Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZUkPkOnJ9vukyYKylec0FBlUDck.cer
File: ZUkPkOnJ9vukyYKylec0FBlUDck.cer (raw, json)
Hash identifier: GVKMw7ycJpuchk2SN+Fh9Gy2iV37iY5JTHcUGTcaJNM=
Subject key identifier: 65:49:0F:90:E9:C9:F6:FB:A4:C9:82:B2:95:E7:34:14:19:54:0D:C9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 9CEE73B1EA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/74/55dd84-8ba7-4b95-9db8-bdb24cbefc7f/1/ZUkPkOnJ9vukyYKylec0FBlUDck.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/74/55dd84-8ba7-4b95-9db8-bdb24cbefc7f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 03:56:29 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 185.88.10.0/24
IP: 185.234.92.0/22
IP: 2a07:40::/29
IP: 2a0d:f00::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 674015457770 (0x9cee73b1ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65490f90e9c9f6fba4c982b295e7341419540dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:46:bd:af:61:3c:99:dc:49:10:c2:82:45:b7:
29:b3:d6:19:44:43:06:f0:eb:9f:06:c7:a3:4d:c0:
21:77:fe:00:b4:59:94:d2:25:8b:cf:7d:a1:ba:0e:
82:2a:91:2e:66:b3:2a:bc:3e:19:99:70:78:bd:d3:
e7:8c:46:bf:e6:f4:75:ab:a9:a3:3d:bf:fc:18:90:
40:51:e0:33:0a:4c:dc:52:2c:d9:62:8d:1f:57:cc:
22:13:58:75:60:73:93:40:7e:fb:4c:ec:80:4d:51:
57:09:6e:05:0e:33:c9:7f:5d:9e:90:2b:9b:15:fd:
7b:1a:1a:28:e2:bc:82:bb:27:f3:74:79:3f:c2:60:
3f:31:e8:7d:6d:4b:1c:34:ce:44:b3:62:a0:ae:7f:
e6:f4:43:89:fd:b9:63:26:48:27:53:3b:38:1f:32:
54:28:c2:f5:79:89:3e:4d:b8:20:2f:dd:eb:f9:cf:
47:c4:88:a3:c1:d6:06:ff:2e:95:66:2c:91:62:44:
34:c2:99:88:59:83:96:6c:94:a6:8e:86:25:85:e7:
01:31:a4:1e:b7:d2:31:b3:67:63:0a:7b:cc:ce:be:
f6:f6:dd:1f:89:13:7f:a1:70:9a:42:86:03:4a:bb:
95:2e:c3:0a:d4:0c:a8:c9:c9:c0:35:35:0d:cb:09:
94:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:49:0F:90:E9:C9:F6:FB:A4:C9:82:B2:95:E7:34:14:19:54:0D:C9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/55dd84-8ba7-4b95-9db8-bdb24cbefc7f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/55dd84-8ba7-4b95-9db8-bdb24cbefc7f/1/ZUkPkOnJ9vukyYKylec0FBlUDck.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.10.0/24
185.234.92.0/22
IPv6:
2a07:40::/29
2a0d:f00::/29
Signature Algorithm: sha256WithRSAEncryption
42:a2:1d:78:3a:d1:2d:72:a3:f8:6c:1b:1d:92:50:9b:24:f5:
33:35:48:a0:46:fa:cf:27:52:02:98:1c:a2:93:a4:41:84:82:
fe:fe:ab:21:07:3b:a2:e6:94:43:b0:1b:46:1a:c3:40:44:75:
fd:e5:91:22:80:40:46:b8:a7:4e:eb:39:20:fb:67:a5:74:83:
b4:a1:83:01:1c:e2:ba:c1:8b:c0:e1:ae:89:c0:ae:12:d6:81:
d5:5b:6a:43:7f:60:de:82:68:19:f4:2f:42:d2:f5:43:85:1f:
5d:65:07:56:b6:d3:e7:d0:bf:bd:d0:53:75:d7:23:08:b4:7b:
24:8e:70:fc:fe:65:fd:65:23:6f:8f:0e:46:68:5f:c1:d5:0d:
77:95:ab:b8:49:9c:48:1f:0f:d0:b8:39:cf:de:66:6a:33:9d:
1b:c3:d4:6e:4d:a9:7a:d5:50:9b:a7:e4:b4:41:a8:08:39:b2:
ec:09:b8:bc:a2:04:97:33:5b:fd:5b:75:f0:d4:fc:55:10:1a:
f0:30:92:73:9b:f0:8e:74:8e:57:56:8d:6a:72:a7:82:59:c7:
4d:39:da:a6:43:ed:af:50:0a:52:22:ca:2c:1b:85:48:3e:99:
90:a9:28:52:62:16:75:1c:63:1c:b1:88:dd:96:18:87:35:6d:
09:db:28:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:16 2024 by rpki-client on console-ams.rpki-client.org