Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dDoqHUOColrD7q_0HUA_TYWeUv4.cer
File: dDoqHUOColrD7q_0HUA_TYWeUv4.cer (raw, json)
Hash identifier: KNVQv+vhWawACcIkHdXYGN0ZdhDEwWRQa3vd7UCr1NU=
Subject key identifier: 74:3A:2A:1D:43:82:A2:5A:C3:EE:AF:F4:1D:40:3F:4D:85:9E:52:FE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A1E42AEFD9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/69/851ef6-97b0-463b-8cb3-2d03e4b15376/1/dDoqHUOColrD7q_0HUA_TYWeUv4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/69/851ef6-97b0-463b-8cb3-2d03e4b15376/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 08:02:09 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 20904
IP: 37.35.80.0/21
IP: 46.254.208.0/21
IP: 80.75.96.0/20
IP: 84.240.64.0/18
IP: 93.174.192.0/21
IP: 149.126.176.0/21
IP: 185.25.76.0/22
IP: 185.67.80.0/22
IP: 188.64.0.0/21
IP: 2a00:1a58::/32
IP: 2a00:74a0::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 695317753817 (0xa1e42aefd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=743a2a1d4382a25ac3eeaff41d403f4d859e52fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fc:f6:2e:b8:39:d1:c9:d8:45:16:56:aa:a8:
15:0a:43:b6:12:bd:23:40:fb:b2:9f:66:dd:98:3c:
6b:42:4a:13:50:5d:fe:ae:32:da:0a:5e:bd:5c:1a:
aa:39:18:6b:10:c5:be:12:0d:82:04:6a:ea:91:af:
30:56:2e:b6:23:28:78:95:e2:ad:3b:5a:01:10:4a:
f7:59:2e:04:60:3f:fe:72:ac:55:2f:5c:3f:d0:75:
d8:4c:d7:71:4b:b0:61:2a:7a:2a:59:34:1c:4b:67:
04:74:95:ba:bf:ce:f4:49:59:fd:da:6e:05:a6:e9:
2b:77:fe:63:19:20:11:76:a0:93:12:9f:02:f2:f6:
23:29:c5:8b:de:a3:1a:02:4c:8b:99:f0:e1:c3:3e:
6d:9d:e0:0a:1a:64:17:c2:4d:78:2b:fe:9e:ea:b7:
6c:22:1b:fa:c7:90:8d:46:a7:6d:ec:62:00:b3:8c:
73:a6:a6:74:bc:49:b0:eb:a0:02:b3:07:05:01:d2:
3d:93:ef:42:07:84:4f:74:17:d7:08:a0:0a:11:94:
25:a9:f8:95:50:02:0b:cb:fe:a2:3a:a7:96:63:71:
a2:41:0c:8e:34:7d:24:81:8c:c6:e8:a9:ba:5a:71:
d1:1d:02:2a:4d:15:55:33:7f:b6:4a:43:73:d0:7c:
bc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:3A:2A:1D:43:82:A2:5A:C3:EE:AF:F4:1D:40:3F:4D:85:9E:52:FE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/851ef6-97b0-463b-8cb3-2d03e4b15376/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/851ef6-97b0-463b-8cb3-2d03e4b15376/1/dDoqHUOColrD7q_0HUA_TYWeUv4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.80.0/21
46.254.208.0/21
80.75.96.0/20
84.240.64.0/18
93.174.192.0/21
149.126.176.0/21
185.25.76.0/22
185.67.80.0/22
188.64.0.0/21
IPv6:
2a00:1a58::/32
2a00:74a0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
20904
Signature Algorithm: sha256WithRSAEncryption
4a:37:a0:64:5c:a5:a2:f1:2a:89:f8:fb:c0:1d:07:36:a4:9b:
e2:15:1b:7d:b0:25:b3:4f:f4:2b:1c:5c:c7:3d:6a:6b:ed:f7:
c1:42:c2:ff:01:d6:49:68:f2:79:58:bd:95:c0:73:29:cc:2a:
04:8a:1a:7d:7e:cc:e3:0a:cd:88:ee:f4:e2:9c:ad:3d:47:5c:
77:6e:fa:33:61:13:d6:66:e3:97:31:57:9f:1a:a1:1f:70:52:
88:d9:0a:cb:26:71:e3:ae:81:c8:cd:cb:db:6e:f0:57:97:f8:
f6:b5:9f:82:d0:3f:57:c2:52:97:eb:0e:83:d8:4b:c4:fc:01:
b9:9b:25:65:0d:98:ea:8e:dd:bb:6c:95:0a:ae:a1:55:60:f0:
ed:d2:c8:8a:4b:c9:3a:5f:e6:c9:45:eb:54:10:4a:d7:62:46:
0d:fd:68:1c:ff:ad:45:80:82:b5:00:33:ce:dc:b3:4d:44:95:
ba:51:30:bb:11:5a:af:e3:21:a7:4f:2d:65:10:cf:71:6b:a5:
58:ff:46:77:02:6f:eb:6d:2b:53:6a:1a:35:f9:8c:9a:9d:6f:
cf:ac:9d:e1:18:f4:a8:b2:7b:f2:82:d3:27:df:cf:37:0c:20:
5b:bf:51:f1:d8:05:24:2b:62:18:c3:09:ee:ae:a5:dc:5f:eb:
6d:d9:43:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:16 2024 by rpki-client on console-ams.rpki-client.org