Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vGniBh6MfO5C76T--fMPe_b20FM.cer
File: vGniBh6MfO5C76T--fMPe_b20FM.cer (raw, json)
Hash identifier: TqMr2FMXBQM/ENvEcr5+UA0Rb8L1F1iQH2NvckcSiEM=
Subject key identifier: BC:69:E2:06:1E:8C:7C:EE:42:EF:A4:FE:F9:F3:0F:7B:F6:F6:D0:53
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: B2F3F1786F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0a/fefc97-81cf-4fe4-ac75-c44de5fd78ba/1/vGniBh6MfO5C76T--fMPe_b20FM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0a/fefc97-81cf-4fe4-ac75-c44de5fd78ba/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 08 Jun 2022 16:01:59 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 93.190.8.0/22
IP: 185.254.52.0/22
IP: 193.17.4.0/22
IP: 193.111.76.0/22
IP: 193.138.172.0/22
IP: 193.187.108.0/22
IP: 2a02:f240::/29
IP: 2a06:9ec0::/29
IP: 2a07:e800::/29
IP: 2a0c:47c0::/29
IP: 2a0c:7dc0::/29
IP: 2a0c:9ac0::/29
IP: 2a0c:d7c0::/29
IP: 2a0d:f1c0::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 768596867183 (0xb2f3f1786f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 8 16:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc69e2061e8c7cee42efa4fef9f30f7bf6f6d053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6d:62:69:31:a1:48:0d:1c:10:48:d3:d9:ce:
58:89:60:24:f1:36:d1:b0:2f:e9:9a:3a:7a:f3:cb:
55:78:a7:71:6a:44:6e:72:63:36:99:85:d8:3f:4b:
20:c7:c5:63:85:f8:a0:98:9d:96:61:87:04:8d:f1:
82:e5:32:fa:fd:ad:7f:6e:14:d1:17:28:19:7f:98:
33:18:f2:19:24:1a:1f:b2:54:8b:f9:75:d5:fd:36:
d1:0d:62:75:7a:d0:41:bb:6b:64:3a:38:65:b4:09:
1e:26:d4:a0:a9:26:cc:d8:32:3e:45:46:a8:87:2c:
58:15:72:82:49:c4:17:0d:ee:ce:9b:03:bf:8e:8c:
30:2a:c7:cb:60:a9:a8:aa:6c:97:70:63:01:db:21:
75:65:07:70:7e:e6:98:22:14:44:af:b4:e6:8e:f2:
22:9f:7e:ba:25:1f:60:1d:d2:e1:51:10:d1:d7:48:
70:5c:13:dd:d1:2b:47:9b:fc:26:ff:5e:da:0d:43:
05:28:4e:bc:fc:76:a3:ef:fe:79:ff:94:41:80:2b:
bd:97:f6:13:9b:a5:11:a1:e8:3e:5c:e6:16:10:38:
fd:25:38:9f:d3:1d:3f:93:f5:70:5c:09:e0:90:6b:
ca:b7:38:15:e8:92:a2:4e:41:85:e5:99:0d:64:6d:
1e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:69:E2:06:1E:8C:7C:EE:42:EF:A4:FE:F9:F3:0F:7B:F6:F6:D0:53
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fefc97-81cf-4fe4-ac75-c44de5fd78ba/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fefc97-81cf-4fe4-ac75-c44de5fd78ba/1/vGniBh6MfO5C76T--fMPe_b20FM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.8.0/22
185.254.52.0/22
193.17.4.0/22
193.111.76.0/22
193.138.172.0/22
193.187.108.0/22
IPv6:
2a02:f240::/29
2a06:9ec0::/29
2a07:e800::/29
2a0c:47c0::/29
2a0c:7dc0::/29
2a0c:9ac0::/29
2a0c:d7c0::/29
2a0d:f1c0::/29
Signature Algorithm: sha256WithRSAEncryption
b0:b2:2e:d0:5a:0d:67:9f:ec:a6:2e:b0:66:97:8c:1f:5a:2a:
42:73:5e:b6:fa:82:22:58:5f:38:1d:63:09:86:c7:db:9c:59:
