Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iPQ6AwKMaSsVNCOBaFtCgOsXDuU.cer
File: iPQ6AwKMaSsVNCOBaFtCgOsXDuU.cer (raw, json)
Hash identifier: 9xsqzRKJ++xaCOpfPvtaEwDv+bvgZ4rIf3hkCV1X/iE=
Subject key identifier: 88:F4:3A:03:02:8C:69:2B:15:34:23:81:68:5B:42:80:EB:17:0E:E5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: B38F155827
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/81/a19618-186f-484d-ad46-42d34f31f7b7/1/iPQ6AwKMaSsVNCOBaFtCgOsXDuU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/81/a19618-186f-484d-ad46-42d34f31f7b7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 24 Jun 2022 13:34:36 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 12714
IP: 5.250.168.0/21
IP: 31.40.8.0/21
IP: 31.170.32.0/21
IP: 37.200.88.0/21
IP: 37.232.128.0/17
IP: 46.16.176.0/21
IP: 46.72.0.0/15
IP: 46.151.168.0/21
IP: 46.187.0.0/17
IP: 46.227.208.0/21
IP: 46.232.216.0/21
IP: 62.16.96.0/19
IP: 62.182.128.0/21
IP: 77.75.0.0/21
IP: 78.31.240.0/21
IP: 78.41.96.0/22
IP: 79.98.88.0/21
IP: 79.111.0.0/16
IP: 79.120.0.0/17
IP: 80.68.64.0/20
IP: 80.90.112.0/20
IP: 82.112.176.0/21
IP: 82.149.128.0/19
IP: 84.16.128.0/19
IP: 85.31.176.0/21
IP: 85.159.40.0/21
IP: 87.236.24.0/21
IP: 89.20.128.0/19
IP: 89.163.0.0/17
IP: 89.221.16.0/20
IP: 91.196.236.0/22
IP: 91.201.0.0/22
IP: 91.205.168.0/22
IP: 91.207.42.0/23
IP: 91.218.40.0/22
IP: 91.239.63.0/24
IP: 91.242.40.0/22
IP: 92.42.88.0/21
IP: 93.90.32.0/20
IP: 93.191.72.0/21
IP: 94.125.40.0/21
IP: 94.143.56.0/21
IP: 94.154.64.0/20
IP: 94.158.192.0/20
IP: 94.188.0.0/17
IP: 94.232.8.0/21
IP: 95.141.224.0/20
IP: 95.172.96.0/19
IP: 95.220.0.0/15
IP: 109.63.128.0/17
IP: 109.75.240.0/20
IP: 109.95.224.0/21
IP: 109.170.0.0/17
IP: 109.197.88.0/21
IP: 109.232.184.0/21
IP: 128.140.160.0/21
IP: 128.204.0.0/18
IP: 130.0.216.0/21
IP: 149.154.128.0/20
IP: 176.77.0.0/17
IP: 176.106.128.0/21
IP: 176.117.16.0/20
IP: 176.192.0.0/14
IP: 176.222.216.0/21
IP: 178.209.224.0/19
IP: 178.212.208.0/21
IP: 178.251.216.0/21
IP: 185.12.208.0/22
IP: 185.18.44.0/22
IP: 185.50.136.0/22
IP: 193.169.222.0/23
IP: 193.242.128.0 -- 193.242.133.255
IP: 194.8.160.0/19
IP: 194.28.216.0/22
IP: 194.60.246.0/24
IP: 195.78.60.0/23
IP: 195.131.0.0/16
IP: 195.191.10.0/23
IP: 195.216.200.0/23
IP: 195.225.160.0/22
IP: 212.1.224.0/19
IP: 212.13.0.0/19
IP: 212.48.128.0/19
IP: 213.5.96.0/21
IP: 213.88.0.0/17
IP: 213.138.192.0 -- 213.138.215.255
IP: 213.138.220.0/22
IP: 213.141.128.0/19
IP: 213.145.0.0/19
IP: 217.8.80.0/20
IP: 217.112.0.0/20
IP: 217.115.176.0/20
IP: 217.151.64.0/20
IP: 2a00:d18::/32
IP: 2a00:16d0::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 771199686695 (0xb38f155827)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 24 13:34:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88f43a03028c692b15342381685b4280eb170ee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:20:31:8d:a8:a3:94:87:56:5b:c7:58:46:4f:
d6:15:7c:0a:8d:3b:79:ff:7c:fa:5f:f4:dc:be:07:
f1:e2:fc:2b:ec:ae:ad:91:99:62:c8:5d:ce:df:9d:
9d:92:9e:81:9a:dc:25:9e:82:e4:b5:84:18:c4:04:
68:28:04:71:19:80:46:c7:fd:23:e3:e4:19:86:a9:
3a:90:8f:b4:08:0c:c3:80:3b:59:fa:2d:10:65:3b:
dc:26:d1:e9:50:c5:cf:ac:ad:30:9f:22:6b:52:19:
67:7f:97:f5:e9:f6:bb:65:e9:b5:14:06:fb:61:6b:
