Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/NKnrbE06V8mlZFbdvwASuBdQsdM.cer
File: NKnrbE06V8mlZFbdvwASuBdQsdM.cer (raw, json)
Hash identifier: PZkf7QRzgBuoO3/U1P3p9LmaqWge02dFKB3asp9p5So=
Subject key identifier: 34:A9:EB:6C:4D:3A:57:C9:A5:64:56:DD:BF:00:12:B8:17:50:B1:D3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856F4130D1187C6ECB41C4EF6C28D782DA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/de/9d8427-8e60-4429-84b3-345d064da7bf/1/NKnrbE06V8mlZFbdvwASuBdQsdM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/de/9d8427-8e60-4429-84b3-345d064da7bf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 21:33:41 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 185.138.164.0/24
IP: 2a11:4c00::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:41:30:d1:18:7c:6e:cb:41:c4:ef:6c:28:d7:82:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:33:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34a9eb6c4d3a57c9a56456ddbf0012b81750b1d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1f:69:0e:0c:5d:8d:f5:ed:59:43:89:30:be:
cf:24:58:92:35:19:55:70:2d:0c:6d:ee:37:0b:00:
a5:e0:99:48:46:cb:01:d9:d8:5d:0d:25:8e:c1:ae:
e5:77:4b:f0:7c:2a:7d:b6:eb:38:30:ed:19:cf:45:
1a:e9:07:6b:ba:70:85:de:6e:bc:7b:bf:29:f1:be:
bc:7e:ea:53:ee:40:8b:af:57:fb:49:71:c0:6b:21:
98:a1:3a:a8:94:b3:1d:8b:8e:03:7f:5d:5a:f7:65:
4e:6b:38:97:a2:3c:0d:be:a6:06:9e:34:f9:b3:0c:
2f:bf:e0:8f:f4:58:db:8b:77:7f:41:28:49:67:d2:
06:d4:b2:28:8d:ae:e4:63:82:14:95:bd:50:85:6c:
bc:2c:c6:e2:23:07:46:a6:38:e9:7c:22:f9:e3:c2:
89:00:5c:d2:d5:8e:90:c0:c0:15:9b:59:0f:ae:1c:
16:b8:19:69:c3:0d:c2:88:c0:e4:36:28:cc:a5:45:
27:f9:96:50:83:50:14:2a:83:45:bf:22:81:0a:1e:
c6:4a:0c:44:5d:47:24:84:7b:45:04:b9:9a:05:2e:
89:8e:40:84:61:4f:a2:4d:72:6f:e4:10:9b:3f:79:
40:87:74:a6:87:69:7c:25:2c:89:4b:9f:fb:29:93:
b8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A9:EB:6C:4D:3A:57:C9:A5:64:56:DD:BF:00:12:B8:17:50:B1:D3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9d8427-8e60-4429-84b3-345d064da7bf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9d8427-8e60-4429-84b3-345d064da7bf/1/NKnrbE06V8mlZFbdvwASuBdQsdM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.164.0/24
IPv6:
2a11:4c00::/29
Signature Algorithm: sha256WithRSAEncryption
72:d3:78:ab:49:b1:32:d4:39:d7:aa:6f:9b:e1:91:d2:67:7d:
15:ef:94:b4:c3:a1:0b:f3:b5:9a:3e:66:34:09:c3:ab:dc:85:
18:cf:ed:13:f7:2f:21:aa:08:b9:fa:96:2d:4d:43:d9:ae:65:
34:86:98:2e:13:c5:71:97:ba:42:85:20:3b:fa:86:69:ec:69:
aa:bb:53:8e:4c:57:e3:0d:e3:32:92:47:26:20:4a:36:d8:86:
ba:d1:34:77:b9:9a:46:28:2d:1e:4d:09:6d:bf:6f:50:01:11:
41:c5:cb:09:43:7f:a3:19:61:f1:1b:13:5d:25:82:6b:c3:73:
d4:e3:29:85:b6:65:05:0f:cc:d9:8b:7f:56:8b:2f:67:d3:86:
e2:a4:e5:fc:5d:4e:ec:04:c2:b4:86:bd:66:b0:15:96:4e:5c:
32:50:76:19:c5:11:c9:7a:9b:7f:4b:ea:36:55:99:e9:e1:f6:
2f:21:b7:ea:5f:51:eb:5c:34:37:38:6d:8d:43:19:0e:96:2e:
b5:ba:05:42:3a:f4:23:49:27:83:97:4b:4d:bc:66:f2:6d:15:
9e:4b:9f:5c:75:90:91:00:8e:a2:d9:04:2f:9d:5d:2b:ba:27:
2f:14:7e:8b:73:66:bb:65:e6:27:86:91:38:b0:ae:1a:fe:cf:
1b:81:26:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 08:23:05 2025 by rpki-client