Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UwSTo9w8C34wx3ceK-IPgR68R-A.cer
File: UwSTo9w8C34wx3ceK-IPgR68R-A.cer (raw, json)
Hash identifier: o2yecVYfsxRBHalEGsKEpp+oiY0BpilZ2wj2d4QukuE=
Subject key identifier: 53:04:93:A3:DC:3C:0B:7E:30:C7:77:1E:2B:E2:0F:81:1E:BC:47:E0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856FB096E4B1AB9D11F217D8E0334C529B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/88/8df9d9-b420-41da-b3aa-afdea12fb965/1/UwSTo9w8C34wx3ceK-IPgR68R-A.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/88/8df9d9-b420-41da-b3aa-afdea12fb965/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 23:35:22 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 213.109.204.0/24
IP: 2a11:70c0::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b0:96:e4:b1:ab:9d:11:f2:17:d8:e0:33:4c:52:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:35:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=530493a3dc3c0b7e30c7771e2be20f811ebc47e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f0:d4:9c:30:fd:89:e9:f7:4c:89:16:19:bb:
97:c3:65:87:71:5c:5d:a7:f1:97:8e:b8:cd:ca:b6:
c7:b0:00:9f:20:48:c1:9d:8b:3a:82:b6:87:0d:ec:
2a:62:14:d6:e3:16:c0:bf:87:d3:8a:71:00:26:cb:
3a:2f:46:45:b5:1f:6b:8a:8c:92:ba:1e:43:c9:ad:
be:dd:cc:77:b7:3d:eb:47:80:40:4b:01:3a:4d:69:
16:b7:1f:b1:85:2a:f0:53:76:68:92:d1:07:7c:25:
0d:a3:52:a5:1f:2f:64:81:73:25:65:bb:05:44:34:
9b:cb:30:56:ad:df:3c:b7:af:a4:80:4e:69:85:39:
cc:0b:b1:0e:aa:14:32:a1:39:0d:66:33:c9:96:c3:
a3:79:51:70:83:80:30:58:7d:8f:34:1d:6b:01:f5:
97:fd:67:99:00:f6:3d:20:18:64:e1:7d:c4:4f:ff:
4d:6e:3f:34:af:87:94:e5:40:51:96:8c:48:dc:4b:
6f:37:c7:c5:26:0b:16:e1:b5:95:6c:00:8f:e3:b3:
3e:ac:fe:da:3f:2b:e2:c3:17:4d:2e:c7:da:ec:5d:
f8:1f:59:7f:72:da:23:10:77:5d:ad:16:32:0c:89:
54:78:8c:1b:fb:34:e6:87:8b:d5:89:6c:96:6c:a8:
10:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:04:93:A3:DC:3C:0B:7E:30:C7:77:1E:2B:E2:0F:81:1E:BC:47:E0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8df9d9-b420-41da-b3aa-afdea12fb965/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8df9d9-b420-41da-b3aa-afdea12fb965/1/UwSTo9w8C34wx3ceK-IPgR68R-A.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.204.0/24
IPv6:
2a11:70c0::/29
Signature Algorithm: sha256WithRSAEncryption
81:5c:89:f1:ad:65:9d:0e:39:10:81:38:5e:eb:9a:80:bb:e8:
29:a0:39:32:17:2a:dc:dd:73:3e:30:4f:fe:e3:25:11:9f:5a:
9b:9c:9f:d2:19:44:28:29:b7:7f:07:6f:b2:8c:1a:64:36:fe:
5d:cf:41:34:0c:6f:37:cb:52:c6:74:11:d1:b5:03:ce:d1:07:
aa:26:7f:e1:88:fb:ca:4a:f9:14:99:75:eb:76:47:70:9b:07:
fa:7f:e0:68:d4:4c:9d:66:72:92:57:04:2a:fa:69:05:14:2f:
7c:9b:ff:54:57:28:88:a7:95:b4:30:7a:61:68:9e:3a:0a:40:
a9:f7:1b:83:cc:29:06:e5:44:7d:a0:7f:36:e3:e0:2f:13:0b:
b2:fd:d6:20:b9:aa:36:5f:6a:d4:56:20:2f:52:34:ce:d6:24:
79:31:1a:2c:18:a3:21:54:10:bf:3b:15:4a:ce:f0:8b:72:87:
91:0f:16:e5:91:e6:28:ce:23:f4:34:41:2f:31:85:6e:18:54:
7a:e3:0e:4b:59:5d:1d:a1:40:98:cc:51:cf:0a:9d:da:f8:e7:
36:1f:06:5f:00:fe:ce:6c:89:1d:d8:19:7b:8e:f5:0d:39:3d:
d0:85:ed:a3:53:26:ec:72:c6:19:fe:b9:e6:aa:d7:ba:c9:98:
c1:55:7f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 01:06:19 2025 by rpki-client