42:3b:54:f9:c0:7b:3a:56:f1:ab:e0:5a:14:ac:9f:
a0:2a:28:84:93:00:54:97:11:a6:2d:ab:63:be:c8:
97:71:87:e7:3e:cd:9d:1b:4d:fb:79:d4:73:6a:28:
68:71:6a:2c:5a:95:03:e1:4e:25:30:02:9f:b1:33:
f9:f1:00:8f:e9:40:7c:33:ff:dc:3a:69:23:df:c8:
43:5b:2d:19:74:73:8e:d5:05:86:7d:04:01:d0:40:
d0:76:88:c4:23:46:f1:92:ec:5a:65:66:9f:a4:df:
75:96:3a:88:81:bb:41:ee:f1:69:54:50:1b:aa:66:
f9:e6:5a:54:d4:11:37:fe:ec:5f:68:56:23:f8:64:
16:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F4:3A:03:02:8C:69:2B:15:34:23:81:68:5B:42:80:EB:17:0E:E5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a19618-186f-484d-ad46-42d34f31f7b7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a19618-186f-484d-ad46-42d34f31f7b7/1/iPQ6AwKMaSsVNCOBaFtCgOsXDuU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.250.168.0/21
31.40.8.0/21
31.170.32.0/21
37.200.88.0/21
37.232.128.0/17
46.16.176.0/21
46.72.0.0/15
46.151.168.0/21
46.187.0.0/17
46.227.208.0/21
46.232.216.0/21
62.16.96.0/19
62.182.128.0/21
77.75.0.0/21
78.31.240.0/21
78.41.96.0/22
79.98.88.0/21
79.111.0.0/16
79.120.0.0/17
80.68.64.0/20
80.90.112.0/20
82.112.176.0/21
82.149.128.0/19
84.16.128.0/19
85.31.176.0/21
85.159.40.0/21
87.236.24.0/21
89.20.128.0/19
89.163.0.0/17
89.221.16.0/20
91.196.236.0/22
91.201.0.0/22
91.205.168.0/22
91.207.42.0/23
91.218.40.0/22
91.239.63.0/24
91.242.40.0/22
92.42.88.0/21
93.90.32.0/20
93.191.72.0/21
94.125.40.0/21
94.143.56.0/21
94.154.64.0/20
94.158.192.0/20
94.188.0.0/17
94.232.8.0/21
95.141.224.0/20
95.172.96.0/19
95.220.0.0/15
109.63.128.0/17
109.75.240.0/20
109.95.224.0/21
109.170.0.0/17
109.197.88.0/21
109.232.184.0/21
128.140.160.0/21
128.204.0.0/18
130.0.216.0/21
149.154.128.0/20
176.77.0.0/17
176.106.128.0/21
176.117.16.0/20
176.192.0.0/14
176.222.216.0/21
178.209.224.0/19
178.212.208.0/21
178.251.216.0/21
185.12.208.0/22
185.18.44.0/22
185.50.136.0/22
193.169.222.0/23
193.242.128.0-193.242.133.255
194.8.160.0/19
194.28.216.0/22
194.60.246.0/24
195.78.60.0/23
195.131.0.0/16
195.191.10.0/23
195.216.200.0/23
195.225.160.0/22
212.1.224.0/19
212.13.0.0/19
212.48.128.0/19
213.5.96.0/21
213.88.0.0/17
213.138.192.0-213.138.215.255
213.138.220.0/22
213.141.128.0/19
213.145.0.0/19
217.8.80.0/20
217.112.0.0/20
217.115.176.0/20
217.151.64.0/20
IPv6:
2a00:d18::/32
2a00:16d0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12714
Signature Algorithm: sha256WithRSAEncryption
86:2f:c1:f7:62:64:5f:e1:ac:5f:b6:57:81:0e:3d:d6:66:f6:
e5:2b:46:10:45:6e:ba:37:49:f9:6b:4a:45:7c:3a:ee:ff:ed:
57:47:99:8b:62:53:bd:07:1d:1d:d4:2f:5a:f0:e3:d7:db:e5:
48:20:25:ee:d6:84:8a:62:d3:94:4a:59:0d:7d:99:ae:c2:98:
a1:00:70:c6:f6:c2:97:29:32:0d:9b:b2:50:aa:03:e6:11:29:
80:9c:b7:bd:27:c5:ac:a5:46:54:fc:db:2c:b8:8a:64:e6:61:
3b:61:da:32:2a:fa:b1:36:4d:97:a1:54:89:19:e6:06:fd:d7:
78:d7:c3:75:22:2c:ef:3e:85:d3:7a:ea:65:02:8c:29:a9:d9:
11:4b:c3:35:0c:df:93:68:9b:9e:c9:b9:40:4b:92:f5:18:43:
70:dc:4e:40:48:96:a3:26:76:d6:cf:0f:71:08:cd:80:7f:c1:
de:16:4b:21:5f:5b:23:e2:ce:b1:12:78:45:b8:b1:58:d0:87:
60:61:a1:f3:76:02:2a:fd:fd:6d:91:72:81:e3:01:1b:5a:b4:
29:70:0c:9e:a6:1b:26:03:ff:93:79:6f:1a:d7:f9:8e:d7:99:
67:c8:4a:ec:c8:4e:2e:66:35:3f:73:13:ec:5f:67:45:5b:8f:
36:89:82:7e
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Mar 12 17:05:14 2025 by rpki-client