Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OQdhCaR-GW4lcpF-0KJWIBjitf8.cer
File: OQdhCaR-GW4lcpF-0KJWIBjitf8.cer (raw, json)
Hash identifier: VqsiLpoB+K1iF29eRcBUFwOEhBHUGBAK8o0rXK+KdCk=
Subject key identifier: 39:07:61:09:A4:7E:19:6E:25:72:91:7E:D0:A2:56:20:18:E2:B5:FF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01896471114924984A5FA020BFEB9E822BC5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4b/30f39a-b95f-47e2-9cdb-e819dca2b09b/1/OQdhCaR-GW4lcpF-0KJWIBjitf8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4b/30f39a-b95f-47e2-9cdb-e819dca2b09b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 17 Jul 2023 15:21:18 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 31.216.57.0/24
IP: 2a11:4780::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:71:11:49:24:98:4a:5f:a0:20:bf:eb:9e:82:2b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 17 15:21:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39076109a47e196e2572917ed0a2562018e2b5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:60:09:05:f7:dd:6e:ff:33:c6:14:8a:61:f4:
db:a1:c1:fd:12:4b:39:78:e1:8e:1a:9a:4f:8d:d0:
60:86:a9:47:34:f5:15:07:6e:00:37:d8:19:80:0d:
a3:60:3f:fd:c4:39:c7:4a:e9:98:d4:2d:0f:f7:51:
fe:c4:34:b3:a5:9f:fd:64:85:e6:1d:18:87:d1:bc:
52:8f:f3:cc:6b:c5:9b:c7:d8:ce:60:af:e7:80:f6:
67:9c:88:e8:e5:ab:71:30:c7:79:0a:0f:7c:f3:a3:
a2:2c:18:46:d9:09:c7:ad:fa:9f:fa:08:75:b5:85:
d9:54:af:a1:36:19:ae:a7:32:8f:0e:c5:60:b0:61:
96:3c:5a:5c:56:da:cf:06:a6:b5:b2:9a:c3:ca:ef:
6d:61:85:d7:70:c2:f6:dd:ca:5b:a7:6d:1d:7b:c0:
8d:57:c3:48:e9:10:a7:83:23:8f:b2:c3:c7:46:24:
cc:4f:30:26:e2:8c:7c:51:f0:3d:42:fe:80:45:db:
0b:f7:65:3f:ca:f2:f3:ce:0b:23:5c:22:0d:bc:4f:
ee:0c:05:13:5b:d5:ce:0b:02:3d:a2:e5:52:40:10:
a7:4f:84:a8:1c:35:14:6e:41:b9:93:7a:b8:2d:2d:
34:6a:56:9f:50:d9:b7:26:a9:53:3f:54:da:e1:87:
69:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:07:61:09:A4:7E:19:6E:25:72:91:7E:D0:A2:56:20:18:E2:B5:FF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/30f39a-b95f-47e2-9cdb-e819dca2b09b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/30f39a-b95f-47e2-9cdb-e819dca2b09b/1/OQdhCaR-GW4lcpF-0KJWIBjitf8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.57.0/24
IPv6:
2a11:4780::/29
Signature Algorithm: sha256WithRSAEncryption
a2:28:78:bf:d9:fb:bd:49:c5:eb:20:53:44:b6:80:bc:c3:b2:
2e:70:97:e2:f6:43:6b:c1:25:c2:a2:9b:6a:34:80:55:90:61:
29:8d:a0:35:73:24:a9:ca:fb:0d:f9:da:cb:93:4b:95:c9:a4:
40:56:4c:a5:4c:c2:2c:1b:9f:ab:b7:e3:11:40:f8:e6:14:7b:
3e:77:6c:82:d5:c4:01:34:74:36:c4:68:45:47:a6:ce:00:bf:
67:a2:17:04:87:b9:dd:59:12:0d:4b:8d:48:a3:ca:1f:e2:6b:
18:8d:a7:da:b4:8b:5f:58:45:ff:e6:51:33:4c:f0:8b:5a:0b:
18:0c:46:27:a7:09:d7:ae:16:ad:7d:6e:5c:69:4b:2f:97:43:
1c:33:20:b2:9c:2e:41:3c:f3:ea:ea:7b:80:55:da:09:7c:52:
27:6c:d3:61:05:f2:c1:17:cf:e0:75:0f:17:b1:f6:d6:40:c2:
ee:cb:d4:f0:82:ce:ff:80:8f:3b:3a:6a:64:59:60:2e:04:f3:
b7:91:1f:79:c6:69:54:7f:8a:e7:dd:e1:7f:b2:29:0e:6f:2a:
3d:3a:a3:fc:56:13:f6:5d:9f:ef:02:4f:09:8f:f6:f0:cd:50:
7c:b3:9c:26:ad:eb:67:e0:05:a2:8c:4e:54:86:43:b7:8a:bb:
52:2c:b9:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:15:18 2025 by rpki-client