Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lezPi0Z0W8JWghUp5YcDuY5rZWc.cer
File: lezPi0Z0W8JWghUp5YcDuY5rZWc.cer (raw, json)
Hash identifier: S9Q35/9JUGHnECQ3BKimdCx/nNGToPfUZ0qok/mCR/Y=
Subject key identifier: 95:EC:CF:8B:46:74:5B:C2:56:82:15:29:E5:87:03:B9:8E:6B:65:67
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856BD13703170AF3B705E34E67D8D35CBB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/lezPi0Z0W8JWghUp5YcDuY5rZWc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 05:32:31 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 176.56.38.0/24
IP: 2a11:c280::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d1:37:03:17:0a:f3:b7:05:e3:4e:67:d8:d3:5c:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:32:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95eccf8b46745bc256821529e58703b98e6b6567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7d:26:8f:33:be:55:d6:67:e6:c7:dc:da:f4:
72:75:cf:b0:8d:d0:9a:bb:5e:d8:f7:3f:75:bc:5a:
9b:4c:f6:32:ff:f3:7b:c8:90:9a:1a:d6:ed:5a:bc:
20:de:be:99:35:6c:4e:d1:ca:c1:9c:a1:a5:8a:d4:
fd:a9:52:4e:c2:df:7f:73:d0:2a:c5:9d:c9:46:a2:
7b:71:b4:e5:4a:10:3e:03:1b:c2:df:f3:54:67:9b:
1f:d8:bc:33:c8:cf:70:65:b5:9b:e4:56:4a:3e:9d:
02:89:e8:bb:a3:65:00:91:66:1d:f7:72:83:8f:73:
ca:f1:e6:ff:b1:f6:a7:81:bf:1c:aa:ab:0d:a3:7e:
5c:a5:53:f3:c9:9f:14:ee:44:c9:5f:00:6a:51:42:
a8:ec:0c:29:84:09:98:d5:95:f1:96:b4:f5:61:6d:
81:5b:9b:48:2e:ac:39:59:1d:fe:a5:18:54:66:99:
3d:38:b9:1a:bd:08:2d:22:2a:f4:c3:9a:91:39:ef:
65:76:dd:14:f5:2d:3a:e5:61:7e:d0:e0:8e:e3:dd:
4c:89:dc:d7:c5:8a:93:47:e0:c0:25:3e:9d:5a:0a:
35:4b:ba:37:d8:e7:f6:40:98:a4:87:07:05:8b:74:
ec:92:9e:b3:c6:86:30:44:77:ed:a8:87:dc:fe:fa:
1f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:EC:CF:8B:46:74:5B:C2:56:82:15:29:E5:87:03:B9:8E:6B:65:67
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/da43f3-8c2f-485a-ab9e-1cd2e2d14597/1/lezPi0Z0W8JWghUp5YcDuY5rZWc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.56.38.0/24
IPv6:
2a11:c280::/29
Signature Algorithm: sha256WithRSAEncryption
47:e6:1a:b3:90:ad:e0:ca:f5:68:53:d4:43:a4:22:9d:40:0c:
21:b9:33:17:2d:4a:b1:6e:48:19:f7:59:78:51:8e:f0:66:8a:
d3:7e:03:de:02:29:55:b1:60:4d:a5:9c:40:87:05:2d:d0:cd:
71:85:c8:f4:f8:bb:fa:46:51:2b:b7:45:08:29:70:80:c1:c0:
90:f5:46:ed:25:9a:ba:4a:82:30:eb:d9:a8:4a:cc:6a:fc:81:
0b:af:60:14:61:5d:e0:68:82:a6:dd:6e:49:83:80:5e:45:fc:
f7:d2:f7:16:06:3d:e1:66:d1:2a:9a:26:d0:82:9b:1f:ca:16:
0d:31:15:d4:0a:d4:3c:a1:91:09:e4:67:94:87:26:66:50:25:
d5:1a:17:15:65:06:f9:76:c5:3d:97:56:0d:3e:bf:ba:cb:a5:
04:d1:d7:77:bb:4a:ff:f5:0c:bf:1b:f9:f3:d3:99:07:1f:9a:
f0:a1:89:07:25:8e:81:9e:c9:f9:2f:f3:0e:61:b3:74:c0:8c:
aa:fc:eb:8c:11:1a:20:bc:ce:b2:b0:a7:7a:70:ec:5a:02:3a:
84:c6:ce:8a:74:ce:8a:34:df:0d:15:ff:3e:e9:3a:3c:1f:2d:
dd:c9:36:c3:e5:83:f9:53:45:55:63:eb:3c:60:2b:06:10:c2:
4f:59:d9:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:37:41 2025 by rpki-client