Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UzGm98yjlTUPxK9ykQZP0149BGA.cer
File: UzGm98yjlTUPxK9ykQZP0149BGA.cer (raw, json)
Hash identifier: 2PFFoWnyvfG7N1herZrJZHkKDnU2eQjCrhbKG1oSyDM=
Subject key identifier: 53:31:A6:F7:CC:A3:95:35:0F:C4:AF:72:91:06:4F:D3:5E:3D:04:60
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: AD92EA4A6F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ce/424016-c2c0-4f25-a670-0665ec01236d/1/UzGm98yjlTUPxK9ykQZP0149BGA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ce/424016-c2c0-4f25-a670-0665ec01236d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 19 Feb 2022 19:44:53 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 208765
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 745494170223 (0xad92ea4a6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 19 19:44:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5331a6f7cca395350fc4af7291064fd35e3d0460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:19:54:6e:50:e0:4b:d8:b2:55:51:5c:6f:64:
32:24:08:28:bf:d7:e7:fc:88:b1:cd:60:15:e1:b6:
a8:69:17:e2:c4:73:be:67:5f:55:39:11:40:c3:fb:
49:cd:9f:15:58:bf:13:d8:bb:16:c3:72:f8:5d:d7:
3c:64:8d:72:20:25:2b:11:f4:b2:d8:70:65:8f:e3:
47:3e:50:92:ea:92:5a:a0:37:79:a9:29:1d:a6:48:
ef:1c:f6:af:96:c7:f8:41:bc:bf:4e:da:cb:a7:d8:
b4:16:0c:85:2a:6c:60:6b:7e:85:0a:fd:02:41:4c:
a5:9f:c0:ac:00:ac:48:d6:c3:eb:de:dc:ed:0b:b7:
09:54:d6:c0:9a:a9:47:fd:1a:2e:09:ac:4c:93:3d:
79:da:ce:08:12:17:d6:5c:be:10:65:3c:85:2b:68:
89:47:f1:6d:51:a8:7c:54:2e:0b:56:87:d0:7f:f1:
bf:16:c9:26:9e:0c:10:d2:0e:ea:74:b8:1b:02:bd:
a3:89:5e:34:25:9a:08:44:16:92:76:2c:c1:72:c5:
ac:10:32:52:35:0a:ae:14:09:6b:6e:a2:2e:d9:84:
df:25:bc:16:1a:9e:d1:2f:e0:e1:16:b3:92:b5:24:
eb:41:25:8d:8a:48:c4:06:a7:1c:1c:47:69:83:d6:
7f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:31:A6:F7:CC:A3:95:35:0F:C4:AF:72:91:06:4F:D3:5E:3D:04:60
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/424016-c2c0-4f25-a670-0665ec01236d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/424016-c2c0-4f25-a670-0665ec01236d/1/UzGm98yjlTUPxK9ykQZP0149BGA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208765
Signature Algorithm: sha256WithRSAEncryption
b1:92:dd:3c:2a:8b:be:d8:41:31:81:19:07:fb:a2:93:b8:a6:
09:2f:1a:76:fb:66:5b:e7:6b:bf:45:58:83:61:ca:2b:7e:b4:
f5:e1:2c:8d:fe:af:64:8b:53:33:e2:14:ed:d1:a5:c3:0a:bf:
9b:ec:f5:66:32:64:ee:f5:24:db:12:52:ef:21:49:df:46:b4:
8c:66:5a:a4:0f:18:27:3a:96:e2:49:81:46:6e:10:e1:db:2b:
50:2a:17:ba:75:91:fd:a5:de:ee:b3:e5:2a:19:50:e9:fe:48:
6d:ea:6c:8c:85:97:67:b1:d1:00:85:1f:33:2a:69:bf:db:af:
b6:00:a5:12:ce:dd:67:31:e1:8f:d2:61:25:5f:bb:ae:b6:35:
ce:2f:98:91:03:e5:9a:6c:13:b3:2a:24:93:b2:ef:23:8c:81:
e3:f1:8d:d4:99:18:ad:28:af:c3:fc:3b:15:1b:c6:90:b4:c7:
0a:a3:b3:da:dc:c5:04:59:df:3f:58:d3:64:90:23:ba:82:15:
88:73:83:97:b3:dc:21:24:eb:8b:6d:40:fb:e0:ac:00:22:ea:
70:08:06:e3:46:00:a0:af:7d:08:9b:29:fd:97:59:3e:e6:8d:
49:68:21:3c:78:c6:c1:c5:f9:44:da:8e:08:9d:4f:13:7e:70:
9c:b2:70:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 02:40:47 2025 by rpki-client