Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OfbWqqRdM1EOsP8Nfab1uC_RoG4.cer
File: OfbWqqRdM1EOsP8Nfab1uC_RoG4.cer (raw, json)
Hash identifier: SYV6a2IIQlGDQM3Kx5613ooGYR5JurXm0zan/k6lceM=
Subject key identifier: 39:F6:D6:AA:A4:5D:33:51:0E:B0:FF:0D:7D:A6:F5:B8:2F:D1:A0:6E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 9AF5EE56D1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/eb/c55bd3-f206-4858-bfca-05f897961884/1/OfbWqqRdM1EOsP8Nfab1uC_RoG4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/eb/c55bd3-f206-4858-bfca-05f897961884/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 02:00:25 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 193.22.1.0/24
IP: 193.22.80.0/24
IP: 193.22.86.0/24
IP: 193.22.106.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 665551001297 (0x9af5ee56d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39f6d6aaa45d33510eb0ff0d7da6f5b82fd1a06e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:61:e2:38:b3:53:c8:7c:be:24:dd:db:d4:53:
d0:fb:c6:86:8e:6a:99:ea:f2:27:ed:bb:a5:38:50:
6e:e5:45:1b:12:17:17:97:1d:d2:33:03:75:2b:d7:
9a:e5:7a:36:d5:8e:d7:76:55:b3:ca:0a:99:6f:f2:
d3:d7:c2:44:b6:8e:09:a5:da:1d:8c:5b:d6:ad:62:
e2:e7:6a:32:ef:a2:8d:15:12:d5:df:a7:03:17:b5:
bc:6f:8c:ff:36:32:35:fd:bc:ff:eb:52:44:3a:a4:
72:67:42:d8:66:d2:09:34:a2:57:c3:68:a6:1a:0e:
cb:17:99:b7:dd:a9:10:11:05:40:b1:04:47:54:da:
fd:d2:4f:44:db:68:8f:69:0a:91:5d:e9:50:57:66:
ef:3f:e3:60:79:15:b8:1a:98:62:da:02:c7:c7:4a:
e5:af:b3:63:a5:52:5f:c3:fa:20:49:23:80:87:6c:
d9:37:5d:b0:84:9c:e8:52:0b:88:98:41:89:33:ae:
b6:ce:0f:1e:9f:0c:bc:6e:a2:ab:69:61:33:a8:f2:
ee:87:8d:83:8a:0e:3a:c0:c2:c5:f3:c3:6f:12:dc:
da:f0:2d:dc:2e:66:16:60:a9:d8:c5:2b:b4:77:6b:
bd:23:d9:46:dd:0d:22:5e:ae:c8:bb:dd:1a:fd:d8:
80:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:F6:D6:AA:A4:5D:33:51:0E:B0:FF:0D:7D:A6:F5:B8:2F:D1:A0:6E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/c55bd3-f206-4858-bfca-05f897961884/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/c55bd3-f206-4858-bfca-05f897961884/1/OfbWqqRdM1EOsP8Nfab1uC_RoG4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.1.0/24
193.22.80.0/24
193.22.86.0/24
193.22.106.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:5d:37:ce:fb:00:90:7e:a2:54:4b:00:42:24:ba:9c:f2:3c:
8c:f5:bc:56:33:f6:1d:27:e3:0d:9d:c4:26:49:ab:92:0b:dc:
34:b8:a1:a9:ce:9a:bf:b6:8a:84:93:d5:f8:7e:0d:2a:3e:13:
84:7a:01:9d:b8:36:bb:f0:76:01:f8:b0:9e:b9:e0:e6:7c:eb:
1d:c6:df:e5:2b:8c:0b:37:45:8f:a7:2b:55:21:48:7a:93:9f:
07:4b:8c:9b:8f:58:91:af:7a:15:05:fc:cc:bb:a7:f3:c1:e8:
c3:1b:8d:2c:8f:f6:35:c7:8e:ce:2b:e4:37:53:94:d3:80:4d:
98:58:40:f8:c4:78:e2:e6:6d:3e:72:73:93:22:0a:0a:b1:64:
a5:c5:9d:5b:56:ec:75:f5:fc:83:62:4b:73:70:de:6e:7b:76:
96:46:35:0a:56:bf:aa:63:73:81:34:a2:09:ab:9b:8c:32:fe:
4f:1a:df:e0:b0:06:ea:64:8b:27:ca:a2:e8:a6:58:97:86:c5:
e8:2d:4d:4b:7b:dd:35:f1:b9:96:ae:ef:f6:41:5b:5f:00:af:
01:ed:fe:a7:1f:e5:ae:17:ea:76:f9:6d:aa:e0:43:4e:63:71:
9a:a2:72:b4:23:ba:a5:e2:a0:1a:69:6d:9c:26:f6:59:61:9a:
31:c0:21:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:44:52 2024 by rpki-client on console-fra.rpki-client.org