Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZQl0VqksHiRNhs-miqILdSzugiA.cer
File: ZQl0VqksHiRNhs-miqILdSzugiA.cer (raw, json)
Hash identifier: c4vTCAc+fCK1wUkQNAi9jAlQiqndaGQrjs15cCBMF4E=
Subject key identifier: 65:09:74:56:A9:2C:1E:24:4D:86:CF:A6:8A:A2:0B:75:2C:EE:82:20
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856AF538DF626E72D2DB285E3244E74D03
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4b/835bc1-98ad-4421-8218-42d54d0f5f5e/1/ZQl0VqksHiRNhs-miqILdSzugiA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4b/835bc1-98ad-4421-8218-42d54d0f5f5e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 01:32:13 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 203761
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6a:f5:38:df:62:6e:72:d2:db:28:5e:32:44:e7:4d:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:32:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65097456a92c1e244d86cfa68aa20b752cee8220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:de:3b:b3:76:bd:04:58:92:3b:22:26:6e:f3:
65:f1:ed:b3:7a:cd:8b:75:c4:01:d3:93:38:82:7e:
6d:81:26:46:7c:15:29:52:38:56:3c:4f:4d:bc:11:
ac:7b:26:e0:d2:4f:6f:3e:cb:c1:e2:f0:e0:02:aa:
2c:53:58:2b:4a:d1:49:bd:4e:3e:38:37:e1:b7:5c:
30:f4:9c:8f:2c:fa:dd:3a:3d:12:0c:3b:e0:3b:8e:
3e:6f:72:41:6a:76:0b:65:96:9f:83:a3:f5:21:19:
09:00:c8:2e:60:e6:3a:a4:70:59:ef:3f:ff:2c:90:
6e:17:e5:9e:ca:af:59:a9:c0:d0:e1:14:56:5d:49:
99:b9:21:b5:cf:02:21:b3:f1:20:83:86:77:d6:57:
16:bc:c8:a6:a9:a3:0f:d8:2e:13:cb:10:7d:1f:91:
59:39:fd:45:9a:9d:5c:ac:a0:ff:de:9a:be:29:f3:
79:97:41:23:fd:f3:e5:ff:09:7a:01:e4:fb:96:31:
b9:70:9b:d8:f3:89:99:90:3f:83:fc:f4:34:07:4c:
8d:4a:bf:e2:1e:0c:7f:85:24:60:a0:38:eb:ce:68:
b9:b0:b9:f5:b9:90:a3:db:71:da:15:78:16:b9:d9:
48:59:59:af:e6:f3:f4:dd:e8:d5:43:f1:e8:8f:2a:
b8:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:09:74:56:A9:2C:1E:24:4D:86:CF:A6:8A:A2:0B:75:2C:EE:82:20
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/835bc1-98ad-4421-8218-42d54d0f5f5e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/835bc1-98ad-4421-8218-42d54d0f5f5e/1/ZQl0VqksHiRNhs-miqILdSzugiA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203761
Signature Algorithm: sha256WithRSAEncryption
72:1a:33:d3:c7:53:5c:43:d4:f4:a4:5a:53:76:2b:03:53:7e:
91:47:2d:15:a7:db:cf:90:81:60:79:85:ac:9d:45:f7:e9:c4:
69:f9:0e:09:74:c4:ff:a8:d2:b2:b5:f9:f1:56:65:84:c6:26:
d6:e8:94:33:2b:26:dd:5f:e9:5d:be:25:b1:7c:d2:ed:da:88:
83:44:5a:45:b9:91:77:12:00:52:6b:92:7a:57:59:45:ec:91:
e1:bd:87:12:74:ef:ae:ac:6c:59:61:3c:02:7f:74:89:7c:ea:
4c:2b:2b:00:28:4d:43:f1:08:54:eb:f5:13:4d:96:3e:78:41:
c4:72:b2:54:c8:79:d3:73:ee:32:be:a0:e7:7c:d1:d5:cd:65:
51:32:cf:51:e1:a0:62:c1:8d:8c:e5:39:eb:27:16:a0:b1:17:
a5:87:96:a4:71:9e:3b:ba:c1:bd:04:4e:4a:4a:39:51:e0:c7:
f6:92:70:19:91:47:89:0b:2c:f9:82:b6:ca:89:18:ef:98:de:
db:b5:a5:12:c4:2a:b1:ec:6a:6d:ee:d8:21:7a:b4:6b:6b:38:
b7:8b:57:ab:fd:9e:23:01:e0:38:43:c7:57:d0:0f:0e:93:ab:
5c:db:c0:ed:c0:bb:76:3a:d4:96:03:90:d4:18:28:7e:13:40:
ad:70:77:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 21:15:43 2025 by rpki-client