Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/r0ToVaZU7BVaaGiQemuPwXQW1qQ.cer
File: r0ToVaZU7BVaaGiQemuPwXQW1qQ.cer (raw, json)
Hash identifier: 4nSeMU03FEjXUjj3nYvLS5LAwE7UHdi7muNki+Eq5E0=
Subject key identifier: AF:44:E8:55:A6:54:EC:15:5A:68:68:90:7A:6B:8F:C1:74:16:D6:A4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 9A938BD0FA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2b/d98f5d-a276-425a-963f-ec5e23660fbc/1/r0ToVaZU7BVaaGiQemuPwXQW1qQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2b/d98f5d-a276-425a-963f-ec5e23660fbc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 01:56:26 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 13273
AS: 16073
IP: 91.216.209.0/24
IP: 185.21.152.0/22
IP: 185.114.208.0/22
IP: 193.56.60.0/24
IP: 194.165.33.0/24
IP: 195.54.62.0/23
IP: 213.91.0.0/18
IP: 213.162.32.0/19
IP: 2001:4080::/29
IP: 2a03:4420::/32
IP: 2a04:1940::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 663900377338 (0x9a938bd0fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:56:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af44e855a654ec155a6868907a6b8fc17416d6a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a8:e8:fe:28:aa:64:32:3e:27:c1:d7:df:33:
04:41:a3:6b:bc:2c:54:5e:93:ff:46:37:cb:3c:7d:
2b:b6:ef:d0:80:7e:d6:0f:d8:a1:68:e5:2f:0c:9c:
d2:a9:31:cf:a8:51:82:72:7a:32:6b:9b:f5:cf:f8:
fe:31:e8:f5:92:6e:f8:cc:2f:0d:dd:c2:59:f4:a9:
83:a5:76:b9:66:ba:28:25:a3:ce:9a:0f:1c:b7:80:
15:2f:7c:7d:1a:be:fc:42:ca:47:52:50:8a:36:ba:
92:4d:2c:42:3d:ab:91:91:d2:3b:10:0b:c9:09:e0:
7f:20:a3:3d:97:3a:72:1b:49:72:7e:02:f7:86:a0:
3a:16:31:bc:89:e4:4b:22:27:e0:e5:e7:a6:17:be:
d9:97:90:1e:2a:93:2e:c8:f7:ad:fd:cf:78:dd:61:
da:b0:df:f2:bd:57:c7:b4:5d:5c:4d:20:53:c5:cd:
42:15:d7:db:78:71:f7:d9:bb:db:f5:56:c8:11:44:
f1:06:08:ca:c5:86:b4:36:93:b4:59:3e:a6:59:78:
be:e2:ce:fa:a8:54:e9:7a:91:b8:d1:37:f9:e7:02:
f6:ea:ad:7b:f1:e8:b9:4b:f9:22:a1:4f:5d:b1:54:
da:55:fe:39:92:61:8f:76:32:6a:75:f8:84:ab:1c:
69:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:44:E8:55:A6:54:EC:15:5A:68:68:90:7A:6B:8F:C1:74:16:D6:A4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d98f5d-a276-425a-963f-ec5e23660fbc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d98f5d-a276-425a-963f-ec5e23660fbc/1/r0ToVaZU7BVaaGiQemuPwXQW1qQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.209.0/24
185.21.152.0/22
185.114.208.0/22
193.56.60.0/24
194.165.33.0/24
195.54.62.0/23
213.91.0.0/18
213.162.32.0/19
IPv6:
2001:4080::/29
2a03:4420::/32
2a04:1940::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
13273
16073
Signature Algorithm: sha256WithRSAEncryption
3a:26:92:2a:1f:5e:37:37:06:d2:53:c0:6b:12:72:68:cc:a7:
c7:00:d7:fe:c4:ef:fe:75:43:08:3f:12:b4:fc:8b:ee:d4:6f:
