Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/N4i9RNUBULUSk6XqUlVSjb_Av1g.cer
File: N4i9RNUBULUSk6XqUlVSjb_Av1g.cer (raw, json)
Hash identifier: T0YhmCgvwdGjwMaOF2RTsN7fmkJq6droIwunoADcKT8=
Subject key identifier: 37:88:BD:44:D5:01:50:B5:12:93:A5:EA:52:55:52:8D:BF:C0:BF:58
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: AF87A9028F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b222b-28cd-434a-ad7e-14926b560c35/1/N4i9RNUBULUSk6XqUlVSjb_Av1g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b222b-28cd-434a-ad7e-14926b560c35/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 04 Apr 2022 07:13:26 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 200313
IP: 45.8.176.0/22
IP: 45.12.32.0/22
IP: 45.83.120.0/22
IP: 45.88.0.0/22
IP: 45.133.200.0/22
IP: 45.142.0.0/22
IP: 45.148.144.0/22
IP: 45.159.92.0/22
IP: 185.212.128.0/22
IP: 185.217.136.0/22
IP: 185.224.216.0/22
IP: 185.232.52.0/22
IP: 185.238.0.0/22
IP: 194.40.240.0/22
IP: 195.39.238.0/24
IP: 195.42.248.0/24
IP: 195.43.128.0/24
IP: 195.43.147.0/24
IP: 2a0d:1640::/29
IP: 2a0d:63c0::/29
IP: 2a11:2880::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 753895277199 (0xaf87a9028f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 4 07:13:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3788bd44d50150b51293a5ea5255528dbfc0bf58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ce:9e:43:5f:1d:41:e9:9b:ef:be:af:25:16:
fe:7d:5b:88:d2:b2:bf:e4:c5:d3:ea:f9:4b:39:ce:
d4:0a:13:30:e3:e5:50:8e:cf:b4:a9:60:8e:ed:f1:
4e:72:2f:3c:9e:e5:f6:1c:17:04:35:fd:ee:9f:bc:
5c:8b:ed:38:c2:6d:e0:5b:8d:cc:28:c9:74:c9:56:
44:b2:87:7c:26:6b:41:3c:91:95:a9:c3:06:24:56:
a6:6e:ad:eb:d5:bc:9a:66:2f:7a:d6:03:53:e6:14:
cb:97:8c:a1:c0:a5:ce:29:3d:31:09:19:c3:de:b1:
7e:a0:27:00:a4:e9:a9:8a:4c:52:bb:2a:03:7a:35:
e1:37:f8:4a:7f:93:85:ed:e8:d3:74:fd:37:3d:e0:
56:68:b7:4d:01:c8:20:8b:eb:48:1f:94:10:54:ea:
87:0d:ab:b5:cb:25:4c:fc:46:51:79:fa:4a:a3:77:
a6:31:bc:1d:22:7e:12:7d:a8:c3:3a:aa:75:67:af:
b9:08:48:1e:56:48:ed:86:b1:53:f4:f8:3a:fe:80:
b1:59:58:58:3a:51:fe:79:37:a1:f8:75:f0:2c:58:
ad:a3:c8:be:f2:77:52:0a:fb:18:8e:a4:ab:77:23:
b5:e3:f3:4e:c7:06:d1:f9:fe:96:a1:b7:c2:78:41:
58:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:88:BD:44:D5:01:50:B5:12:93:A5:EA:52:55:52:8D:BF:C0:BF:58
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b222b-28cd-434a-ad7e-14926b560c35/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b222b-28cd-434a-ad7e-14926b560c35/1/N4i9RNUBULUSk6XqUlVSjb_Av1g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.176.0/22
45.12.32.0/22
45.83.120.0/22
45.88.0.0/22
45.133.200.0/22
45.142.0.0/22
45.148.144.0/22
45.159.92.0/22
185.212.128.0/22
185.217.136.0/22
185.224.216.0/22
185.232.52.0/22
185.238.0.0/22
194.40.240.0/22
195.39.238.0/24
195.42.248.0/24
195.43.128.0/24
195.43.147.0/24
IPv6:
2a0d:1640::/29
2a0d:63c0::/29
2a11:2880::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200313
Signature Algorithm: sha256WithRSAEncryption
