Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ROzhMd-NFj8MVM8yOJ4MYWfKKTI.cer
File: ROzhMd-NFj8MVM8yOJ4MYWfKKTI.cer (raw, json)
Hash identifier: RDZBsqiOcWDHx0tivHYU5LQj2tMogpPZpzyb/4Mqd5E=
Subject key identifier: 44:EC:E1:31:DF:8D:16:3F:0C:54:CF:32:38:9E:0C:61:67:CA:29:32
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018AE217886F272F25FE1607DB8D2AA72072
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6f/00cf97-46b8-4ca4-97f5-ef94d10e9389/1/ROzhMd-NFj8MVM8yOJ4MYWfKKTI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6f/00cf97-46b8-4ca4-97f5-ef94d10e9389/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 29 Sep 2023 17:58:27 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 203852
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e2:17:88:6f:27:2f:25:fe:16:07:db:8d:2a:a7:20:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 29 17:58:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44ece131df8d163f0c54cf32389e0c6167ca2932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:94:28:5b:99:08:c5:8f:38:cd:50:5c:d7:63:
dc:3c:c8:0e:64:43:14:de:f1:20:49:a1:9a:e2:db:
42:9c:6d:3c:a8:79:91:c0:db:f9:f3:1e:9e:03:fc:
5d:b7:f6:19:f9:94:fa:84:89:b0:2e:fc:fa:1a:14:
71:3e:32:00:c3:08:92:f6:28:2f:7d:62:c4:be:44:
c0:5a:2c:05:4d:4a:ff:b2:05:25:c5:e1:a9:86:5e:
ce:97:e0:3e:13:83:3e:c4:aa:21:f7:e2:b4:da:d3:
dd:a6:a6:69:19:ba:f1:de:4a:44:25:cf:d7:8b:92:
95:84:ec:d5:de:45:96:68:d0:a3:de:32:31:d6:99:
54:10:ac:6a:87:60:69:51:5a:8e:89:65:91:e0:02:
3b:f9:ab:fb:31:9b:c7:1c:d3:c5:0e:95:b3:8c:53:
d7:1e:28:22:94:1d:52:66:34:84:ca:82:af:2e:42:
b5:99:34:71:b4:e4:c0:1a:94:e1:e4:e8:23:6b:f3:
c9:f5:ea:e3:2c:dd:dd:2e:ee:59:05:bb:0f:f2:1b:
42:e7:e9:23:f2:92:90:39:9b:c3:08:df:a8:e6:1b:
ea:ac:4a:96:d7:ad:d8:fa:47:db:02:49:5c:0b:f1:
c9:fe:52:27:c3:82:96:f0:ae:08:68:f4:4f:e3:cf:
fc:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:EC:E1:31:DF:8D:16:3F:0C:54:CF:32:38:9E:0C:61:67:CA:29:32
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/00cf97-46b8-4ca4-97f5-ef94d10e9389/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/00cf97-46b8-4ca4-97f5-ef94d10e9389/1/ROzhMd-NFj8MVM8yOJ4MYWfKKTI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203852
Signature Algorithm: sha256WithRSAEncryption
43:aa:79:de:0a:b6:f8:2e:34:a4:ac:c7:6e:b6:08:65:51:f4:
f5:6a:ae:b2:03:b2:df:76:b9:fd:66:26:2f:1b:75:44:23:2e:
7b:b1:ee:6c:29:83:4d:91:23:2f:cf:e4:12:2a:9a:57:8a:7e:
f0:cf:6f:60:69:9a:91:18:ae:84:bd:7a:63:15:36:86:c4:11:
94:94:06:0e:1e:8f:f5:18:a1:65:bb:61:bb:8c:27:b0:14:da:
39:c1:70:b8:70:e2:0b:2b:6e:cf:03:a1:bf:7a:cf:c6:9d:08:
5c:8d:ba:73:c7:ef:69:48:24:b4:73:e1:e9:74:c6:e6:4b:40:
52:1c:22:62:06:0c:7d:f3:96:b8:69:80:1a:83:54:9b:41:a6:
cf:6c:bf:09:d8:fe:e6:ab:5a:60:2f:85:ae:66:dc:58:31:f5:
98:1b:99:8b:25:1b:27:a2:e2:01:e5:b2:6d:eb:14:81:01:21:
89:91:cb:d6:21:fe:aa:d3:09:ac:8a:36:8b:36:74:88:2e:45:
f1:f0:72:c9:93:1b:1a:12:1c:fe:3a:07:7b:48:ee:3f:6e:ba:
5b:42:dc:3c:c3:7b:09:82:29:0e:58:47:fb:82:c2:33:c8:0c:
e6:3c:d1:33:e2:74:cb:dd:dd:8e:4c:db:65:4c:f1:e8:6d:1b:
55:04:f7:85
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYriF4hvJy8l/hYH240qpyByMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMwOTI5MTc1ODI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGVjZTEzMWRmOGQxNjNmMGM1NGNmMzIzODllMGM2MTY3Y2EyOTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA85QoW5kIxY84zVBc12PcPMgOZEMU
3vEgSaGa4ttCnG08qHmRwNv58x6eA/xdt/YZ+ZT6hImwLvz6GhRxPjIAwwiS9igv
fWLEvkTAWiwFTUr/sgUlxeGphl7Ol+A+E4M+xKoh9+K02tPdpqZpGbrx3kpEJc/X
i5KVhOzV3kWWaNCj3jIx1plUEKxqh2BpUVqOiWWR4AI7+av7MZvHHNPFDpWzjFPX
HigilB1SZjSEyoKvLkK1mTRxtOTAGpTh5Ogja/PJ9erjLN3dLu5ZBbsP8htC5+kj
8pKQOZvDCN+o5hvqrEqW163Y+kfbAklcC/HJ/lInw4KW8K4IaPRP48/8PQIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFETs4THfjRY/DFTPMjieDGFnyikyMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZmLzAwY2Y5
Ny00NmI4LTRjYTQtOTdmNS1lZjk0ZDEwZTkzODkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmYvMDBjZjk3
LTQ2YjgtNGNhNC05N2Y1LWVmOTRkMTBlOTM4OS8xL1JPemhNZC1ORmo4TVZNOHlP
SjRNWVdmS0tUSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMcTDANBgkqhkiG9w0BAQsFAAOCAQEAQ6p53gq2+C40
pKzHbrYIZVH09WqusgOy33a5/WYmLxt1RCMue7HubCmDTZEjL8/kEiqaV4p+8M9v
YGmakRiuhL16YxU2hsQRlJQGDh6P9RihZbthu4wnsBTaOcFwuHDiCytuzwOhv3rP
xp0IXI26c8fvaUgktHPh6XTG5ktAUhwiYgYMffOWuGmAGoNUm0Gmz2y/Cdj+5qta
YC+FrmbcWDH1mBuZiyUbJ6LiAeWybesUgQEhiZHL1iH+qtMJrIo2izZ0iC5F8fBy
yZMbGhIc/joHe0juP266W0LcPMN7CYIpDlhH+4LCM8gM5jzRM+J0y93djkzbZUzx
6G0bVQT3hQ==
-----END CERTIFICATE-----
Generated at Wed Mar 12 18:06:53 2025 by rpki-client