Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UFJIDfAMG2h87rwStwe40QYnoz8.cer
File: UFJIDfAMG2h87rwStwe40QYnoz8.cer (raw, json)
Hash identifier: kicHNvhcWToeWO/3mmWOJnW7S6lxFJnVDQDrUrEHRoU=
Subject key identifier: 50:52:48:0D:F0:0C:1B:68:7C:EE:BC:12:B7:07:B8:D1:06:27:A3:3F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856BD125C123E6B5175BD873B70A2F3C2D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/UFJIDfAMG2h87rwStwe40QYnoz8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 05:32:26 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 61004
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d1:25:c1:23:e6:b5:17:5b:d8:73:b7:0a:2f:3c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:32:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5052480df00c1b687ceebc12b707b8d10627a33f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6b:b6:2c:3f:a6:74:64:32:80:bb:4a:90:53:
d8:0a:b2:ac:40:03:5a:fc:10:d2:0e:33:5f:e1:0d:
79:e1:20:a7:1e:69:31:7a:4d:cd:db:f1:0e:a5:b7:
0f:5c:94:75:98:74:fe:ed:ad:8a:9e:e1:34:61:1b:
00:e3:48:cb:05:6a:0a:a8:01:8a:c1:22:52:ca:73:
8e:14:10:35:68:da:79:b3:9d:80:3b:d2:fc:bb:17:
81:29:ee:30:9a:69:a8:c3:c2:3f:e8:fe:a7:3d:b8:
28:fc:41:9b:aa:2d:d7:27:f6:03:f1:80:62:bc:12:
9f:3b:b8:b5:3a:f6:9d:d0:13:ec:86:eb:f3:fc:67:
f7:57:a4:b9:e9:a4:2e:07:f8:64:33:50:e1:2e:13:
ba:c7:d1:9d:ca:bc:0c:87:94:88:bc:d3:d8:88:e7:
d1:2e:c0:d0:db:7c:45:58:db:d3:c7:47:b1:c9:0f:
c3:67:ab:fe:7b:04:64:3b:2b:70:03:60:ef:8d:9a:
14:67:29:a5:72:c5:15:a8:a4:d6:f8:af:d0:e9:fa:
48:99:dd:06:4e:48:41:84:80:b8:bf:06:c0:da:7d:
f4:0b:1b:28:3b:4f:b7:c1:bf:e4:a8:e6:e7:1f:81:
73:3f:6c:0a:9e:ec:79:bf:07:47:13:7d:74:09:3f:
ff:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:52:48:0D:F0:0C:1B:68:7C:EE:BC:12:B7:07:B8:D1:06:27:A3:3F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/UFJIDfAMG2h87rwStwe40QYnoz8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61004
Signature Algorithm: sha256WithRSAEncryption
13:7e:37:4d:02:1f:1b:da:a4:31:40:8e:9f:c1:8b:10:6d:f7:
97:38:e1:ab:7b:2e:b9:11:ff:7d:9e:6f:9f:69:e5:d8:90:ed:
ab:e4:ee:cc:dd:2f:92:55:2b:6b:d6:04:f2:35:b9:94:34:44:
08:13:49:ba:0f:ce:d0:5d:b2:c9:5d:7c:1f:f2:35:46:15:5b:
d4:ef:fb:ba:29:0c:38:db:63:ac:35:0b:1c:fa:50:fa:65:c1:
e1:55:af:cb:b8:0a:a1:58:c8:9d:f8:ee:17:d7:89:82:48:22:
32:2f:65:46:d9:f7:a5:98:eb:51:4e:53:24:f8:1c:d0:54:3c:
dc:7a:58:b7:86:ae:87:af:02:c8:83:69:ef:bb:ae:4c:44:0c:
52:f4:b6:d1:d6:6e:f9:7b:17:bd:7e:a2:92:54:f8:62:4b:39:
6d:fc:26:c1:f5:da:50:a1:66:34:fe:4e:8f:c4:31:e9:e3:38:
f5:a8:5b:ae:61:ab:88:81:0a:2b:bd:53:bd:0e:67:0a:87:a7:
42:c8:af:95:a9:bc:60:70:e5:a8:6f:a1:fa:62:f7:a1:fe:c7:
10:00:fc:a4:a8:4a:8b:5d:6c:1c:67:bb:f2:4d:43:b7:20:9a:
a5:d9:a4:08:7b:ea:af:aa:c3:db:17:62:6a:60:7c:ba:2c:92:
05:69:ac:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:14:19 2025 by rpki-client