45:70:37:87:04:fd:fe:74:3e:cb:a4:40:c4:27:e4:07:74:dd:
5d:07:0e:00:48:39:c4:45:95:5e:7f:d4:12:e4:50:b8:b4:86:
f4:26:75:75:87:a5:f1:89:3c:6a:67:d7:99:6b:3d:9c:b9:7b:
92:4b:52:cb:6f:86:dc:f3:e0:8d:92:26:39:24:70:7c:d9:34:
15:69:7c:f0:77:1f:79:45:59:e3:f1:c9:e6:32:7e:61:44:a6:
e9:2d:86:78:86:d2:3b:0e:7c:ec:14:f2:e4:54:cb:b2:01:ee:
ed:5c:8c:04:6e:e1:73:68:81:e0:f4:65:26:ab:05:b0:94:61:
67:3c:5b:c3:7d:dd:29:39:4e:29:d4:50:37:11:c7:c1:8c:78:
06:a8:9b:f7:fc:4d:c6:60:0c:76:16:a3:80:30:1f:20:c5:35:
dd:99:30:03:02:f3:46:22:8e:3f:06:4f:35:1e:7c:f9:2f:6a:
0e:83:12:1c:eb:4d:65:a0:d6:29:52:4f:39:28:4d:d9:f5:24:
8a:a7:37:6f:07:a7:b4:54:92:6e:2e:1e:65:57:04:ad:4e:b7:
84:e8:78:3b
-----BEGIN CERTIFICATE-----
MIIFyjCCBLKgAwIBAgIGALLz8XhvMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMT
KDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRkZGU2NjkwHhcNMjIw
NjA4MTYwMTU5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiYzY5ZTIwNjFl
OGM3Y2VlNDJlZmE0ZmVmOWYzMGY3YmY2ZjZkMDUzMIIBIjANBgkqhkiG9w0BAQEF
AAOCAQ8AMIIBCgKCAQEAum1iaTGhSA0cEEjT2c5YiWAk8TbRsC/pmjp688tVeKdx
akRucmM2mYXYP0sgx8VjhfigmJ2WYYcEjfGC5TL6/a1/bhTRFygZf5gzGPIZJBof
slSL+XXV/TbRDWJ1etBBu2tkOjhltAkeJtSgqSbM2DI+RUaohyxYFXKCScQXDe7O
mwO/jowwKsfLYKmoqmyXcGMB2yF1ZQdwfuaYIhREr7TmjvIin366JR9gHdLhURDR
10hwXBPd0StHm/wm/17aDUMFKE68/Haj7/55/5RBgCu9l/YTm6URoeg+XOYWEDj9
JTif0x0/k/VwXAngkGvKtzgV6JKiTkGF5ZkNZG0ejwIDAQABo4IC4jCCAt4wHQYD
VR0OBBYEFLxp4gYejHzuQu+k/vnzD3v29tBTMB8GA1UdIwQYMBaAFCqUqN1VSucB
ByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMGAG
CCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jZXIw
ggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFyc3luYzovL3Jwa2ku
cmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBhL2ZlZmM5Ny04MWNmLTRmZTQt
YWM3NS1jNDRkZTVmZDc4YmEvMS8wfAYIKwYBBQUHMAqGcHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGEvZmVmYzk3LTgxY2YtNGZlNC1h
Yzc1LWM0NGRlNWZkNzhiYS8xL3ZHbmlCaDZNZk81Qzc2VC0tZk1QZV9iMjBGTS5t
ZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5ldC9ub3RpZmljYXRp
b24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMyUUhWVjNkNW1rLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMH0GCCsGAQUFBwEHAQH/BG4wbDAq
BAIAATAkAwQCXb4IAwQCuf40AwQCwREEAwQCwW9MAwQCwYqsAwQCwbtsMD4EAgAC
MDgDBQMqAvJAAwUDKgaewAMFAyoH6AADBQMqDEfAAwUDKgx9wAMFAyoMmsADBQMq
DNfAAwUDKg3xwDANBgkqhkiG9w0BAQsFAAOCAQEAsLIu0FoNZ5/spi6wZpeMH1oq
QnNetvqCIlhfOB1jCYbH25xZRXA3hwT9/nQ+y6RAxCfkB3TdXQcOAEg5xEWVXn/U
EuRQuLSG9CZ1dYel8Yk8amfXmWs9nLl7kktSy2+G3PPgjZImOSRwfNk0FWl88Hcf
eUVZ4/HJ5jJ+YUSm6S2GeIbSOw587BTy5FTLsgHu7VyMBG7hc2iB4PRlJqsFsJRh
Zzxbw33dKTlOKdRQNxHHwYx4Bqib9/xNxmAMdhajgDAfIMU13ZkwAwLzRiKOPwZP
NR58+S9qDoMSHOtNZaDWKVJPOShN2fUkiqc3bwentFSSbi4eZVcErU63hOh4Ow==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:03:39 2024 by rpki-client on console-fra.rpki-client.org