Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XTzPwStuIbKL55JAmmgAx5Gq-YA.cer
File: XTzPwStuIbKL55JAmmgAx5Gq-YA.cer (raw, json)
Hash identifier: EtCZcffPRP9s/mzZEL7WGeqewVt19rwuwVnBgsk39bI=
Subject key identifier: 5D:3C:CF:C1:2B:6E:21:B2:8B:E7:92:40:9A:68:00:C7:91:AA:F9:80
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: B0F7D73B66
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/62/015cac-020e-41e8-b735-c4ccb8c24629/1/XTzPwStuIbKL55JAmmgAx5Gq-YA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/62/015cac-020e-41e8-b735-c4ccb8c24629/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 28 Apr 2022 12:41:01 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 202855
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 760072321894 (0xb0f7d73b66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 28 12:41:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d3ccfc12b6e21b28be792409a6800c791aaf980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cf:a7:39:e6:f4:cf:42:03:94:a8:e2:0d:77:
10:e5:82:80:11:04:92:73:83:08:a1:82:c0:a4:c1:
0d:ec:fa:3e:c1:ae:60:f2:16:d7:91:87:8f:68:d8:
44:89:36:98:4e:27:4e:13:de:73:10:8c:51:d7:b4:
b9:6b:03:96:87:b8:74:e7:cd:68:50:ab:e8:42:1b:
77:2f:ff:7a:04:3d:ec:e7:3c:54:f4:8c:d1:7a:a0:
5e:f4:e8:3c:80:cf:3e:dc:08:63:43:fd:d5:44:88:
e9:04:d1:84:63:7c:dc:14:ce:c0:ac:c9:c5:49:0d:
16:c2:91:83:8b:cc:87:8d:34:56:9c:b1:21:c4:e7:
bf:46:fd:51:23:5b:ba:e4:93:f7:53:67:a4:cd:39:
52:90:2c:9b:1c:79:19:c2:bb:eb:d7:63:52:f0:c0:
2c:97:a2:cb:d2:81:23:d4:c2:a9:6b:f7:dd:a3:b6:
b7:a3:6e:c8:25:dc:e6:eb:6a:e4:40:ff:3b:d6:c8:
b9:d4:d4:21:fe:cf:b7:0a:e0:7c:fe:15:01:5c:10:
3d:3b:3c:9c:bd:84:04:c4:fa:a2:7d:58:c8:c6:0c:
c5:fa:38:c4:e1:5f:b7:9b:34:61:39:3a:93:4d:07:
c0:1a:47:42:7b:31:37:4c:10:3b:2f:50:ad:51:99:
c4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:3C:CF:C1:2B:6E:21:B2:8B:E7:92:40:9A:68:00:C7:91:AA:F9:80
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/015cac-020e-41e8-b735-c4ccb8c24629/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/015cac-020e-41e8-b735-c4ccb8c24629/1/XTzPwStuIbKL55JAmmgAx5Gq-YA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202855
Signature Algorithm: sha256WithRSAEncryption
7b:93:e8:88:cf:cf:5b:50:97:80:d3:75:e8:13:1a:9c:a7:10:
a8:c8:36:89:f7:70:b6:7c:8e:93:d8:08:15:c0:fd:9a:55:9e:
88:3e:52:de:dc:11:89:c2:98:a8:56:56:0d:92:6f:b6:a0:7d:
21:54:08:de:4c:11:c5:f3:fd:bf:f4:03:a7:46:98:d2:01:db:
