Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cIsEwT5DkQHcT6e_eCe0asmoNpU.cer
File: cIsEwT5DkQHcT6e_eCe0asmoNpU.cer (raw, json)
Hash identifier: mCEKTuMsjxKTfQSc4A9//m2uXYen3cgTZqMUZG82JpY=
Subject key identifier: 70:8B:04:C1:3E:43:91:01:DC:4F:A7:BF:78:27:B4:6A:C9:A8:36:95
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A73A38F332
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4c/6d09b3-3890-4424-9a1c-bbff55c4a341/1/cIsEwT5DkQHcT6e_eCe0asmoNpU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4c/6d09b3-3890-4424-9a1c-bbff55c4a341/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 12:57:40 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 93.177.68.0/22
IP: 2a10:5140::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 718236349234 (0xa73a38f332)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:57:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=708b04c13e439101dc4fa7bf7827b46ac9a83695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:71:73:6f:04:bf:3d:84:6b:c1:7b:5d:42:a3:
f0:b1:5d:14:f1:19:54:b3:dc:96:03:47:3a:c3:c8:
79:c1:51:ba:81:03:03:8f:9c:e1:07:61:fe:86:07:
c6:ba:cf:31:07:f9:45:2d:fd:a2:57:c2:da:b0:5c:
ca:54:a4:13:45:05:89:54:c4:28:df:f8:07:d5:9c:
a2:10:7b:a1:27:f8:a4:61:08:da:08:31:83:9e:17:
e1:6b:8f:8b:2c:98:24:ff:8b:31:7b:4c:da:b3:30:
cb:a1:c8:f9:cd:15:9f:82:fb:6c:f8:84:b2:9f:b6:
bb:ae:20:9e:52:10:47:68:28:06:25:bd:a5:c6:6f:
0a:af:86:bf:d6:3b:dd:9f:2f:29:78:a0:7a:d8:79:
ba:a8:22:8c:51:54:ad:cd:5e:4b:ec:c9:a7:52:3d:
f3:cf:b8:42:df:e0:2f:d5:af:29:fc:0c:11:a3:3a:
50:dc:45:d7:b2:3c:ef:bd:80:f3:8f:48:8b:fb:4f:
77:07:eb:ff:70:ef:0f:b9:ca:57:97:c4:48:c9:a4:
73:f4:8e:b1:08:5d:06:88:3e:03:64:e6:ea:b1:23:
35:f3:ea:de:af:aa:7a:87:3b:30:88:a3:db:ce:99:
5f:b1:a3:b5:c8:dd:d8:ac:f1:c5:76:d2:f1:8c:85:
4a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:8B:04:C1:3E:43:91:01:DC:4F:A7:BF:78:27:B4:6A:C9:A8:36:95
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/6d09b3-3890-4424-9a1c-bbff55c4a341/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/6d09b3-3890-4424-9a1c-bbff55c4a341/1/cIsEwT5DkQHcT6e_eCe0asmoNpU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.68.0/22
IPv6:
2a10:5140::/29
Signature Algorithm: sha256WithRSAEncryption
34:e8:66:19:8d:76:c1:e9:a0:6d:0d:27:49:f7:81:09:a2:8e:
b8:a5:19:2a:e9:da:c6:8b:9d:b7:d2:e8:85:0a:16:32:00:6f:
1c:97:d4:ee:52:58:e9:ac:3c:2e:39:d4:c3:cb:2f:c9:cb:3d:
44:b5:8c:62:55:67:be:8a:95:62:6a:0a:05:f2:0b:9c:f4:43:
a5:2e:dc:fb:2a:72:a7:59:2b:14:9f:69:f3:97:02:5d:1d:dd:
2c:37:95:98:b4:95:20:cf:de:77:ac:c5:c4:14:1d:bb:64:eb:
eb:5e:b1:9b:14:a7:2f:94:9a:7c:85:c8:f9:d2:f7:bc:28:de:
38:ba:21:36:35:b0:da:cb:12:55:12:33:a5:5f:55:7f:4e:1e:
1a:93:60:fc:13:eb:e0:43:3a:8b:ae:76:6f:14:dc:4b:23:39:
05:cf:c6:f4:e7:98:ba:8e:32:a7:09:8c:04:d4:7d:c6:14:df:
82:41:f1:a4:68:e0:e5:b3:7d:98:d4:06:ec:59:83:d7:73:be:
70:e6:ea:6f:0a:13:7f:35:a3:8e:eb:f3:71:03:40:a8:aa:c1:
73:e2:31:c7:f5:7a:51:73:25:44:f9:59:bd:0c:6d:10:72:22:
5f:9b:f1:3b:b6:fa:40:13:98:e9:d7:ba:94:c1:0b:a2:b0:a6:
7a:aa:be:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:51:26 2025 by rpki-client