Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eYqms_VwblWb1KZU6UMFaf5CEAI.cer
File: eYqms_VwblWb1KZU6UMFaf5CEAI.cer (raw, json)
Hash identifier: ZR2VRREmXNk2Ae9rnHagqqTsSpV7jQwljYSnzBBctyE=
Subject key identifier: 79:8A:A6:B3:F5:70:6E:55:9B:D4:A6:54:E9:43:05:69:FE:42:10:02
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018572E86E05221C32EDF1923D658F679C14
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/39/f5f890-8ff0-4838-825b-da4ae7fdcae1/1/eYqms_VwblWb1KZU6UMFaf5CEAI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/39/f5f890-8ff0-4838-825b-da4ae7fdcae1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 14:35:13 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 185.189.73.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:e8:6e:05:22:1c:32:ed:f1:92:3d:65:8f:67:9c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 14:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=798aa6b3f5706e559bd4a654e9430569fe421002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d4:14:0d:44:b7:cf:62:de:30:b1:34:31:0c:
c9:f6:dd:1f:f8:30:5b:aa:10:aa:ad:c3:54:6b:7e:
bb:9a:03:7d:15:9e:bc:1f:88:64:18:7a:e4:27:b1:
d1:a3:37:66:28:84:dd:33:1e:ad:f4:e2:ad:86:be:
7b:65:92:0e:ed:4b:e1:17:1a:71:7d:2e:bf:1f:77:
14:42:1f:42:1e:5b:0a:7c:5a:cc:bb:4b:5c:a2:a7:
c2:63:fb:05:de:45:cf:dc:a6:87:0d:a5:fe:ca:d5:
5c:b3:c4:0d:8d:66:69:58:6c:6e:50:f3:e5:37:ab:
c5:ce:9f:77:fb:24:97:4b:38:2b:40:5b:10:32:a4:
4b:19:d0:a8:e7:46:c9:79:2e:2a:88:9a:eb:66:84:
27:70:7e:2c:be:e9:28:6f:e6:9b:f5:e1:f7:b5:6a:
e4:eb:32:bf:af:53:bb:f7:95:fa:12:a0:be:aa:88:
57:0b:b2:c7:6f:73:7a:2a:f2:1f:84:ab:ab:4f:9d:
f6:dc:32:b5:b0:d9:5d:45:3f:e0:c6:72:ed:b0:df:
b2:d0:f2:f2:63:1c:08:8c:d7:72:a5:db:75:72:bc:
2c:30:41:15:2d:64:63:af:70:94:57:47:fd:f5:3f:
a0:59:65:88:98:b6:ec:b3:fa:61:c0:6d:f5:35:33:
aa:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:8A:A6:B3:F5:70:6E:55:9B:D4:A6:54:E9:43:05:69:FE:42:10:02
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/f5f890-8ff0-4838-825b-da4ae7fdcae1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/f5f890-8ff0-4838-825b-da4ae7fdcae1/1/eYqms_VwblWb1KZU6UMFaf5CEAI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.73.0/24
Signature Algorithm: sha256WithRSAEncryption
06:10:d8:74:25:43:f4:d0:24:a1:61:d6:e2:f2:90:53:d7:95:
5c:08:34:bc:d1:c2:cb:21:b4:00:34:85:79:a1:d1:36:38:fe:
24:9f:75:c7:41:ae:41:8f:a7:49:7e:7b:37:f8:2e:1c:09:cc:
a9:3b:90:ab:f6:3e:88:f5:bb:c3:e0:19:d6:52:3e:ad:28:5b:
87:54:84:14:b3:93:83:4c:6b:28:25:2a:b2:f9:a9:8e:19:de:
66:c0:03:82:52:47:be:fb:a3:63:cf:5a:c8:6d:a8:32:0d:40:
fa:10:44:5f:1e:0b:06:1d:d9:64:e7:33:86:d4:b3:53:b6:b8:
37:c6:61:f6:c8:b0:80:d8:9d:63:a8:c5:50:e8:23:ec:23:a1:
f5:49:bc:14:a6:39:bd:86:04:f1:f0:16:25:a5:b3:d9:c9:3b:
b7:7f:4a:bc:f7:bd:fd:ce:7a:8b:57:c2:ff:5e:58:99:7b:e3:
f5:f9:84:a5:01:ca:f2:3b:8f:59:24:b7:45:37:0f:03:a7:ae:
96:a4:19:80:70:d9:4a:d1:df:e2:cc:c6:a0:51:aa:bd:b2:6b:
d4:ce:9d:ad:b2:6f:66:8c:2f:ed:52:95:a2:49:97:2e:03:7b:
37:57:3f:08:77:fa:98:8a:f7:20:03:8c:da:59:13:a7:28:57:
ba:d9:f0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:11:47 2025 by rpki-client