Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wt3DsJ0tmYShnb-KfY_KdTo2pNY.cer
File: wt3DsJ0tmYShnb-KfY_KdTo2pNY.cer (raw, json)
Hash identifier: KMOCNchQb8qhtNipddyg+7E2xjmx5ptZoUVvRDiJLbY=
Subject key identifier: C2:DD:C3:B0:9D:2D:99:84:A1:9D:BF:8A:7D:8F:CA:75:3A:36:A4:D6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0187B40BE04571728F4544B7FEF2856E0020
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bd/e192ac-13e0-4f15-bab1-3f6588eba4ba/1/wt3DsJ0tmYShnb-KfY_KdTo2pNY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bd/e192ac-13e0-4f15-bab1-3f6588eba4ba/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 24 Apr 2023 16:14:49 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 198764
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b4:0b:e0:45:71:72:8f:45:44:b7:fe:f2:85:6e:00:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 24 16:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2ddc3b09d2d9984a19dbf8a7d8fca753a36a4d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:65:87:8e:6b:14:29:41:d6:bb:e6:d7:3f:b6:
20:80:82:30:e0:5f:bb:34:5e:2a:9d:11:c9:24:1e:
3a:6e:39:bb:c0:4e:af:b1:12:e8:85:d3:79:15:c0:
bd:83:53:87:d0:35:86:f5:ae:16:2e:eb:a9:92:88:
43:e2:f1:ff:88:45:d5:93:f2:be:12:f5:b0:78:d8:
50:cd:c3:f9:07:b1:0c:30:ec:d2:ae:2f:45:a7:58:
23:0c:95:cc:c7:89:d6:d3:bf:13:e0:2b:3a:33:31:
5d:e5:e6:8a:07:d3:5b:49:81:01:e3:3a:01:ca:69:
57:d3:f2:d4:f3:52:7f:86:51:11:85:de:1c:c7:08:
45:88:8f:2a:2e:09:8e:e6:af:9e:fd:9b:9e:8f:17:
f2:2d:a3:48:d8:2f:a3:20:e6:36:2f:66:6d:a6:2b:
a7:3b:54:04:f5:5e:bc:ef:3f:db:19:1e:15:61:31:
5f:f6:cf:c8:25:2d:23:59:3e:dd:dc:54:1d:eb:63:
bd:9a:fe:68:c0:d1:7b:70:56:c3:49:38:7c:22:60:
30:ce:06:ef:6f:cb:49:63:06:28:38:52:38:31:31:
c1:b6:9c:9d:1c:3a:c7:86:4a:79:95:85:2a:b4:79:
b4:3d:72:d6:aa:c6:e8:7a:39:64:2b:52:be:65:59:
e7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:DD:C3:B0:9D:2D:99:84:A1:9D:BF:8A:7D:8F:CA:75:3A:36:A4:D6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/e192ac-13e0-4f15-bab1-3f6588eba4ba/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/e192ac-13e0-4f15-bab1-3f6588eba4ba/1/wt3DsJ0tmYShnb-KfY_KdTo2pNY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198764
Signature Algorithm: sha256WithRSAEncryption
8b:d1:05:0d:6b:c7:7f:c9:29:74:3f:12:a5:61:43:ba:82:96:
78:3d:df:2b:df:fd:26:eb:bc:51:cc:46:8c:2e:3a:ec:68:6b:
54:ab:4c:d9:f5:85:84:3e:3a:ab:ea:c3:95:d9:aa:04:10:25:
5c:34:f6:57:2b:ec:39:e9:ac:7c:ae:d5:4c:b9:e9:55:f0:9c:
1a:35:1c:51:c1:b0:02:3a:e5:ad:a5:da:9a:34:d7:58:d2:5f:
19:d1:87:6b:81:03:79:8e:bc:71:14:0b:99:7e:b6:f9:26:34:
7a:22:0c:d3:98:64:f0:e8:b7:0e:67:3d:20:5c:de:ed:51:7b:
c6:c2:f8:ec:96:6a:7e:36:1d:ee:6c:36:0e:22:f4:1a:f6:02:
01:13:0f:7a:96:28:cb:b2:71:13:17:32:bf:a9:ec:60:e4:8b:
4f:c9:75:21:4e:08:62:c3:0a:85:a0:cc:2f:5a:75:63:a4:8b:
31:15:a5:39:5f:37:6d:35:84:5d:b8:ba:5a:9e:a7:28:37:12:
a1:61:33:d5:4a:d0:05:15:84:26:24:4a:47:e6:f0:c7:a9:58:
a3:f8:39:33:3e:e0:b5:9e:ff:35:17:9c:ef:71:39:41:8a:7b:
c2:40:99:db:97:4b:df:2a:91:eb:a3:87:e1:90:04:08:dc:26:
9d:ec:e3:0f
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAYe0C+BFcXKPRUS3/vKFbgAgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMwNDI0MTYxNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMmRkYzNiMDlkMmQ5OTg0YTE5ZGJmOGE3ZDhmY2E3NTNhMzZhNGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2WHjmsUKUHWu+bXP7YggIIw4F+7
NF4qnRHJJB46bjm7wE6vsRLohdN5FcC9g1OH0DWG9a4WLuupkohD4vH/iEXVk/K+
EvWweNhQzcP5B7EMMOzSri9Fp1gjDJXMx4nW078T4Cs6MzFd5eaKB9NbSYEB4zoB
ymlX0/LU81J/hlERhd4cxwhFiI8qLgmO5q+e/ZuejxfyLaNI2C+jIOY2L2Ztpiun
O1QE9V687z/bGR4VYTFf9s/IJS0jWT7d3FQd62O9mv5owNF7cFbDSTh8ImAwzgbv
b8tJYwYoOFI4MTHBtpydHDrHhkp5lYUqtHm0PXLWqsboejlkK1K+ZVnnIQIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFMLdw7CdLZmEoZ2/in2PynU6NqTWMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JkL2UxOTJh
Yy0xM2UwLTRmMTUtYmFiMS0zZjY1ODhlYmE0YmEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmQvZTE5MmFj
LTEzZTAtNGYxNS1iYWIxLTNmNjU4OGViYTRiYS8xL3d0M0RzSjB0bVlTaG5iLUtm
WV9LZFRvMnBOWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMIbDANBgkqhkiG9w0BAQsFAAOCAQEAi9EFDWvHf8kp
dD8SpWFDuoKWeD3fK9/9Juu8UcxGjC467GhrVKtM2fWFhD46q+rDldmqBBAlXDT2
VyvsOemsfK7VTLnpVfCcGjUcUcGwAjrlraXamjTXWNJfGdGHa4EDeY68cRQLmX62
+SY0eiIM05hk8Oi3Dmc9IFze7VF7xsL47JZqfjYd7mw2DiL0GvYCARMPepYoy7Jx
Excyv6nsYOSLT8l1IU4IYsMKhaDML1p1Y6SLMRWlOV83bTWEXbi6Wp6nKDcSoWEz
1UrQBRWEJiRKR+bwx6lYo/g5Mz7gtZ7/NRec73E5QYp7wkCZ25dL3yqR66OH4ZAE
CNwmnezjDw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 07:36:46 2025 by rpki-client