e9:fc:
56:55:b5:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:15:19 2025 by rpki-client