Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/baL-1Icpl_4M4ECNMrvC0BVEneI.cer
File: baL-1Icpl_4M4ECNMrvC0BVEneI.cer (raw, json)
Hash identifier: P+3L/E/OzuYfTJEUCeb8kg/Ohtjc6wrzStBMCZRi17E=
Subject key identifier: 6D:A2:FE:D4:87:29:97:FE:0C:E0:40:8D:32:BB:C2:D0:15:44:9D:E2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A96C44B070
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/11/6b1404-b146-4061-8327-1e0c5c0afa5f/1/baL-1Icpl_4M4ECNMrvC0BVEneI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/11/6b1404-b146-4061-8327-1e0c5c0afa5f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 14:57:12 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 91.198.141.0/24
IP: 91.198.147.0/24
IP: 91.198.158.0/24
IP: 91.198.167.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 727665913968 (0xa96c44b070)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6da2fed4872997fe0ce0408d32bbc2d015449de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:26:2e:a1:d4:1f:ec:01:30:89:d7:fd:37:92:
cf:3c:a4:5d:29:ad:80:35:47:0a:cd:fd:28:9e:75:
1c:93:1b:a9:31:5e:dc:d8:f6:b6:05:0b:52:18:7a:
d2:18:74:39:09:9a:3e:fe:b4:7d:c0:86:f0:26:3b:
a5:21:53:2b:aa:2c:70:e9:53:6b:d2:db:34:65:d6:
45:10:09:24:3e:cb:70:37:dd:9c:3b:7a:0b:95:a7:
99:db:08:c1:b5:d5:70:bc:17:0b:34:b7:51:e9:59:
6e:8c:c4:2a:ad:4d:21:44:80:36:00:83:b0:ce:eb:
a9:7a:a1:a9:13:e9:29:b4:23:45:8a:84:33:ae:cf:
48:fe:fd:8e:1f:1c:72:03:04:d6:72:b9:03:27:7d:
b0:a5:99:9d:7c:c5:c4:cb:2d:62:03:e5:67:e3:85:
ba:46:88:3c:7b:86:ed:ac:f7:0c:92:39:3b:72:66:
ee:a5:d2:0a:cf:81:45:42:03:03:a8:31:53:43:43:
34:f3:4e:23:49:ea:95:cd:d7:14:d1:e9:e2:e6:a8:
94:7e:e7:71:1a:13:5d:56:c1:bd:ad:3a:36:ae:60:
aa:8b:7b:09:d3:72:4d:45:25:19:39:a4:05:62:5c:
a2:3c:4a:6a:a0:55:a7:6c:9f:d2:bc:72:8e:75:8e:
9b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A2:FE:D4:87:29:97:FE:0C:E0:40:8D:32:BB:C2:D0:15:44:9D:E2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6b1404-b146-4061-8327-1e0c5c0afa5f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6b1404-b146-4061-8327-1e0c5c0afa5f/1/baL-1Icpl_4M4ECNMrvC0BVEneI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.141.0/24
91.198.147.0/24
91.198.158.0/24
91.198.167.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:ba:01:c2:7e:82:7e:7c:58:c4:a1:2d:7b:53:99:f1:ec:41:
1e:6a:4b:db:d8:36:19:45:c2:fb:45:57:07:4c:c2:24:cf:c8:
b5:17:fe:92:ba:6e:5a:76:33:a9:56:76:0e:65:65:8b:21:64:
dc:4f:a2:ac:ae:7c:d2:ed:67:8f:58:2f:f6:d8:c7:3f:57:00:
31:fa:93:ff:cd:81:8f:08:cb:c8:99:00:b2:6b:10:a8:78:c7:
4b:dd:dd:2c:d5:a0:a6:d4:71:3a:10:f6:0c:b2:5c:1b:9a:b7:
cc:d1:cc:c2:bd:5a:dd:7c:2e:5d:7e:7b:2c:95:35:df:5d:7a:
cd:e7:92:85:b3:8e:e5:6a:b1:ab:c1:7d:2a:3d:92:18:31:a0:
3a:98:43:15:2d:01:ac:72:75:a6:33:73:7c:16:28:b6:48:8a:
43:08:db:28:13:c3:9f:c9:b1:63:f6:e7:74:34:63:c8:83:9a:
95:eb:e2:e7:c8:8a:4a:7a:05:11:43:8b:3d:3d:7a:96:9c:b3:
2e:02:33:2d:44:24:84:fa:31:2e:0f:47:f6:7b:bc:e4:58:b5:
64:ed:79:15:da:c3:4a:4a:62:77:e1:16:e2:b6:33:bb:f1:4a:
65:69:9f:d0:c5:70:ab:92:32:84:6f:5e:8a:96:ed:67:ad:8f:
1e:28:59:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:33 2024 by rpki-client on console-fra.rpki-client.org