Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bS3TVw5X05nUpu8qUTebzDz_nd8.cer
File: bS3TVw5X05nUpu8qUTebzDz_nd8.cer (raw, json)
Hash identifier: mdkhueT5zJgl+7HP7lxXaddqyWxe7k7OHHWa8Z9Aeu0=
Subject key identifier: 6D:2D:D3:57:0E:57:D3:99:D4:A6:EF:2A:51:37:9B:CC:3C:FF:9D:DF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0183F5738A6426E3316BABAAEC3B72B12E34
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e7/745d47-a2f1-4e79-bb4a-2fcb511851b1/1/bS3TVw5X05nUpu8qUTebzDz_nd8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e7/745d47-a2f1-4e79-bb4a-2fcb511851b1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 20 Oct 2022 12:52:13 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 91.224.242.0/23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f5:73:8a:64:26:e3:31:6b:ab:aa:ec:3b:72:b1:2e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 20 12:52:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d2dd3570e57d399d4a6ef2a51379bcc3cff9ddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c1:30:3f:cd:b0:ab:ec:99:e3:e7:c0:b2:ef:
7b:72:78:25:85:5a:73:2d:f2:cb:cf:89:36:8f:dc:
29:3c:74:45:dd:12:42:bf:8c:a3:ca:56:58:7d:b8:
73:2c:e7:18:64:c4:19:92:c3:71:a3:d7:89:d4:ef:
b3:be:1e:ee:95:2b:54:a8:b3:f2:28:d2:8f:ac:f1:
62:c1:91:d4:e9:9b:40:1f:ae:2a:f7:83:2f:3e:8f:
98:39:6c:16:08:21:95:15:62:3a:d1:73:50:1d:8a:
92:c7:15:d4:5d:f8:a7:62:e3:9d:5b:bf:a0:5f:6e:
87:fc:76:cd:71:17:af:c2:0f:f6:82:55:d2:fa:88:
65:bf:72:0f:2c:82:de:7e:1f:72:b2:91:24:56:4e:
c4:01:7d:07:a0:14:34:58:ec:82:0d:d4:28:f4:cb:
1d:26:b8:c5:bb:74:cf:67:f4:a4:7e:a2:40:08:e2:
49:87:ad:de:de:b7:7f:7d:1e:66:e1:8b:a6:af:44:
d5:48:12:09:17:61:8c:e3:63:c7:25:4d:d4:f5:fe:
4b:a4:bf:4b:d0:a4:72:0d:cc:a3:87:6a:92:58:04:
5a:f3:9d:04:5f:b4:13:40:44:44:b0:0d:54:a5:fc:
02:4d:09:bc:e3:f2:4c:e5:07:cb:c2:08:18:bb:6a:
ef:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:2D:D3:57:0E:57:D3:99:D4:A6:EF:2A:51:37:9B:CC:3C:FF:9D:DF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/745d47-a2f1-4e79-bb4a-2fcb511851b1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/745d47-a2f1-4e79-bb4a-2fcb511851b1/1/bS3TVw5X05nUpu8qUTebzDz_nd8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.242.0/23
Signature Algorithm: sha256WithRSAEncryption
51:34:7a:8e:76:43:59:dc:dc:56:7a:e5:89:87:a9:97:78:d3:
c8:ff:fb:d8:45:7b:ce:24:d4:be:5b:ce:60:92:c3:22:8a:4b:
9f:54:93:b1:e2:5e:e2:71:0c:31:5c:37:c5:0c:b0:dd:f2:68:
d4:42:29:29:36:4a:0c:d5:8a:45:41:67:9f:c3:1e:cb:e0:8b:
49:5e:c6:ea:78:1b:1d:3a:5a:5c:76:67:f4:47:fe:87:92:a8:
46:be:b2:f0:ec:e5:6e:e5:85:29:c8:0a:cf:ba:85:24:00:de:
cf:51:7c:e0:8e:68:96:29:53:04:e7:97:f4:40:3a:02:d1:4f:
f0:b9:e9:e7:4b:d7:24:95:a6:64:85:d4:4d:3a:fa:4b:17:33:
02:26:8b:88:c9:e9:4c:97:ff:1c:e7:ff:db:14:eb:a2:e8:80:
4b:44:f4:f1:55:3b:b3:0e:e0:c5:15:9f:50:4e:75:6a:19:c7:
65:d7:ed:c0:c1:70:9c:4d:7c:e4:d3:02:f5:3c:b9:1d:5e:bb:
4c:49:33:a9:00:f1:b8:f4:f7:da:7b:2f:c5:66:63:98:15:35:
2c:ab:c8:90:d5:60:e5:e7:0d:ed:3d:09:3b:ab:7c:58:12:dc:
bb:73:49:1c:49:58:ed:f5:b4:cb:5a:03:f1:1e:30:42:a1:8f:
87:96:c9:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:33:03 2025 by rpki-client