Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jD19iFufzwbIjw_irxDjrpf_W24.cer
File: jD19iFufzwbIjw_irxDjrpf_W24.cer (raw, json)
Hash identifier: QeG8xDvrsAcbDfaTUcUgjhIByrhF5wIAFQmXSmzwvvY=
Subject key identifier: 8C:3D:7D:88:5B:9F:CF:06:C8:8F:0F:E2:AF:10:E3:AE:97:FF:5B:6E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856AF5011F351904FA38467D3B759DBE0D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a92-9762-4450-83e7-e0cca5e20f4f/1/jD19iFufzwbIjw_irxDjrpf_W24.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a92-9762-4450-83e7-e0cca5e20f4f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 01:31:59 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 195.225.98.0/24
IP: 2a11:fa00::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6a:f5:01:1f:35:19:04:fa:38:46:7d:3b:75:9d:be:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:31:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c3d7d885b9fcf06c88f0fe2af10e3ae97ff5b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e5:3d:12:ea:0c:9d:c4:6f:78:7d:c3:41:7e:
97:f8:56:5e:68:f1:4e:d0:0f:0f:af:c2:5b:40:65:
d6:f4:ce:10:d8:de:94:e7:45:21:33:16:f2:cf:69:
09:a4:7c:fe:2c:ce:2b:97:db:ba:79:bc:62:a3:0b:
43:11:b1:9b:fe:ef:4c:ac:b0:15:29:fe:cb:58:a6:
2b:4e:78:d0:3a:c5:f0:de:61:b7:49:20:a1:2d:8d:
22:41:0c:16:34:48:35:b0:66:d2:54:db:dc:e6:e2:
b2:86:3d:ec:30:b8:72:28:f2:16:5a:c3:9c:05:f4:
42:ae:85:be:eb:0f:83:98:99:44:b6:c8:f9:05:5d:
4c:0d:a7:a9:ef:50:8a:dc:e8:b7:0c:3f:7a:d5:23:
55:f6:1e:63:e2:25:ff:b7:1c:bb:28:48:35:5d:5c:
8b:a1:02:5e:20:07:b6:2a:99:be:3d:5a:98:8f:36:
0e:b7:a4:e3:23:bf:0d:ff:b2:6b:ff:76:fa:32:2e:
1e:33:cc:32:56:67:90:24:70:f2:29:6b:63:04:52:
3c:d0:b8:a9:4b:fb:d7:10:8e:e4:fc:fb:4c:bc:f3:
d3:5d:73:eb:de:d1:5d:88:f6:f0:bb:0c:97:33:58:
f8:aa:b9:09:19:9d:ea:f5:9a:c2:61:59:8a:59:5a:
4a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:3D:7D:88:5B:9F:CF:06:C8:8F:0F:E2:AF:10:E3:AE:97:FF:5B:6E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a92-9762-4450-83e7-e0cca5e20f4f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a92-9762-4450-83e7-e0cca5e20f4f/1/jD19iFufzwbIjw_irxDjrpf_W24.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.98.0/24
IPv6:
2a11:fa00::/29
Signature Algorithm: sha256WithRSAEncryption
07:29:18:25:bc:c9:50:de:f6:7e:fd:04:42:aa:ee:41:7b:1f:
49:89:d0:c9:99:ad:77:ee:55:e8:a8:fa:c1:ad:38:f4:25:1a:
64:fe:8e:05:01:f1:8e:83:d1:fd:d9:4a:51:49:13:86:77:ee:
e1:67:ac:7e:d9:94:40:ee:ac:49:d1:3c:87:8e:09:53:cb:17:
ee:d5:56:e2:a8:4a:b3:e9:aa:23:39:3a:54:a9:00:3e:2c:b4:
ef:d5:b6:46:3f:8d:c8:6f:c9:36:36:59:33:c3:a4:26:f6:ab:
2f:7c:89:fd:f2:de:b1:9b:ae:7f:43:37:1e:fa:d1:2a:ac:83:
52:1b:1a:74:ed:85:93:2a:98:18:59:d1:f4:93:1d:47:bf:8a:
8f:b5:93:33:cb:35:56:da:cf:d7:85:d4:1f:c1:53:d5:f1:a3:
87:4b:2b:91:a3:60:d0:c4:60:3b:22:e2:40:71:fd:1a:82:28:
84:b9:45:11:d0:11:16:9a:03:57:59:c1:8c:4f:88:a7:5a:71:
f2:56:ed:b4:4f:c2:89:3f:80:6c:7b:42:51:e5:c5:17:91:9d:
0e:6f:c8:b7:e9:30:c1:b5:f0:00:aa:c9:50:0e:5f:fb:d2:3d:
b6:d6:0b:fb:30:29:3b:9b:c2:d9:5c:8a:2c:61:d1:ea:d4:0b:
46:49:3d:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:11 2025 by rpki-client