Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W7DpZ5zNNnu20WgOs6QyqRBsvZc.cer
File: W7DpZ5zNNnu20WgOs6QyqRBsvZc.cer (raw, json)
Hash identifier: 5ojOo0JPvQ71EJp6LVHj9WKBWvjDne6EKmYitZ49UoI=
Subject key identifier: 5B:B0:E9:67:9C:CD:36:7B:B6:D1:68:0E:B3:A4:32:A9:10:6C:BD:97
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A9EC59B019
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a1/e14d80-b5ed-4e7d-9649-694d89142ff9/1/W7DpZ5zNNnu20WgOs6QyqRBsvZc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a1/e14d80-b5ed-4e7d-9649-694d89142ff9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 15:02:42 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 201015
AS: 201540
IP: 185.71.192.0/22
IP: 185.109.60.0/22
IP: 185.109.72.0/22
IP: 185.109.80.0/22
IP: 185.111.8.0/21
IP: 185.111.64.0/22
IP: 185.111.136.0/22
IP: 185.112.168.0/22
IP: 185.120.192.0 -- 185.120.203.255
IP: 185.120.208.0/22
IP: 185.120.216.0/22
IP: 185.120.224.0/22
IP: 185.120.232.0/22
IP: 185.120.240.0/22
IP: 2a03:3b60::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 729814773785 (0xa9ec59b019)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 15:02:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bb0e9679ccd367bb6d1680eb3a432a9106cbd97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:31:45:31:1f:cd:b7:f0:4e:e5:14:3e:96:cb:
71:db:31:83:1d:d9:62:a9:34:a2:95:72:bd:2d:26:
2b:41:ed:c3:ab:6f:19:9f:e6:d4:a1:40:7d:c4:02:
51:58:da:4d:c9:41:b9:9a:56:56:8a:30:1b:74:1b:
3c:08:11:72:ab:7a:45:2e:4a:ca:67:9c:01:7a:6b:
26:fe:28:80:af:ef:08:63:3f:2f:62:b6:14:08:01:
84:90:4e:40:fb:2a:f7:cf:5d:48:03:b7:8a:1e:b7:
8d:eb:8f:b6:d7:a9:c2:06:93:0e:de:43:ea:5e:67:
b5:60:f6:f7:e3:88:53:cc:a1:bc:cb:cf:e9:57:b7:
32:1f:2f:fc:a3:26:f1:df:b4:9e:76:e9:5a:af:33:
ea:6b:ad:6a:c4:61:68:3a:f5:ff:7a:7f:ba:ec:e9:
a9:83:04:5c:02:ef:58:30:29:ec:68:29:1c:99:2d:
ca:06:69:fd:43:cd:cd:b4:ee:93:d9:55:de:65:c3:
95:ab:dd:7d:6c:b4:a1:8e:f7:1a:b2:45:2c:7b:26:
b6:cb:76:85:8d:3b:47:e2:b4:01:2a:5e:23:8c:b5:
d9:40:b5:f2:76:5e:13:ca:3b:47:a4:a5:87:16:0d:
b3:1b:4a:44:e6:a1:85:cf:a0:a6:4b:02:14:b5:a6:
ce:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:B0:E9:67:9C:CD:36:7B:B6:D1:68:0E:B3:A4:32:A9:10:6C:BD:97
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e14d80-b5ed-4e7d-9649-694d89142ff9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e14d80-b5ed-4e7d-9649-694d89142ff9/1/W7DpZ5zNNnu20WgOs6QyqRBsvZc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.192.0/22
185.109.60.0/22
185.109.72.0/22
185.109.80.0/22
185.111.8.0/21
185.111.64.0/22
185.111.136.0/22
185.112.168.0/22
185.120.192.0-185.120.203.255
185.120.208.0/22
185.120.216.0/22
185.120.224.0/22
185.120.232.0/22
185.120.240.0/22
IPv6:
2a03:3b60::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201015
201540
Signature Algorithm: sha256WithRSAEncryption
ab:0d:35:56:56:f5:30:e7:2b:5a:de:2e:c8:4b:49:f7:90:b1:
42:69:53:50:5f:64:04:06:4f:77:5c:2c:17:44:f3:e7:38:a8:
1e:f5:e9:9f:21:eb:01:d3:9d:c3:33:eb:5b:e9:82:dd:83:f4:
95:4b:04:c0:65:34:c1:4c:dd:3e:16:6d:1e:b8:dd:70:bf:2d:
6b:84:c1:ec:b5:70:9f:bd:5d:65:37:17:ff:24:1c:e2:af:93:
8b:4b:28:24:62:7b:2f:a8:76:e3:ea:8e:a1:ca:a9:27:75:8d:
6b:ee:f6:2b:3a:f6:7b:99:65:b4:88:20:6a:35:30:29:b2:df:
ba:ec:50:75:c3:bb:d1:19:50:a1:92:b0:03:c2:83:a5:2e:a5:
92:fa:14:6a:f7:b2:6d:2a:91:fb:ee:52:bc:d8:ba:ab:71:0b:
83:c3:ad:1a:68:47:39:10:d3:8b:a9:7e:d0:9a:49:bf:bc:fd:
6f:98:92:b1:a3:69:56:dd:5f:4b:e8:eb:65:ff:ec:fb:4b:fe:
fc:5c:39:85:a8:1a:44:91:ee:10:44:65:db:d1:6a:f0:a7:44:
18:26:95:15:bd:35:b5:5f:d7:3b:64:0f:23:32:d1:b8:19:ea:
63:51:53:3a:14:c0:89:d6:ef:04:4c:2b:96:73:c4:ed:0d:dc:
2a:b9:b7:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:34:04 2024 by rpki-client on console-ams.rpki-client.org