Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2A1XiAXxX4FW_uNjP96pioqeZU.cer
File: f2A1XiAXxX4FW_uNjP96pioqeZU.cer (raw, json)
Hash identifier: jr+dkbEeRLWePqPB1ErHS9Dwxzq5kw0y33rAOV9esao=
Subject key identifier: 7F:60:35:5E:20:17:C5:7E:05:5B:FB:8D:8C:FF:7A:A6:2A:2A:79:95
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018ABDB6F94E059BE07714C25D2834F5A655
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/625d8f-0395-488f-bbb0-ac523c6c3a7f/1/f2A1XiAXxX4FW_uNjP96pioqeZU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/625d8f-0395-488f-bbb0-ac523c6c3a7f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 22 Sep 2023 16:26:39 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 216455
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bd:b6:f9:4e:05:9b:e0:77:14:c2:5d:28:34:f5:a6:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 22 16:26:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f60355e2017c57e055bfb8d8cff7aa62a2a7995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:2e:42:a2:dd:04:b1:5d:d6:96:bb:f3:fa:e0:
62:3a:8f:7a:fa:82:f6:76:b9:ab:56:d6:39:8a:68:
24:f3:6c:f3:81:d1:4a:81:4e:60:09:62:5c:1c:69:
8c:14:1b:b5:78:c9:c4:2f:8e:86:5d:0a:2a:31:91:
0d:9c:13:63:33:ea:5b:24:19:d5:be:c6:33:77:60:
e6:0d:3f:dc:85:17:3b:d7:28:51:a3:14:a3:7f:01:
02:bc:63:51:51:ae:04:84:07:91:3e:e4:e7:1a:90:
d1:54:3a:c5:a8:45:22:7e:de:ef:6f:61:ec:60:f5:
5a:7a:79:d0:41:74:0d:91:57:3d:af:49:f3:06:18:
0a:cb:31:9c:cb:6b:db:5a:0f:c0:86:3d:e1:2d:e8:
ae:14:60:6e:30:34:94:da:ac:a1:dc:ec:93:37:05:
2d:09:b5:df:2d:74:99:b1:0a:71:fc:57:da:01:39:
3a:18:3f:5f:91:16:63:25:8b:b4:8a:2a:32:0d:22:
45:69:13:e5:1e:3a:01:72:fe:78:60:36:d0:c3:5e:
b5:24:3b:92:ed:e6:6a:7e:5a:f3:df:7c:66:e7:97:
5d:6b:94:b6:bd:80:79:24:11:bc:91:ea:cf:da:cf:
53:1c:8e:4f:16:f2:70:be:2e:ea:03:39:90:7a:1b:
85:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:60:35:5E:20:17:C5:7E:05:5B:FB:8D:8C:FF:7A:A6:2A:2A:79:95
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/625d8f-0395-488f-bbb0-ac523c6c3a7f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/625d8f-0395-488f-bbb0-ac523c6c3a7f/1/f2A1XiAXxX4FW_uNjP96pioqeZU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216455
Signature Algorithm: sha256WithRSAEncryption
73:d5:74:78:06:6f:be:0b:52:fd:e7:82:c5:df:7c:77:e4:e5:
0d:c0:b8:fb:df:83:8e:4e:8e:8a:3e:64:27:e2:86:1f:21:ee:
7d:7e:ce:2f:39:aa:ac:ff:23:c5:3a:9b:9c:af:bc:a3:a8:2c:
87:30:2e:42:77:96:9b:d5:f3:75:bd:fc:79:88:98:89:35:7a:
5c:ca:13:61:35:7a:62:22:4b:a8:eb:81:c2:da:66:54:37:01:
48:ec:5a:a5:eb:94:41:b3:d5:b6:83:75:f7:0e:a8:f3:c1:8a:
04:48:ca:e5:13:b1:85:c3:e5:ab:54:f0:08:c2:9f:cb:57:c1:
df:db:dd:50:87:1c:6b:f6:c4:d7:dc:3f:2d:66:57:fb:40:1d:
36:8c:87:e8:9a:7f:c1:0c:ed:2d:74:5f:7c:49:61:68:35:29:
0e:86:d9:1b:5c:22:28:97:bc:18:1d:92:bc:86:82:04:29:ae:
bc:9a:d0:19:57:07:80:2c:d3:a3:57:a5:f4:93:a9:6c:c0:87:
c8:91:17:4b:54:b7:dc:0f:12:f9:02:90:c8:64:e0:77:52:e6:
8b:53:59:d1:7f:8a:f1:86:99:fa:f1:85:7c:1e:01:ec:83:4b:
e6:86:f8:63:37:da:96:90:d7:79:eb:da:a3:55:c0:e3:0a:4a:
68:0d:88:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:50:02 2025 by rpki-client