Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OuY5kLfu5MtdVNtyPD-HNt20MTk.cer
File: OuY5kLfu5MtdVNtyPD-HNt20MTk.cer (raw, json)
Hash identifier: Rk4x6S8LtXrqKxbZYLEbx2D/MqUtLhkJM3VyAw8B0W8=
Subject key identifier: 3A:E6:39:90:B7:EE:E4:CB:5D:54:DB:72:3C:3F:87:36:DD:B4:31:39
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 9CA2ECEC92
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4b/9dc00b-0ec5-43f5-88a0-0d7605ad9d71/1/OuY5kLfu5MtdVNtyPD-HNt20MTk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4b/9dc00b-0ec5-43f5-88a0-0d7605ad9d71/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 03:53:44 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 201153
IP: 80.209.255.0/24
IP: 185.81.76.0/22
IP: 185.142.100.0/22
IP: 195.181.255.0/24
IP: 212.237.255.0/24
IP: 2a05:8600::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672748334226 (0x9ca2ecec92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ae63990b7eee4cb5d54db723c3f8736ddb43139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:80:05:49:2b:90:da:a5:2b:66:25:a6:0f:e1:
19:6e:fb:06:c4:ef:a6:7a:bc:57:5b:0c:26:11:9b:
32:90:b5:ce:0c:3d:11:67:89:ce:a9:e1:2c:c6:d9:
7c:c3:e7:77:32:2e:33:e0:56:0e:73:32:5d:d8:ee:
49:a8:10:fc:0e:56:94:e6:9d:b0:a1:9c:9f:13:8a:
d7:08:e2:33:db:e0:d9:2e:54:07:e8:8c:26:75:43:
c5:07:65:bc:38:f1:b9:7b:06:bb:f7:71:f8:fd:49:
5d:d7:52:5b:d7:12:7f:e7:3f:22:f1:ef:bd:36:cf:
65:f9:eb:ea:9d:6e:9a:a4:5f:c0:2a:06:dd:19:af:
aa:8a:28:6d:1a:5b:50:31:4c:07:b5:d2:c4:7b:a0:
11:80:42:a9:46:46:66:f2:08:08:75:ef:a4:73:34:
af:3e:e3:7d:ee:6a:3a:a6:00:41:c6:ca:d7:05:5c:
e9:31:7d:75:28:65:f7:a0:a9:bb:bd:55:53:4f:80:
93:5d:da:d6:b9:7b:94:e8:b2:c0:d5:10:5a:69:b3:
83:fb:e9:46:09:a1:88:6d:49:90:56:5e:7c:b9:a6:
59:6f:79:3d:ec:27:e0:52:c1:1b:33:d0:9c:e6:6e:
e5:68:4a:02:4a:8a:3c:3c:10:c4:7f:01:ff:1e:d0:
6c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E6:39:90:B7:EE:E4:CB:5D:54:DB:72:3C:3F:87:36:DD:B4:31:39
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9dc00b-0ec5-43f5-88a0-0d7605ad9d71/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9dc00b-0ec5-43f5-88a0-0d7605ad9d71/1/OuY5kLfu5MtdVNtyPD-HNt20MTk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.209.255.0/24
185.81.76.0/22
185.142.100.0/22
195.181.255.0/24
212.237.255.0/24
IPv6:
2a05:8600::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201153
Signature Algorithm: sha256WithRSAEncryption
74:75:a3:fd:5e:47:61:b9:cf:d1:ea:bf:e9:7c:99:e5:f2:4e:
b4:93:e8:b4:38:f8:a9:71:3f:29:75:e6:31:d0:f1:99:9e:8b:
ab:a0:cd:5e:6e:c5:88:80:bb:65:62:48:30:7c:aa:c0:f2:de:
cb:1a:f5:cd:d6:9a:85:d7:61:d4:9c:da:ac:f3:a1:80:bc:81:
59:db:a3:75:2b:60:39:2c:aa:a4:ff:ed:1d:e3:a6:25:aa:dd:
f0:a9:4a:c4:fa:7f:ea:9f:6d:87:80:c1:07:1f:71:96:e8:32:
6b:03:51:f2:57:f6:3d:2e:f0:60:58:9e:00:fe:6b:19:45:b1:
60:1f:c4:4c:c5:29:25:d7:81:9c:7d:f9:7b:98:41:2b:1b:c9:
16:31:86:2e:53:e5:33:2d:b0:dd:aa:a6:1f:ea:c7:0e:66:b5:
57:4e:95:bb:06:4f:8d:99:ae:31:60:2a:88:bd:91:03:be:c4:
29:08:3a:ba:3a:39:5f:d1:ff:08:32:11:ca:d7:bc:4b:80:6a:
4d:43:f0:27:3c:da:21:83:91:fa:de:ce:e3:2d:e8:f6:ff:2d:
c6:a4:f1:e8:7a:5b:fb:43:ff:66:15:5e:48:56:05:7c:9d:7c:
08:c4:8c:03:06:b8:ac:e4:c9:3b:60:c9:35:47:91:d6:ee:c6:
e7:f6:63:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:44:55 2024 by rpki-client on console-fra.rpki-client.org