Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QN8nIkUgheO_qYumNQdOrtirBIU.cer
File: QN8nIkUgheO_qYumNQdOrtirBIU.cer (raw, json)
Hash identifier: +kIeWunOMDax1BQ0J2KEvImLIKLnze+2Kd+JcScqM/I=
Subject key identifier: 40:DF:27:22:45:20:85:E3:BF:A9:8B:A6:35:07:4E:AE:D8:AB:04:85
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 9C0CDB2686
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/25/ec676b-6ea2-407c-a10e-abc8552b7d11/1/QN8nIkUgheO_qYumNQdOrtirBIU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/25/ec676b-6ea2-407c-a10e-abc8552b7d11/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 02:59:11 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 197249
IP: 91.217.177.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 670230587014 (0x9c0cdb2686)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40df2722452085e3bfa98ba635074eaed8ab0485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:80:ab:03:13:4f:3b:39:69:03:bb:63:c0:0d:
07:01:02:3d:bd:5a:28:de:15:da:7f:57:ec:4c:51:
f2:1a:54:61:a2:f0:48:e6:c1:15:b9:9a:fb:2a:4d:
ff:44:64:d6:79:97:f3:6e:b0:0c:c7:17:86:b7:90:
bc:ae:50:fa:ac:df:02:09:17:95:17:65:94:da:70:
27:b0:e5:11:80:73:6f:76:81:aa:87:b7:e8:71:91:
8d:92:7f:0a:07:e7:a6:c9:04:e3:d4:9f:c2:7f:54:
d6:14:8b:76:bc:e4:a0:6c:e9:31:96:34:dc:07:5f:
f9:d5:4d:cb:f7:d2:7a:db:10:48:f1:df:79:b2:3f:
61:89:b0:eb:9e:c6:95:50:70:fb:a8:b7:aa:04:29:
b3:82:64:b8:97:06:c5:5f:1c:9f:86:bc:cb:ab:37:
12:35:fd:38:78:3c:ca:f5:2f:21:a6:98:7c:8b:24:
ec:b4:c4:95:53:04:3e:63:be:e3:93:c7:fe:cc:a2:
41:e9:04:3f:32:df:94:04:29:9c:dc:9c:95:16:47:
1c:41:7f:c3:be:8a:bb:bf:de:82:3d:6f:32:2a:e9:
79:a5:7f:36:1b:1c:5c:4d:25:b8:c9:6e:23:1f:c6:
7d:f9:2f:44:61:76:56:5f:cb:16:52:73:82:5a:61:
da:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:DF:27:22:45:20:85:E3:BF:A9:8B:A6:35:07:4E:AE:D8:AB:04:85
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec676b-6ea2-407c-a10e-abc8552b7d11/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec676b-6ea2-407c-a10e-abc8552b7d11/1/QN8nIkUgheO_qYumNQdOrtirBIU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.177.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197249
Signature Algorithm: sha256WithRSAEncryption
3a:bb:db:97:4b:5f:73:8b:d9:26:07:12:28:98:8f:54:2d:e6:
ab:49:dc:ae:e6:f1:0f:4c:2f:53:f9:32:00:c3:40:46:c8:85:
b6:49:78:15:1e:00:b8:fe:4f:66:ac:53:c9:64:dc:d9:96:2a:
55:db:1b:6e:a9:cf:ad:95:60:c1:08:e6:54:cf:a9:a2:a8:04:
1a:da:9e:13:d8:2a:3f:90:be:ac:b3:35:92:dc:5d:bf:c6:96:
68:ff:c2:ad:ac:e8:bd:64:56:5e:8c:75:83:11:35:7d:87:6c:
3f:ae:8a:2e:53:09:38:25:1d:90:94:97:b4:1b:a6:40:64:48:
e2:88:cb:e8:90:fa:20:4f:7d:ed:99:36:74:49:27:16:04:dc:
16:69:50:2c:c8:b3:63:cd:79:f6:bd:9f:03:d4:4a:9f:6a:04:
ec:7c:31:b7:34:3a:59:37:ea:d8:84:4b:af:0e:a9:e4:fd:99:
2e:c0:c7:6d:27:09:63:c6:38:60:20:eb:8e:81:41:9b:61:1c:
a2:f4:6a:42:f1:a5:62:a2:29:e9:3f:04:ce:cf:ac:52:dc:5d:
37:c0:ac:6c:f7:20:2d:c6:fe:2c:0c:0f:97:9e:74:45:f4:1b:
ea:02:da:d8:77:7f:2e:78:4e:6c:ab:3b:5f:34:5d:97:c9:74:
d5:d6:f5:4d
-----BEGIN CERTIFICATE-----
MIIFiDCCBHCgAwIBAgIGAJwM2yaGMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMT
KDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRkZGU2NjkwHhcNMjIw
MTAxMDI1OTExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0MGRmMjcyMjQ1
MjA4NWUzYmZhOThiYTYzNTA3NGVhZWQ4YWIwNDg1MIIBIjANBgkqhkiG9w0BAQEF
AAOCAQ8AMIIBCgKCAQEAkICrAxNPOzlpA7tjwA0HAQI9vVoo3hXaf1fsTFHyGlRh
ovBI5sEVuZr7Kk3/RGTWeZfzbrAMxxeGt5C8rlD6rN8CCReVF2WU2nAnsOURgHNv
doGqh7focZGNkn8KB+emyQTj1J/Cf1TWFIt2vOSgbOkxljTcB1/51U3L99J62xBI
8d95sj9hibDrnsaVUHD7qLeqBCmzgmS4lwbFXxyfhrzLqzcSNf04eDzK9S8hpph8
iyTstMSVUwQ+Y77jk8f+zKJB6QQ/Mt+UBCmc3JyVFkccQX/Dvoq7v96CPW8yKul5
pX82GxxcTSW4yW4jH8Z9+S9EYXZWX8sWUnOCWmHa6QIDAQABo4ICoDCCApwwHQYD
VR0OBBYEFEDfJyJFIIXjv6mLpjUHTq7YqwSFMB8GA1UdIwQYMBaAFCqUqN1VSucB
ByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMGAG
CCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jZXIw
ggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI1L2VjNjc2Yi02ZWEyLTQwN2Mt
YTEwZS1hYmM4NTUyYjdkMTEvMS8wfAYIKwYBBQUHMAqGcHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUvZWM2NzZiLTZlYTItNDA3Yy1h
MTBlLWFiYzg1NTJiN2QxMS8xL1FOOG5Ja1VnaGVPX3FZdW1OUWRPcnRpckJJVS5t
ZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5ldC9ub3RpZmljYXRp
b24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMyUUhWVjNkNW1rLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQAW9mxMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMCgTANBgkqhkiG
9w0BAQsFAAOCAQEAOrvbl0tfc4vZJgcSKJiPVC3mq0ncrubxD0wvU/kyAMNARsiF
tkl4FR4AuP5PZqxTyWTc2ZYqVdsbbqnPrZVgwQjmVM+poqgEGtqeE9gqP5C+rLM1
ktxdv8aWaP/CrazovWRWXox1gxE1fYdsP66KLlMJOCUdkJSXtBumQGRI4ojL6JD6
IE997Zk2dEknFgTcFmlQLMizY8159r2fA9RKn2oE7HwxtzQ6WTfq2IRLrw6p5P2Z
LsDHbScJY8Y4YCDrjoFBm2EcovRqQvGlYqIp6T8Ezs+sUtxdN8CsbPcgLcb+LAwP
l550RfQb6gLa2Hd/LnhObKs7XzRdl8l01db1TQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:32:11 2024 by rpki-client on console-ams.rpki-client.org