Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vYdIa1VlkDZP1OClMyCFhUMQB4c.cer
File: vYdIa1VlkDZP1OClMyCFhUMQB4c.cer (raw, json)
Hash identifier: vd9T6HN+OefejVWCYcCYtiQGGOPkJBWFtO+spbwQYsc=
Subject key identifier: BD:87:48:6B:55:65:90:36:4F:D4:E0:A5:33:20:85:85:43:10:07:87
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018570890A9DEEA741B6E8BF66BBF2B906D0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ab/17ab7e-0f89-4440-bd35-23441e7fe03d/1/vYdIa1VlkDZP1OClMyCFhUMQB4c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ab/17ab7e-0f89-4440-bd35-23441e7fe03d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 03:31:47 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 60267
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:89:0a:9d:ee:a7:41:b6:e8:bf:66:bb:f2:b9:06:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:31:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd87486b556590364fd4e0a53320858543100787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d7:d7:bc:15:85:cb:8c:ed:4a:ff:c9:51:5e:
8b:4d:b5:f8:c3:3c:98:7d:f9:9b:ee:82:ff:50:d8:
29:96:8c:2f:fb:81:ec:00:73:7c:71:03:1e:12:f0:
1c:ad:fd:1d:d7:60:24:86:a4:f5:38:02:38:2f:bd:
46:43:70:fa:c9:3f:d6:7a:1a:ea:f4:80:0f:78:73:
e9:39:78:4b:d3:63:8e:52:7c:f5:c9:bc:b7:89:d0:
1a:b0:8c:f1:5e:b7:97:3d:ec:40:bf:fe:ca:3b:d9:
f1:68:51:1e:91:f4:cd:01:cd:06:1f:1f:db:63:ee:
86:6d:d9:5f:04:77:fb:cc:74:73:4e:71:b9:4a:9f:
08:b6:b7:df:2c:33:16:a8:e5:1d:c6:e7:0e:3c:74:
d7:99:f2:d1:9d:07:05:55:cf:5c:d3:6c:d6:93:8d:
ba:09:9b:e4:d4:0b:e8:9b:50:7d:b4:80:e1:59:a0:
09:fb:2c:bb:47:93:92:d1:68:8d:15:f7:be:fa:fc:
fc:fa:ca:43:16:99:5a:f6:a4:96:f5:dd:78:80:a5:
1b:5d:3a:dd:05:74:e0:17:4a:ff:b4:0f:85:2f:f7:
2d:a2:78:51:6a:8f:1a:fc:0a:05:e2:3e:dd:a1:9a:
98:44:dd:f2:6f:d6:fb:3a:63:c3:bc:91:ec:01:4a:
2d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:87:48:6B:55:65:90:36:4F:D4:E0:A5:33:20:85:85:43:10:07:87
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/17ab7e-0f89-4440-bd35-23441e7fe03d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/17ab7e-0f89-4440-bd35-23441e7fe03d/1/vYdIa1VlkDZP1OClMyCFhUMQB4c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60267
Signature Algorithm: sha256WithRSAEncryption
ac:d4:5f:91:03:75:1f:8b:15:b9:ce:3c:2a:67:8b:91:99:8f:
06:fb:74:27:89:bf:dc:a6:5e:68:74:39:f1:34:1d:37:6d:ca:
dc:14:94:65:7e:13:5c:55:84:fa:69:51:7d:17:3b:0a:4f:bd:
52:dd:a1:f2:1e:91:a7:cb:ab:50:1c:a6:ab:51:bd:58:ad:90:
c5:85:4b:20:59:04:81:b8:fd:62:7a:0d:9b:e1:0b:37:c6:05:
78:b9:77:89:be:04:f5:ef:ae:a9:94:31:b3:73:58:52:8d:a1:
c3:ba:f4:f4:fe:53:49:a4:cd:e5:16:7d:80:19:26:9f:88:b8:
45:33:37:17:4a:93:fd:22:9e:24:c8:f7:6f:b3:22:ba:1c:42:
70:ba:d1:3f:93:52:fc:aa:27:10:9e:30:c2:8e:aa:22:1e:02:
5c:b1:b6:b6:1c:af:16:85:81:bd:a6:da:5e:cf:2c:75:41:e5:
e6:49:64:60:4e:f9:e3:5d:9d:91:4a:eb:54:25:48:aa:14:63:
b7:cc:32:4c:55:6b:bc:9c:3d:b5:2f:01:59:ea:03:ab:9d:c2:
b6:95:4f:80:c3:6f:a4:24:71:8c:f4:5d:f8:54:63:a7:16:00:
52:33:47:7d:a4:91:c2:c1:9c:05:83:1d:68:42:99:2e:f7:c1:
46:68:98:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 05:14:40 2025 by rpki-client