Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nSQ40Axp5tdZCpMTsRnvaWZa7bk.cer
File: nSQ40Axp5tdZCpMTsRnvaWZa7bk.cer (raw, json)
Hash identifier: atqpXW7J88dIFL1oDXxYgN4uQlf0NEkjkV2jTJ6tPd8=
Subject key identifier: 9D:24:38:D0:0C:69:E6:D7:59:0A:93:13:B1:19:EF:69:66:5A:ED:B9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A33E8A5C9F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6b/96b311-3e8d-4b30-94e8-b30e248f86a9/1/nSQ40Axp5tdZCpMTsRnvaWZa7bk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6b/96b311-3e8d-4b30-94e8-b30e248f86a9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 09:03:39 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 193.28.182.0/24
IP: 193.28.191.0/24
IP: 193.28.202.0/24
IP: 193.28.237.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 701128924319 (0xa33e8a5c9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d2438d00c69e6d7590a9313b119ef69665aedb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:4a:81:b3:9b:02:f9:e3:0a:68:72:73:e9:c0:
91:d1:13:cb:65:35:ba:8e:ab:87:3c:25:aa:0d:31:
f8:05:e3:ca:8e:3d:cf:d8:99:f1:66:68:51:e1:9f:
0b:9e:80:b6:f2:32:4d:e2:aa:6a:4f:a3:d8:1f:19:
c1:c6:9d:6a:26:b8:dc:3d:dc:32:55:b8:29:0c:06:
f1:6e:f2:8b:64:38:7a:39:de:ed:1f:6d:17:85:02:
3a:8c:5a:09:3c:27:f8:56:19:e2:db:ec:9a:0e:16:
93:67:0b:da:ea:de:db:cd:7d:97:dc:3f:53:ff:62:
ca:5e:64:52:84:f4:b9:1d:d5:42:a4:f4:31:c5:00:
7c:aa:65:0e:19:d6:72:97:6b:48:b2:a5:53:85:b8:
13:35:ea:51:ed:b5:45:8d:7b:7f:cc:29:7f:d2:8e:
83:50:f5:a6:2a:26:52:20:17:18:5c:68:51:3f:f0:
e7:9c:27:58:e7:bb:23:89:40:e2:7b:ce:6b:bd:c4:
2d:a3:a1:da:d3:21:ad:ef:89:a7:ad:58:71:6b:0d:
30:fe:1e:30:db:93:f8:6b:54:28:f0:4b:16:98:0d:
95:25:bc:20:e7:dd:cc:35:69:aa:43:f1:e1:e0:9d:
3b:f5:70:58:4c:7d:aa:16:54:86:92:0c:25:e6:52:
eb:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:24:38:D0:0C:69:E6:D7:59:0A:93:13:B1:19:EF:69:66:5A:ED:B9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/96b311-3e8d-4b30-94e8-b30e248f86a9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/96b311-3e8d-4b30-94e8-b30e248f86a9/1/nSQ40Axp5tdZCpMTsRnvaWZa7bk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.182.0/24
193.28.191.0/24
193.28.202.0/24
193.28.237.0/24
Signature Algorithm: sha256WithRSAEncryption
01:d9:6f:48:52:ee:e0:4e:7d:6a:e7:b6:7c:68:72:a1:a0:6b:
63:6c:fd:73:38:cc:8e:c7:22:be:8e:49:7a:3a:5b:7b:0c:ef:
e2:e2:42:df:01:a2:e6:49:00:fa:1b:77:ed:ed:ad:63:62:15:
7e:66:0f:09:c2:7f:ba:e2:6d:3e:e3:5b:12:43:ee:66:ab:7c:
0f:63:c3:07:ee:89:dc:d2:c3:83:c7:04:e4:b8:98:a6:51:69:
9d:5d:fd:3d:20:b4:b6:cc:d9:bd:f2:cd:26:8b:2b:69:4b:a0:
e7:6c:2b:21:b0:f6:1c:3c:34:ac:ab:d8:09:dc:cd:a3:23:a7:
e8:ff:4a:d8:24:66:76:25:a0:29:a8:09:cf:db:94:80:1a:08:
00:1f:3c:43:62:8c:f5:d2:06:15:0d:c0:5b:3b:93:a2:e4:ae:
1f:0c:a2:99:f1:ca:3b:3c:63:7d:6e:46:91:63:b9:c2:dc:1f:
4e:08:91:4a:a7:a4:cc:85:ce:0c:a9:d0:65:c4:fa:b3:12:8f:
bc:f2:58:eb:18:e7:72:9b:0b:24:7f:aa:c7:e0:95:bb:d2:6e:
bd:dd:8a:01:ec:83:ac:a9:9a:5a:40:f8:ee:26:4b:71:9d:f1:
d4:7e:2d:b6:1f:24:e0:bb:84:32:de:d0:51:19:1c:d2:0f:ee:
16:38:c9:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:02:26 2024 by rpki-client on console-fra.rpki-client.org