Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MP68jAau7TYBe73XBb31rbLnMK0.cer
File: MP68jAau7TYBe73XBb31rbLnMK0.cer (raw, json)
Hash identifier: KVQj17/vYdu7hx0DKgv6dgGN/5xQ0fRRqLpydlbcTvo=
Subject key identifier: 30:FE:BC:8C:06:AE:ED:36:01:7B:BD:D7:05:BD:F5:AD:B2:E7:30:AD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0187614A85EFD48584D7747AE4B465491D45
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8e/0f809b-1c8c-47cb-82fd-4d4f81b56b38/1/MP68jAau7TYBe73XBb31rbLnMK0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8e/0f809b-1c8c-47cb-82fd-4d4f81b56b38/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 08 Apr 2023 14:34:46 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 176.116.0.0/24
IP: 2a11:df40::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:61:4a:85:ef:d4:85:84:d7:74:7a:e4:b4:65:49:1d:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 8 14:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30febc8c06aeed36017bbdd705bdf5adb2e730ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:12:f3:af:37:c8:e2:1d:c3:99:56:2c:33:ec:
62:a1:1d:55:fb:9d:cc:be:32:77:dd:e1:0e:80:cf:
ba:ec:df:e6:74:b7:e1:cb:de:1a:49:5a:65:16:8d:
80:31:8d:54:b0:8b:45:a4:29:36:51:61:01:12:d6:
b2:d3:14:1d:35:f4:f7:15:4c:09:bb:71:9b:3f:f5:
0d:b8:40:b3:f2:96:02:94:ea:bc:b3:e0:17:42:88:
d0:91:36:ef:21:e3:be:77:92:45:7d:f1:9c:a9:ee:
74:a9:aa:e3:fe:b0:89:d5:60:ba:f2:31:4f:33:42:
63:a8:a5:2d:94:7e:28:b4:25:88:9d:6e:a1:b1:bd:
40:2e:cc:5c:01:45:eb:ca:a1:34:c2:76:da:f4:59:
a7:2c:47:ea:d0:29:e0:73:a1:07:b9:e7:f2:de:8b:
21:bb:28:f8:9c:5c:ab:41:83:0a:62:72:82:7f:9d:
6a:27:9d:3e:04:92:bb:53:c5:c9:6b:08:90:79:8c:
4a:42:fd:99:42:4d:0c:c4:63:cd:4f:0b:76:b4:36:
64:fe:ae:b3:ec:5f:3d:77:63:e0:25:a5:47:bd:6e:
e3:bb:73:8a:d5:84:c9:15:db:8b:aa:8a:af:7b:2d:
37:6e:77:ed:e8:ab:43:ea:29:3e:fd:0e:8f:96:76:
70:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FE:BC:8C:06:AE:ED:36:01:7B:BD:D7:05:BD:F5:AD:B2:E7:30:AD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/0f809b-1c8c-47cb-82fd-4d4f81b56b38/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/0f809b-1c8c-47cb-82fd-4d4f81b56b38/1/MP68jAau7TYBe73XBb31rbLnMK0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.0.0/24
IPv6:
2a11:df40::/29
Signature Algorithm: sha256WithRSAEncryption
90:ec:f8:de:c6:b0:34:62:38:5a:b8:9e:9c:ef:3f:55:80:5c:
f5:b2:0a:48:ba:21:58:f7:85:64:f3:ed:40:72:02:c5:14:96:
72:81:84:8b:f5:27:13:5a:3f:af:b6:67:73:42:9c:10:69:88:
29:92:02:6c:5d:bf:21:8d:24:19:5b:c7:62:61:f3:e3:30:30:
0d:0e:d1:50:b4:7b:f6:86:15:36:9d:66:50:e7:bf:f6:67:86:
2f:22:87:bf:95:28:c2:49:67:30:65:29:47:1d:b1:8c:3f:af:
08:7f:5b:be:98:10:73:e9:59:07:2c:9b:33:8c:6a:48:5f:77:
0b:d2:7c:01:c6:3c:d8:17:eb:cb:fb:59:dc:9e:8b:00:cc:23:
82:95:b6:33:fc:b2:1f:d8:fe:a5:85:ff:a7:cc:7d:cf:77:c8:
7d:83:56:ae:8d:8f:3c:36:17:44:85:ab:98:c2:9f:d4:40:b3:
17:0d:4b:91:7d:a2:7d:77:16:23:78:5b:c5:bb:42:38:3b:7d:
0b:41:e8:9d:cf:d1:5f:0f:4d:6d:67:be:46:6f:a5:6e:ea:fa:
ae:e7:42:38:41:a1:3a:67:b3:92:9c:0f:2f:bc:50:13:09:2b:
04:e5:c6:54:2b:d6:0d:b9:ef:a5:ed:3f:11:f0:b9:b0:c8:72:
7e:8b:ca:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:18:12 2025 by rpki-client