Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rF_d0Ki7Z2HkGvzy23Zd61bNuFY.cer
File: rF_d0Ki7Z2HkGvzy23Zd61bNuFY.cer (raw, json)
Hash identifier: RchtWt+TXy+AcKKEtqEb55rorvNPIbpzelGKY2Aattc=
Subject key identifier: AC:5F:DD:D0:A8:BB:67:61:E4:1A:FC:F2:DB:76:5D:EB:56:CD:B8:56
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856E65EB4CD6F81AFE267625352E579E28
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/rF_d0Ki7Z2HkGvzy23Zd61bNuFY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 17:34:11 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 194.104.142.0/24
IP: 2a11:62c0::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:65:eb:4c:d6:f8:1a:fe:26:76:25:35:2e:57:9e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 17:34:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac5fddd0a8bb6761e41afcf2db765deb56cdb856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:61:db:f5:10:c0:d8:f4:9b:2b:4c:a8:fa:70:
fe:99:88:27:3d:bb:6a:78:3c:f0:35:7b:16:33:9b:
c1:f0:8e:ac:90:a0:52:ef:0a:95:8d:0a:2f:ac:c3:
5f:fa:c2:b2:b8:e9:08:99:d5:41:db:95:ce:ba:c2:
9c:84:ba:fe:61:5d:99:c1:1c:dc:9f:02:bf:9a:c3:
4d:cf:88:bf:f3:28:7d:0a:e2:2e:29:b8:26:ec:5c:
59:d2:fb:cd:c4:21:be:3c:16:2a:9f:b2:00:a3:e3:
72:39:4c:fe:fb:0a:e3:ed:9f:20:53:c5:7d:81:fb:
f0:b8:6b:9f:c2:f4:ba:a3:bd:69:d7:53:bb:cf:d7:
24:16:94:de:db:6f:9d:95:8d:39:55:3c:a6:55:07:
5b:34:77:36:1f:9a:99:02:bb:d0:db:50:58:3a:96:
df:b9:7a:94:b1:63:bb:85:d1:d4:12:cb:ea:e1:8a:
e1:d8:ad:f0:ff:ff:34:e6:12:30:e4:11:c7:88:ff:
98:80:1f:98:48:f0:1f:a2:de:fa:94:8f:09:5a:cd:
ab:eb:00:1c:6d:66:0f:65:f6:2b:37:82:17:84:a5:
aa:fe:2f:58:47:9d:fe:5e:c7:57:45:18:5b:24:fe:
d3:69:a9:90:cc:b5:0e:13:b6:de:8c:24:74:27:7b:
8f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5F:DD:D0:A8:BB:67:61:E4:1A:FC:F2:DB:76:5D:EB:56:CD:B8:56
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c938af-46b2-44f3-80de-052f5fd4e28b/1/rF_d0Ki7Z2HkGvzy23Zd61bNuFY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.142.0/24
IPv6:
2a11:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
6d:eb:f4:ee:f8:91:fa:6b:51:5a:1c:9b:08:75:75:c3:c2:50:
6a:dc:72:af:b0:80:cd:2b:06:91:c3:86:9c:73:52:3e:ea:02:
eb:a9:70:e3:62:be:18:00:b5:82:d2:7f:33:e7:83:99:7d:b8:
ca:d6:19:d0:c6:1e:3d:8b:e5:2c:c3:c8:2b:6b:cd:40:99:a4:
10:9a:b1:0a:e5:c5:78:ae:2f:b0:d3:49:58:10:53:2d:c1:84:
29:75:b9:e5:ff:14:92:d5:e6:a6:44:83:9d:12:32:0c:36:b8:
ab:d6:0d:dd:ec:03:c2:00:97:cf:fb:d2:7b:16:b9:43:cb:7f:
e9:ee:7d:fa:57:f7:9e:2e:a5:ec:98:c7:d1:7a:a1:33:6f:1c:
4c:8d:2e:95:53:ab:96:5c:71:f9:d7:48:7c:0f:73:00:0b:18:
8f:73:ef:26:af:dc:68:ca:4c:1d:ca:5f:7d:f1:5e:5d:dc:d8:
db:b5:70:b5:32:a3:d3:d6:92:5c:e2:07:8a:ef:9e:80:e2:d7:
6e:4f:c2:51:5b:a7:81:82:03:c2:95:76:c5:7f:72:46:33:1b:
20:55:a9:72:c1:fa:2a:10:dc:37:47:fa:a0:71:06:81:5b:0d:
18:ca:b3:cb:f5:03:1a:20:6a:48:99:05:01:fc:63:fe:24:fa:
71:2d:5d:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:24:52 2025 by rpki-client