e7:0e:f5:8c:84:ec:93:a5:7e:d8:84:ae:9f:44:51:fb:59:ab:
33:38:08:54:33:7b:a8:0b:4e:f3:af:39:4a:32:de:17:e0:2f:
50:68:52:d1:96:b8:e5:22:42:e2:e3:50:c8:8c:d6:ff:a5:bd:
d9:42:f1:46:47:da:fe:53:c0:4c:6f:4d:70:7b:99:ca:cc:2e:
ed:0b:43:e7:92:92:95:55:d0:ab:e0:e3:23:b8:13:15:bf:b0:
5e:74:6a:a1:ff:ca:80:76:ca:ff:4c:7b:a5:42:19:19:84:52:
b2:1c:8d:43:09:66:8b:78:7c:9e:99:42:71:08:47:c0:4b:11:
de:9f:24:a1:6a:3d:d2:ff:12:70:84:3b:97:52:4e:07:53:65:
76:2f:7f:2b:aa:07:d5:f6:b3:3c:a3:f8:61:62:33:51:b1:52:
f4:9a:93:e6:18:c3:8c:cb:a1:4a:57:5d:62:81:34:98:d9:35:
94:ff:2d:09
-----BEGIN CERTIFICATE-----
MIIFZzCCBE+gAwIBAgIGALD31ztmMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMT
KDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRkZGU2NjkwHhcNMjIw
NDI4MTI0MTAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg1ZDNjY2ZjMTJi
NmUyMWIyOGJlNzkyNDA5YTY4MDBjNzkxYWFmOTgwMIIBIjANBgkqhkiG9w0BAQEF
AAOCAQ8AMIIBCgKCAQEAyM+nOeb0z0IDlKjiDXcQ5YKAEQSSc4MIoYLApMEN7Po+
wa5g8hbXkYePaNhEiTaYTidOE95zEIxR17S5awOWh7h0581oUKvoQht3L/96BD3s
5zxU9IzReqBe9Og8gM8+3AhjQ/3VRIjpBNGEY3zcFM7ArMnFSQ0WwpGDi8yHjTRW
nLEhxOe/Rv1RI1u65JP3U2ekzTlSkCybHHkZwrvr12NS8MAsl6LL0oEj1MKpa/fd
o7a3o27IJdzm62rkQP871si51NQh/s+3CuB8/hUBXBA9OzycvYQExPqifVjIxgzF
+jjE4V+3mzRhOTqTTQfAGkdCezE3TBA7L1CtUZnEjwIDAQABo4ICfzCCAnswHQYD
VR0OBBYEFF08z8ErbiGyi+eSQJpoAMeRqvmAMB8GA1UdIwQYMBaAFCqUqN1VSucB
ByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMGAG
CCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jZXIw
ggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYyLzAxNWNhYy0wMjBlLTQxZTgt
YjczNS1jNGNjYjhjMjQ2MjkvMS8wfAYIKwYBBQUHMAqGcHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIvMDE1Y2FjLTAyMGUtNDFlOC1i
NzM1LWM0Y2NiOGMyNDYyOS8xL1hUelB3U3R1SWJLTDU1SkFtbWdBeDVHcS1ZQS5t
ZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5ldC9ub3RpZmljYXRp
b24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMyUUhWVjNkNW1rLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUFBwEIAQH/BAswCaAH
MAUCAwMYZzANBgkqhkiG9w0BAQsFAAOCAQEAe5PoiM/PW1CXgNN16BManKcQqMg2
ifdwtnyOk9gIFcD9mlWeiD5S3twRicKYqFZWDZJvtqB9IVQI3kwRxfP9v/QDp0aY
0gHb5w71jITsk6V+2ISun0RR+1mrMzgIVDN7qAtO8685SjLeF+AvUGhS0Za45SJC
4uNQyIzW/6W92ULxRkfa/lPATG9NcHuZyswu7QtD55KSlVXQq+DjI7gTFb+wXnRq
of/KgHbK/0x7pUIZGYRSshyNQwlmi3h8nplCcQhHwEsR3p8koWo90v8ScIQ7l1JO
B1Nldi9/K6oH1fazPKP4YWIzUbFS9JqT5hjDjMuhSlddYoE0mNk1lP8tCQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 06:45:19 2025 by rpki-client