Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/NQd2wsT2NOs6ekSSGYU0Wlyn3lE.cer
File: NQd2wsT2NOs6ekSSGYU0Wlyn3lE.cer (raw, json)
Hash identifier: agkx5oL+ONc6p20l05EbmweqbmzNcKpGk+kUEGuKWVM=
Subject key identifier: 35:07:76:C2:C4:F6:34:EB:3A:7A:44:92:19:85:34:5A:5C:A7:DE:51
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A0D0C8FB26
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4f/34eee5-383d-4df4-bde3-0f782d67ae08/1/NQd2wsT2NOs6ekSSGYU0Wlyn3lE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4f/34eee5-383d-4df4-bde3-0f782d67ae08/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 07:01:54 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 193.42.219.0/24
IP: 193.43.14.0/24
IP: 193.43.28.0/24
IP: 193.43.37.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 690697599782 (0xa0d0c8fb26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:01:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=350776c2c4f634eb3a7a44921985345a5ca7de51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:38:41:94:6c:5d:cc:76:8f:99:f3:01:f3:7b:
d0:7c:c6:e8:86:43:e5:c5:be:24:b3:8c:17:de:f3:
1c:4e:36:0c:fc:16:ba:bb:c1:23:bb:b5:af:eb:0f:
53:7f:6c:0e:f7:75:55:d7:b2:72:46:fe:c2:42:03:
e6:c3:7f:dc:c2:92:61:db:41:3b:68:8c:e0:a1:6d:
3b:d1:5d:37:f6:dd:2a:29:a7:6d:18:d3:20:79:56:
8c:64:eb:11:a5:e5:05:3e:4e:5a:e6:45:9c:f5:1e:
15:0c:42:35:61:55:8e:01:cd:54:89:74:9a:d4:d2:
0f:64:76:8e:75:c7:6b:5b:ce:2e:6f:0b:d1:86:2f:
d2:3f:6e:ee:eb:1f:21:54:bc:c3:a6:3b:7f:7e:08:
70:c5:5d:59:e4:95:46:dc:ee:9c:a7:e8:37:ac:ab:
61:d7:ee:22:6f:13:7c:c5:af:f9:ff:14:53:c7:3a:
11:89:ba:7b:f6:e7:b3:27:de:8b:25:6c:51:ac:eb:
8d:70:74:68:65:b1:a8:41:e7:ae:01:81:2f:5f:fc:
90:b3:b9:49:ff:c8:c5:ae:84:7a:30:2d:fd:d5:4e:
06:5d:8a:74:a5:6d:f4:7e:59:5f:52:a4:3c:39:7d:
9a:d4:57:ec:03:7b:bf:af:a7:23:dd:b8:13:4f:fa:
a4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:07:76:C2:C4:F6:34:EB:3A:7A:44:92:19:85:34:5A:5C:A7:DE:51
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/34eee5-383d-4df4-bde3-0f782d67ae08/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/34eee5-383d-4df4-bde3-0f782d67ae08/1/NQd2wsT2NOs6ekSSGYU0Wlyn3lE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.219.0/24
193.43.14.0/24
193.43.28.0/24
193.43.37.0/24
Signature Algorithm: sha256WithRSAEncryption
80:f9:3b:b1:50:43:04:5f:00:7d:8c:25:18:94:7b:7c:55:93:
46:ad:13:44:44:eb:d5:c9:6a:2d:48:31:12:14:57:c2:2d:ea:
a7:8a:c0:43:ac:25:00:ef:27:68:83:73:27:d9:d5:86:d9:65:
04:52:7b:53:03:49:05:7f:1a:cb:62:26:27:1c:75:3a:2a:66:
8e:a0:b5:fb:59:59:cf:ad:96:7c:54:ac:86:5c:75:6b:70:8f:
3b:6b:69:9a:4e:5e:72:0e:37:1f:8f:ba:42:3a:77:84:35:53:
ea:35:4f:a3:08:bf:62:f3:6c:25:e2:cb:5d:e4:19:57:e1:06:
1b:94:63:43:ec:4a:f4:85:72:42:b4:50:e7:96:09:2b:31:a6:
2f:8f:c2:3f:61:52:79:64:2e:d8:7f:8a:94:af:6f:03:22:2c:
43:3a:20:f9:0f:b2:fe:5b:4f:64:97:b3:79:c7:c0:72:77:3d:
42:4a:36:fc:b2:90:50:2d:02:42:73:09:b4:04:f0:45:bf:b5:
c6:1d:d4:46:ba:03:1a:76:4a:8b:0f:73:fb:6a:78:a4:8c:11:
b4:be:33:f4:c0:4c:d0:85:48:9c:96:dc:8c:97:9d:8e:4a:f0:
f9:ec:eb:ea:53:03:b8:ce:24:4b:16:34:95:7f:9d:73:ac:2e:
dd:a5:41:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:44:33 2024 by rpki-client on console-fra.rpki-client.org