Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kMnhT0nOtbcA7NvYBdSQD4ETGYU.cer
File: kMnhT0nOtbcA7NvYBdSQD4ETGYU.cer (raw, json)
Hash identifier: X4CmAfUyhyTuD7ovM7gSnHIT3H773JcxsHgG+kqRxZM=
Subject key identifier: 90:C9:E1:4F:49:CE:B5:B7:00:EC:DB:D8:05:D4:90:0F:81:13:19:85
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0183D1AA4B78005122F573AE67FACC7277F0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/46/2d127f-3694-48a6-92ef-3e42a2594b4b/1/kMnhT0nOtbcA7NvYBdSQD4ETGYU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/46/2d127f-3694-48a6-92ef-3e42a2594b4b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 13 Oct 2022 14:05:42 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 202023
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:aa:4b:78:00:51:22:f5:73:ae:67:fa:cc:72:77:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 13 14:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90c9e14f49ceb5b700ecdbd805d4900f81131985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f7:76:0a:db:c3:2a:be:ae:8b:15:56:a1:5e:
fd:8a:0e:41:34:cf:0e:f5:8d:a2:b7:84:b5:be:9d:
ea:a0:26:dd:d1:9c:ed:63:a7:a7:fa:da:db:a9:21:
72:de:bb:ac:c9:60:59:69:de:6a:2a:03:ae:83:39:
93:4c:0d:c7:2b:91:eb:47:aa:2e:f6:be:d3:c2:c2:
50:08:7e:f1:0a:aa:c5:50:7e:c6:36:de:4c:14:f8:
ae:12:e3:44:87:bb:9f:66:ec:63:bb:3e:fb:66:fe:
14:cf:18:e8:40:e6:9b:74:97:68:61:0e:47:41:db:
26:28:1f:fb:2a:db:2f:1c:bc:39:3d:90:6c:af:dd:
f8:a6:cb:b5:84:a0:89:2e:85:89:88:6a:91:c6:49:
95:af:0f:b2:e7:bb:63:c8:8f:d6:48:19:ee:44:83:
26:91:00:c5:97:5a:e5:7d:4e:92:51:81:80:9f:aa:
4e:10:c2:e1:6e:77:03:81:9b:32:92:ad:da:6c:cb:
e0:45:3b:55:2e:88:00:18:0c:ff:5d:12:b5:e9:a9:
ac:48:c8:28:9c:4d:60:0a:1f:8a:d9:18:22:28:ce:
1f:f6:39:70:23:e4:98:ed:97:0e:52:bb:51:ae:70:
71:05:62:cf:00:18:62:9e:29:31:4d:74:c6:69:17:
4d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C9:E1:4F:49:CE:B5:B7:00:EC:DB:D8:05:D4:90:0F:81:13:19:85
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/2d127f-3694-48a6-92ef-3e42a2594b4b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/2d127f-3694-48a6-92ef-3e42a2594b4b/1/kMnhT0nOtbcA7NvYBdSQD4ETGYU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202023
Signature Algorithm: sha256WithRSAEncryption
39:17:32:13:1c:91:41:3c:5b:02:a7:ef:93:67:3e:6e:7a:55:
67:78:23:7c:b0:21:9d:9a:d7:5d:da:40:da:9b:4d:65:cf:e6:
1c:15:75:c9:df:4f:cc:48:17:04:5b:6d:d7:f6:6a:92:f3:75:
dd:1b:9b:0a:4e:55:1f:45:8b:82:ff:14:a8:1c:6e:32:b4:fa:
01:0c:82:7c:6a:31:a9:70:18:9d:41:51:bf:1e:4f:eb:16:11:
3b:aa:ff:c7:8a:cd:29:00:1b:6c:fe:cc:2a:d2:49:9a:6a:1a:
8d:b9:3d:1b:5d:b1:32:e0:86:cc:0c:aa:b0:de:e4:01:43:0e:
3b:9f:10:44:96:e7:72:66:27:63:62:79:76:f2:6b:78:7d:9a:
58:cd:25:2e:6b:4f:e8:b7:05:09:5c:33:00:a8:9a:f2:09:63:
a4:01:89:b3:0e:bc:91:27:0c:e9:21:c9:ae:70:82:d0:2e:5c:
17:1e:53:81:1a:30:39:68:a8:30:cc:44:9c:96:e0:c4:cf:f2:
70:bd:cb:0e:dc:bf:12:d2:f4:31:58:a4:89:3d:ce:88:fe:45:
bb:a6:f0:c3:62:36:ad:df:c9:a2:e7:58:24:0d:a5:d7:77:7f:
a8:38:08:21:f1:93:fc:94:9a:e7:9b:08:fd:f1:e6:63:88:ba:
41:3a:f5:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:55:50 2024 by rpki-client on console-ams.rpki-client.org