Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OMBEsdme4jTNSlUDFD5BSfBykRc.cer
File: OMBEsdme4jTNSlUDFD5BSfBykRc.cer (raw, json)
Hash identifier: wogztvtiw9LF13ypGLtEKHs5jIPXu6tqEmpwpc5b3xg=
Subject key identifier: 38:C0:44:B1:D9:9E:E2:34:CD:4A:55:03:14:3E:41:49:F0:72:91:17
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A1C612FCDD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8e/658cd6-40a8-4718-bde7-51d9a9962a41/1/OMBEsdme4jTNSlUDFD5BSfBykRc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8e/658cd6-40a8-4718-bde7-51d9a9962a41/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 08:00:43 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 196678
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 694812867805 (0xa1c612fcdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38c044b1d99ee234cd4a5503143e4149f0729117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:74:c7:7a:2d:c2:b6:e2:25:22:1d:77:e6:34:
03:cd:e6:07:1f:19:f9:fd:0a:33:8e:f9:83:e5:df:
69:fd:ad:22:9e:08:ec:67:53:ef:c4:b8:1b:c5:79:
4b:b2:ad:7b:36:ea:a6:14:a1:d5:5f:4a:08:ac:51:
18:c0:14:5a:85:c7:e3:e7:bc:2f:0d:7a:b9:b1:43:
68:ae:d8:2f:43:7e:3b:dd:7b:93:5b:39:cb:e0:50:
54:8f:73:a9:bb:b8:5f:58:0f:96:d6:4d:ba:3b:db:
5c:7a:12:7a:2c:a4:b7:c4:0a:ee:fc:ac:fe:e2:6c:
d7:28:18:1b:e1:9b:de:dd:0a:9f:68:fc:b3:c8:c1:
56:ba:31:fe:99:d9:2d:31:80:fd:14:08:3c:73:9a:
c3:b5:dc:3a:eb:b0:e5:93:4d:63:c8:77:94:b3:ae:
11:15:76:18:ad:22:61:4b:fb:6e:57:eb:91:4c:82:
64:f1:7d:dc:02:42:75:73:49:fc:cf:8d:34:2b:93:
ff:04:ec:a6:2e:e7:5c:f7:85:86:8e:76:06:98:5d:
c5:a2:30:61:8a:9d:2d:75:eb:90:a2:b2:5a:2d:1c:
51:3b:64:c0:ee:02:c5:2e:bd:8b:ea:7c:fb:54:26:
ba:eb:50:8c:ad:e9:fd:33:b4:ae:d2:d8:56:89:0c:
f6:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C0:44:B1:D9:9E:E2:34:CD:4A:55:03:14:3E:41:49:F0:72:91:17
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/658cd6-40a8-4718-bde7-51d9a9962a41/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/658cd6-40a8-4718-bde7-51d9a9962a41/1/OMBEsdme4jTNSlUDFD5BSfBykRc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
196678
Signature Algorithm: sha256WithRSAEncryption
7a:cd:72:46:c2:20:d8:ff:2e:66:2f:50:a1:90:61:b3:f8:26:
51:62:6a:f3:1a:fd:d7:56:87:c0:7c:e9:b1:9c:d2:f1:2a:c0:
5b:7c:5e:86:bd:68:7e:b2:68:38:62:13:79:07:81:a7:1e:fd:
d1:68:b0:c9:69:83:0f:20:01:32:27:0a:6b:1f:34:eb:32:76:
ff:84:91:65:11:a8:65:5b:90:95:89:0a:28:16:01:b8:ed:2e:
13:a6:86:a1:48:85:e6:80:f1:46:5f:f1:be:40:a7:1c:5f:5c:
64:c1:04:4e:f2:a0:f2:68:69:e7:40:dc:3c:09:78:70:10:dc:
f7:45:3b:88:65:17:05:63:a1:1a:c0:d2:37:f0:68:de:49:6b:
a2:28:1f:f4:ca:4b:82:ad:fd:fb:8a:d8:42:85:32:60:1c:c5:
79:b9:63:5c:e4:37:7e:5d:f5:0d:b0:7b:b6:e2:38:51:74:43:
41:0d:ce:24:f5:ee:37:7d:02:a8:e5:37:8c:2b:16:5c:bb:56:
2e:39:dd:b5:2b:89:41:58:fe:b6:d4:a6:e2:60:d6:5a:22:13:
5c:e0:85:92:2e:f5:a5:4d:07:f4:f3:f5:f9:8c:0f:e4:b4:9f:
ff:52:36:8e:d0:e2:32:76:ba:7f:a9:51:0e:90:13:d6:54:9a:
39:bc:c6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:10:14 2025 by rpki-client