Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sMj9k8RydaHxSoflrqhgBUmpEYA.cer
File: sMj9k8RydaHxSoflrqhgBUmpEYA.cer (raw, json)
Hash identifier: tBL7QiuXb3DW1hDdcQb1M/dFUKflMFnduS3w6oQ6RkM=
Subject key identifier: B0:C8:FD:93:C4:72:75:A1:F1:4A:87:E5:AE:A8:60:05:49:A9:11:80
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0184ECE1DAB0BC40031EE253A8B4E625742A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d3/9fb6d4-e82e-4837-ae4e-ccd359fc2f42/1/sMj9k8RydaHxSoflrqhgBUmpEYA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d3/9fb6d4-e82e-4837-ae4e-ccd359fc2f42/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 07 Dec 2022 13:58:55 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 91.239.59.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:e1:da:b0:bc:40:03:1e:e2:53:a8:b4:e6:25:74:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Dec 7 13:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0c8fd93c47275a1f14a87e5aea8600549a91180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ed:5c:88:17:ca:5c:cb:9e:b7:fc:c8:65:50:
4c:f9:2e:1b:ad:d9:c0:3b:c7:3c:51:a2:83:6a:87:
1a:4d:14:c6:35:04:78:c4:7a:03:85:a3:bf:1c:13:
5f:76:d5:83:79:8c:f5:2a:17:09:54:dd:91:8d:af:
6c:3a:aa:50:d4:df:c4:22:07:64:f9:3b:b8:97:b6:
12:8f:b4:8b:a1:46:88:e2:f8:a5:3d:ed:ae:9b:00:
fa:2b:c3:22:7d:cb:96:c0:6e:3d:72:d1:63:5e:bb:
c9:b4:61:c7:78:9e:b3:76:93:43:a9:40:bc:6f:c9:
1c:b6:e3:67:1c:ae:20:fb:82:e3:d8:8f:ce:5d:14:
3b:39:93:b0:15:1e:7d:ef:ad:b6:07:99:6b:a9:6c:
64:ac:09:71:3a:8d:65:b7:a5:5a:60:96:61:a3:13:
b7:85:95:44:58:db:59:7c:44:8c:31:3b:1d:12:90:
da:5b:96:dc:bf:50:1a:6e:06:68:5c:cb:ef:84:0c:
df:98:e1:80:74:04:17:9e:81:d6:1e:d2:1d:cb:f7:
93:ee:c6:8b:c7:ed:dd:1e:dd:33:78:e7:66:38:03:
b9:df:8f:93:5a:1d:4f:7a:07:91:32:20:a1:b6:93:
70:b7:f0:18:27:7b:5a:25:45:05:82:fb:c5:12:d0:
33:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C8:FD:93:C4:72:75:A1:F1:4A:87:E5:AE:A8:60:05:49:A9:11:80
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/9fb6d4-e82e-4837-ae4e-ccd359fc2f42/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/9fb6d4-e82e-4837-ae4e-ccd359fc2f42/1/sMj9k8RydaHxSoflrqhgBUmpEYA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.59.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:09:39:04:93:bb:86:bd:11:52:eb:31:45:11:7f:dd:a6:94:
5b:7a:29:7e:3b:7d:aa:03:52:47:62:b3:16:07:d0:0f:58:16:
29:75:b6:93:b5:c3:ef:ca:2d:0d:93:b7:12:6a:7b:8b:73:52:
9e:f1:66:70:f4:3d:7b:63:00:5a:24:f1:dd:2c:e9:4e:47:b8:
6a:a8:a5:0a:85:fc:92:73:70:74:81:f0:69:3a:da:01:0a:4f:
8a:c1:76:40:6e:1b:da:55:4e:37:b6:be:ff:3a:58:9c:b4:44:
cd:9d:75:ba:a0:cf:eb:d5:76:72:da:1a:ae:19:3c:52:eb:1c:
c0:19:86:01:64:42:68:07:74:23:e4:a7:9a:d7:f4:12:81:d3:
00:fc:d3:37:72:ba:56:13:cc:3c:b4:6b:85:62:98:ae:b5:ba:
49:21:e5:fe:9f:b1:34:7c:83:16:b4:03:09:2a:16:50:cd:32:
08:89:b9:9a:26:a8:ec:ad:f4:e7:9b:33:4b:c2:47:62:9f:a1:
ed:11:42:5f:ff:5c:e9:f9:9b:0a:f3:47:01:f7:24:e4:ed:54:
ec:14:23:b4:cf:c0:cd:2e:65:a6:e9:bb:24:08:be:56:12:7f:
75:be:ea:aa:59:ac:bf:bd:7a:ff:ef:9a:1f:78:ec:4a:27:de:
cf:92:bf:a9
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgISAYTs4dqwvEADHuJTqLTmJXQqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjIxMjA3MTM1ODU1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGM4ZmQ5M2M0NzI3NWExZjE0YTg3ZTVhZWE4NjAwNTQ5YTkxMTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+1ciBfKXMuet/zIZVBM+S4brdnA
O8c8UaKDaocaTRTGNQR4xHoDhaO/HBNfdtWDeYz1KhcJVN2Rja9sOqpQ1N/EIgdk
+Tu4l7YSj7SLoUaI4vilPe2umwD6K8MifcuWwG49ctFjXrvJtGHHeJ6zdpNDqUC8
b8kctuNnHK4g+4Lj2I/OXRQ7OZOwFR597622B5lrqWxkrAlxOo1lt6VaYJZhoxO3
hZVEWNtZfESMMTsdEpDaW5bcv1AabgZoXMvvhAzfmOGAdAQXnoHWHtIdy/eT7saL
x+3dHt0zeOdmOAO534+TWh1PegeRMiChtpNwt/AYJ3taJUUFgvvFEtAzBwIDAQAB
o4IChDCCAoAwHQYDVR0OBBYEFLDI/ZPEcnWh8UqH5a6oYAVJqRGAMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2QzLzlmYjZk
NC1lODJlLTQ4MzctYWU0ZS1jY2QzNTlmYzJmNDIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDMvOWZiNmQ0
LWU4MmUtNDgzNy1hZTRlLWNjZDM1OWZjMmY0Mi8xL3NNajlrOFJ5ZGFIeFNvZmxy
cWhnQlVtcEVZQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAW+87MA0GCSqGSIb3DQEBCwUAA4IBAQBNCTkE
k7uGvRFS6zFFEX/dppRbeil+O32qA1JHYrMWB9APWBYpdbaTtcPvyi0Nk7cSanuL
c1Ke8WZw9D17YwBaJPHdLOlOR7hqqKUKhfySc3B0gfBpOtoBCk+KwXZAbhvaVU43
tr7/OlictETNnXW6oM/r1XZy2hquGTxS6xzAGYYBZEJoB3Qj5Kea1/QSgdMA/NM3
crpWE8w8tGuFYpiutbpJIeX+n7E0fIMWtAMJKhZQzTIIibmaJqjsrfTnmzNLwkdi
n6HtEUJf/1zp+ZsK80cB9yTk7VTsFCO0z8DNLmWm6bskCL5WEn91vuqqWay/vXr/
75ofeOxKJ97Pkr+p
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:17 2023 by rpki-client on console-ams.rpki-client.org