8a:07:a1:48:ee:e2:f0:09:52:67:a7:4e:8d:66:14:fc:0e:f5:
73:95:74:ad:42:1b:f3:1b:27:44:7a:0b:11:b2:5f:2d:eb:a5:
5f:01:59:92:a3:f5:4f:64:03:f2:63:69:b1:86:ff:26:06:d4:
48:9f:e6:26:d6:85:c4:2c:f1:95:b0:5f:86:2f:f5:42:22:b8:
3a:40:39:1c:ee:c4:38:d2:55:d5:cb:8d:73:44:a4:26:64:b7:
24:da:8d:22:a4:a7:c3:2a:dd:bd:3c:1f:8d:32:ff:61:20:76:
8d:8b:82:4a:1e:6c:7c:24:22:b2:7a:80:09:89:2b:7a:f2:4a:
dc:48:c3:c3:f2:87:4b:c0:80:e6:b8:84:be:74:be:5d:86:be:
70:78:17:f5:52:95:59:46:72:6a:e7:21:8f:e1:18:0f:03:a7:
62:f3:e5:27:2f:ec:e2:79:39:20:fb:be:2c:f2:c5:70:84:a0:
e3:d8:b2:14:d9:d0:8a:d0:73:73:7b:f3:1a:d6:bd:cf:f5:e3:
28:41:9d:6b:17:e5:5c:48:e6:d6:6e:68:92:3f:b0:1b:d1:dc:
f2:81:09:7e:e4:9c:fc:4b:71:6f:8f:01:5b:ba:ba:95:f0:41:
0b:72:10:ca:ef:26:48:57:24:94:f5:6a:ac:15:51:04:08:45:
cd:90:b3:59
-----BEGIN CERTIFICATE-----
MIIGDjCCBPagAwIBAgIGAK+HqQKPMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMT
KDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRkZGU2NjkwHhcNMjIw
NDA0MDcxMzI2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzNzg4YmQ0NGQ1
MDE1MGI1MTI5M2E1ZWE1MjU1NTI4ZGJmYzBiZjU4MIIBIjANBgkqhkiG9w0BAQEF
AAOCAQ8AMIIBCgKCAQEAx86eQ18dQemb776vJRb+fVuI0rK/5MXT6vlLOc7UChMw
4+VQjs+0qWCO7fFOci88nuX2HBcENf3un7xci+04wm3gW43MKMl0yVZEsod8JmtB
PJGVqcMGJFambq3r1byaZi961gNT5hTLl4yhwKXOKT0xCRnD3rF+oCcApOmpikxS
uyoDejXhN/hKf5OF7ejTdP03PeBWaLdNAcggi+tIH5QQVOqHDau1yyVM/EZRefpK
o3emMbwdIn4SfajDOqp1Z6+5CEgeVkjthrFT9Pg6/oCxWVhYOlH+eTeh+HXwLFit
o8i+8ndSCvsYjqSrdyO14/NOxwbR+f6WobfCeEFYBQIDAQABo4IDJjCCAyIwHQYD
VR0OBBYEFDeIvUTVAVC1EpOl6lJVUo2/wL9YMB8GA1UdIwQYMBaAFCqUqN1VSucB
ByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMGAG
CCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jZXIw
ggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZkLzJiMjIyYi0yOGNkLTQzNGEt
YWQ3ZS0xNDkyNmI1NjBjMzUvMS8wfAYIKwYBBQUHMAqGcHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQvMmIyMjJiLTI4Y2QtNDM0YS1h
ZDdlLTE0OTI2YjU2MGMzNS8xL040aTlSTlVCVUxVU2s2WHFVbFZTamJfQXYxZy5t
ZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5ldC9ub3RpZmljYXRp
b24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMyUUhWVjNkNW1rLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIGkBggrBgEFBQcBBwEB/wSBlDCB
kTByBAIAATBsAwQCLQiwAwQCLQwgAwQCLVN4AwQCLVgAAwQCLYXIAwQCLY4AAwQC
LZSQAwQCLZ9cAwQCudSAAwQCudmIAwQCueDYAwQCueg0AwQCue4AAwQCwijwAwQA
wyfuAwQAwyr4AwQAwyuAAwQAwyuTMBsEAgACMBUDBQMqDRZAAwUDKg1jwAMFAyoR
KIAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAw55MA0GCSqGSIb3DQEBCwUAA4IB
AQCKB6FI7uLwCVJnp06NZhT8DvVzlXStQhvzGydEegsRsl8t66VfAVmSo/VPZAPy
Y2mxhv8mBtRIn+Ym1oXELPGVsF+GL/VCIrg6QDkc7sQ40lXVy41zRKQmZLck2o0i
pKfDKt29PB+NMv9hIHaNi4JKHmx8JCKyeoAJiSt68krcSMPD8odLwIDmuIS+dL5d
hr5weBf1UpVZRnJq5yGP4RgPA6di8+UnL+zieTkg+74s8sVwhKDj2LIU2dCK0HNz
e/Ma1r3P9eMoQZ1rF+VcSObWbmiSP7Ab0dzygQl+5Jz8S3FvjwFburqV8EELchDK
7yZIVySU9WqsFVEECEXNkLNZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:31:07 2024 by rpki-client on console-ams.rpki-client.org