Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dMF8P0X8We5mdfEJFOw6nmi3I48.cer
File: dMF8P0X8We5mdfEJFOw6nmi3I48.cer (raw, json)
Hash identifier: U5F0O/2L8UIDOZyUe+T/+t9hoyls840DPI7ezmolkNA=
Subject key identifier: 74:C1:7C:3F:45:FC:59:EE:66:75:F1:09:14:EC:3A:9E:68:B7:23:8F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: AB0A03B1D8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/dMF8P0X8We5mdfEJFOw6nmi3I48.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 16:04:53 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 86.111.228.0/23
IP: 91.194.192.0/22
IP: 94.131.192.0/19
IP: 185.111.92.0/22
IP: 185.130.52.0/22
IP: 185.139.52.0/22
IP: 185.248.168.0/22
IP: 192.162.196.0/22
IP: 193.24.212.0/22
IP: 193.134.253.0/24
IP: 193.135.15.0/24
IP: 193.135.24.0/24
IP: 193.135.101.0/24
IP: 195.49.128.0/22
IP: 2a06:5cc0::/29
IP: 2a07:1340::/29
IP: 2a07:9240::/29
IP: 2a0b:7fc0::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 734607421912 (0xab0a03b1d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:04:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74c17c3f45fc59ee6675f10914ec3a9e68b7238f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:11:bd:91:56:dd:0d:ca:f4:d2:d2:e4:8c:fa:
b3:c1:be:87:8b:3d:e2:ee:55:48:d0:88:7a:7c:a8:
0f:48:d9:a5:70:cf:5c:52:d4:31:eb:48:77:42:07:
0e:68:6a:60:62:7a:2e:ad:d9:a7:30:bc:b3:aa:c1:
17:4a:8e:44:2c:d1:37:b4:a9:96:ad:63:1d:52:37:
12:b1:5c:75:2c:1d:b8:44:cc:d4:30:53:9a:08:fe:
8a:d4:2e:58:56:b0:2b:b7:10:56:e0:d7:c7:6c:ec:
c7:7c:de:60:d5:e6:69:da:38:28:45:fa:29:40:86:
5f:99:98:7d:9d:b9:bb:7f:f3:1d:7d:24:70:b2:6a:
c9:9a:ff:bc:2c:29:d6:6d:65:ca:5b:76:eb:fe:42:
17:37:fe:c1:d0:4c:f3:e4:ba:d1:1a:78:45:f3:ef:
84:9e:24:ce:d5:4c:dd:57:a0:9d:ef:32:c6:a4:11:
72:7c:c6:74:02:91:33:9b:94:82:cc:0c:fd:33:b7:
b7:1a:66:18:45:94:bd:af:62:93:76:01:b0:28:0a:
9e:5f:f0:32:ba:dd:e5:d0:76:37:43:13:ea:b4:55:
63:a1:56:d1:b9:bf:93:cc:ca:ed:90:1d:6d:b7:ff:
b9:06:d0:83:b6:7d:37:98:c7:7c:23:36:b3:2c:d2:
a3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C1:7C:3F:45:FC:59:EE:66:75:F1:09:14:EC:3A:9E:68:B7:23:8F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/c2cfaf-b1ae-46d8-92a7-d0174a7138a4/1/dMF8P0X8We5mdfEJFOw6nmi3I48.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.228.0/23
91.194.192.0/22
94.131.192.0/19
185.111.92.0/22
185.130.52.0/22
185.139.52.0/22
185.248.168.0/22
192.162.196.0/22
193.24.212.0/22
193.134.253.0/24
193.135.15.0/24
193.135.24.0/24
193.135.101.0/24
195.49.128.0/22
IPv6:
2a06:5cc0::/29
2a07:1340::/29
2a07:9240::/29
2a0b:7fc0::/29
Signature Algorithm: sha256WithRSAEncryption
a3:cf:43:4e:00:dc:99:73:eb:a7:64:b7:a5:59:16:d1:a6:a8:
b5:7b:30:f2:c6:4e:ac:e0:0c:79:a3:7d:6e:2e:15:a2:ff:71:
03:72:70:4c:ba:fd:a5:00:51:06:29:6f:9b:75:61:f4:eb:a4:
6e:97:7a:fe:a6:8c:d7:b0:42:46:4a:83:e8:e7:25:a3:23:a2:
7a:05:39:41:6b:49:96:a8:a0:77:46:90:5b:fb:50:ec:7f:8d:
1c:53:57:49:46:c4:81:e2:c3:2f:4d:8e:81:c1:fd:b3:26:c7:
a6:27:9d:95:55:8a:d6:17:19:1b:73:6b:4f:67:a5:00:a2:81:
11:9d:1d:de:6c:f2:0a:1e:e3:db:48:2f:81:1b:67:ee:d4:78:
e5:7c:8c:9f:db:a9:d2:96:c3:14:13:e0:0c:29:69:2e:d1:cd:
38:c1:4a:0c:d6:ea:4b:cc:70:7f:72:02:84:dc:28:bc:be:dc:
29:f7:4d:ec:8f:25:ae:54:57:ef:73:aa:4e:cf:1a:e9:44:e4:
31:84:de:cd:52:95:5f:04:f1:0e:a6:88:30:fb:05:e3:72:ca:
88:11:1b:c3:8c:c8:03:9d:9d:d9:ff:57:0e:e3:6b:63:e2:69:
0b:8b:f4:05:c2:e5:79:bf:2a:6e:ee:a4:67:e4:ab:08:78:78:
c8:90:33:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:58 2024 by rpki-client on console-fra.rpki-client.org