8b:f8:f9:5b:48:32:67:4d:48:63:fd:ca:3c:11:db:ab:8e:9c:
3b:f6:73:ba:1b:1a:c0:9b:5d:f1:cc:cc:e8:f4:22:2d:82:41:
ea:e9:ea:e2:af:74:95:5f:3d:f1:29:17:23:38:5a:45:bf:ac:
f7:6b:65:8d:b4:c8:81:75:e0:8d:af:50:b2:ae:ca:37:10:39:
7c:d3:6c:4b:ef:45:02:21:69:b8:a1:51:7d:1c:e1:bb:73:b5:
99:2e:6a:4b:39:e4:c3:39:9a:26:28:2f:1a:ae:24:c7:55:6a:
f3:eb:95:8b:9c:3e:26:62:cd:5f:c6:dd:9b:eb:55:e4:6b:cc:
72:a2:8d:ec:d8:7d:dd:97:ab:81:07:04:37:28:81:b9:47:92:
f4:ef:0f:c2:13:0a:ee:9c:ac:b9:81:59:4e:b2:ac:c7:56:3f:
b6:99:45:d1:d8:32:19:fe:61:01:f9:6a:41:7a:a5:20:fa:86:
d0:db:d4:01:2e:06:ff:e7:db:5b:89:c5:c8:21:11:6a:b8:8e:
78:94:0d:26:fd:d7:2a:b5:5e:e5:70:10:8b:74:ba:9b:4d:25:
f8:2b:b5:a3
-----BEGIN CERTIFICATE-----
MIIF0jCCBLqgAwIBAgIGAJqTi9D6MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMT
KDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRkZGU2NjkwHhcNMjIw
MTAxMDE1NjI2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhZjQ0ZTg1NWE2
NTRlYzE1NWE2ODY4OTA3YTZiOGZjMTc0MTZkNmE0MIIBIjANBgkqhkiG9w0BAQEF
AAOCAQ8AMIIBCgKCAQEAk6jo/iiqZDI+J8HX3zMEQaNrvCxUXpP/RjfLPH0rtu/Q
gH7WD9ihaOUvDJzSqTHPqFGCcnoya5v1z/j+Mej1km74zC8N3cJZ9KmDpXa5Zroo
JaPOmg8ct4AVL3x9Gr78QspHUlCKNrqSTSxCPauRkdI7EAvJCeB/IKM9lzpyG0ly
fgL3hqA6FjG8ieRLIifg5eemF77Zl5AeKpMuyPet/c943WHasN/yvVfHtF1cTSBT
xc1CFdfbeHH32bvb9VbIEUTxBgjKxYa0NpO0WT6mWXi+4s76qFTpepG40Tf55wL2
6q178ei5S/kioU9dsVTaVf45kmGPdjJqdfiEqxxp2QIDAQABo4IC6jCCAuYwHQYD
VR0OBBYEFK9E6FWmVOwVWmhokHprj8F0FtakMB8GA1UdIwQYMBaAFCqUqN1VSucB
ByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMGAG
CCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jZXIw
ggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJiL2Q5OGY1ZC1hMjc2LTQyNWEt
OTYzZi1lYzVlMjM2NjBmYmMvMS8wfAYIKwYBBQUHMAqGcHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIvZDk4ZjVkLWEyNzYtNDI1YS05
NjNmLWVjNWUyMzY2MGZiYy8xL3IwVG9WYVpVN0JWYWFHaVFlbXVQd1hRVzFxUS5t
ZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5ldC9ub3RpZmljYXRp
b24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMyUUhWVjNkNW1rLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTA2
BAIAATAwAwQAW9jRAwQCuRWYAwQCuXLQAwQAwTg8AwQAwqUhAwQBwzY+AwQG1VsA
AwQF1aIgMBsEAgACMBUDBQMgAUCAAwUAKgNEIAMFAyoEGUAwHQYIKwYBBQUHAQgB
Af8EDjAMoAowCAICM9kCAj7JMA0GCSqGSIb3DQEBCwUAA4IBAQA6JpIqH143NwbS
U8BrEnJozKfHANf+xO/+dUMIPxK0/Ivu1G+L+PlbSDJnTUhj/co8Edurjpw79nO6
GxrAm13xzMzo9CItgkHq6erir3SVXz3xKRcjOFpFv6z3a2WNtMiBdeCNr1Cyrso3
EDl802xL70UCIWm4oVF9HOG7c7WZLmpLOeTDOZomKC8ariTHVWrz65WLnD4mYs1f
xt2b61Xka8xyoo3s2H3dl6uBBwQ3KIG5R5L07w/CEwrunKy5gVlOsqzHVj+2mUXR
2DIZ/mEB+WpBeqUg+obQ29QBLgb/59tbicXIIRFquI54lA0m/dcqtV7lcBCLdLqb
TSX4K7Wj
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:03:00 2024 by rpki-client on console-fra.rpki-client.org