Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vd4k4KjawmTwa31mFTJ5YcwM7jQ.cer
File: vd4k4KjawmTwa31mFTJ5YcwM7jQ.cer (raw, json)
Hash identifier: NMK2GFrSTN/HGaDcbBn/5H2IcnIVEYvzBC8p/B9RIrw=
Subject key identifier: BD:DE:24:E0:A8:DA:C2:64:F0:6B:7D:66:15:32:79:61:CC:0C:EE:34
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018BBA885AB48C34AEC8AA6B54DA2D81CA7D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c8/6f87ee-ea30-41b3-b6f9-ab968ca1a85e/1/vd4k4KjawmTwa31mFTJ5YcwM7jQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c8/6f87ee-ea30-41b3-b6f9-ab968ca1a85e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 10 Nov 2023 18:39:40 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 62.233.33.0/24
IP: 2a10:e980::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ba:88:5a:b4:8c:34:ae:c8:aa:6b:54:da:2d:81:ca:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 10 18:39:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdde24e0a8dac264f06b7d6615327961cc0cee34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:78:0e:3e:8d:fa:fa:be:b4:6e:8b:74:4c:60:
27:27:cf:24:cb:25:6a:de:0d:7b:9b:36:b3:09:1b:
c5:7c:cd:af:1b:3b:76:83:3a:68:9c:27:88:7c:45:
44:83:f2:04:9b:6b:76:0b:fa:7e:73:4c:00:f2:6f:
59:39:80:6d:69:53:e6:d7:21:10:f2:7d:38:10:a5:
de:9f:96:46:f5:19:ba:bf:44:08:b6:f1:ea:1f:8a:
ff:39:ef:bb:94:42:7a:26:2b:96:c2:71:9a:23:ea:
fb:49:3e:2e:36:4f:41:2d:e9:db:17:5f:49:53:eb:
c6:a1:1b:9c:f9:8b:3d:33:a6:25:7d:69:fc:21:bc:
6b:54:1b:dc:69:81:81:14:f2:bc:6a:f0:e1:85:7c:
a2:58:ed:58:04:d5:c7:56:b8:c0:b5:33:7b:a6:08:
fa:31:16:20:9b:ea:fa:3c:57:2f:25:c9:bb:c1:c2:
4a:f2:3e:ef:c7:ea:3d:b5:76:ba:e9:b1:3c:04:52:
2b:98:eb:6b:d4:d5:ba:30:ca:cb:66:c2:a3:0f:40:
71:b6:93:50:37:1e:1e:53:85:52:1b:e8:09:86:25:
21:34:ca:e3:62:00:50:31:c1:19:63:13:2c:cb:20:
0d:80:e4:f0:31:87:6d:1b:68:3b:3b:f0:d4:d9:16:
db:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:DE:24:E0:A8:DA:C2:64:F0:6B:7D:66:15:32:79:61:CC:0C:EE:34
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/6f87ee-ea30-41b3-b6f9-ab968ca1a85e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/6f87ee-ea30-41b3-b6f9-ab968ca1a85e/1/vd4k4KjawmTwa31mFTJ5YcwM7jQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.33.0/24
IPv6:
2a10:e980::/29
Signature Algorithm: sha256WithRSAEncryption
24:e6:1b:ec:fe:26:f0:68:51:74:19:d8:1d:51:d1:e5:99:1f:
67:12:85:1f:77:42:fd:43:2c:e5:91:6a:d1:22:04:8a:51:ae:
f6:f1:e6:bf:fb:e4:c5:d3:8f:c7:ee:cf:9b:d2:1b:80:b7:30:
c7:e6:7c:9e:a1:df:91:fa:1a:35:2b:6a:e2:48:fc:2d:85:dc:
9a:91:0e:1f:c7:db:af:69:5b:3d:54:13:5f:e1:c6:24:ac:77:
b6:4f:cd:7a:7e:c6:f8:36:93:b0:a0:20:4e:64:9b:c9:67:86:
55:d6:00:08:a9:ba:3a:24:a9:16:92:36:bb:a8:66:bd:ab:f1:
98:f5:13:e4:d3:cd:2d:8a:a0:ac:6f:e7:9a:a1:5b:21:35:cb:
e4:93:b2:c0:ba:c7:3c:5f:53:6a:09:0e:ae:16:25:39:ea:de:
ce:8e:9f:7c:34:bd:1e:63:0d:63:61:21:9c:2f:8f:2a:eb:dd:
3f:ad:79:a2:1a:2c:a0:d0:7b:62:12:cb:10:6e:9a:c5:30:8e:
f9:20:d0:af:6b:d2:f2:9e:c1:cf:e3:16:c1:96:e5:0e:1e:61:
93:ff:3c:1c:d1:a4:21:c6:28:4a:c3:ab:11:7a:00:bd:cc:58:
4d:a5:3b:7f:51:09:57:89:90:4e:a9:ee:06:eb:9e:44:e1:5b:
38:be:f6:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:50:52 2025 by rpki-client