Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xH6W11gap7UwqtTNJJ3VWqQjW8M.cer
File: xH6W11gap7UwqtTNJJ3VWqQjW8M.cer (raw, json)
Hash identifier: 10qkxdU6E4VXy7e46PKYv1YCbVCZTpYDFB7RmjhBVyU=
Subject key identifier: C4:7E:96:D7:58:1A:A7:B5:30:AA:D4:CD:24:9D:D5:5A:A4:23:5B:C3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: AC82AA01AF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.roa.net/rrdp/xTom/35/C47E96D7581AA7B530AAD4CD249DD55AA4235BC3.mft
caRepository: rsync://rpki.roa.net/rrdp/xTom/35
Notify URL: https://rpki.roa.net/rrdp/notification.xml
Certificate not before: Wed 26 Jan 2022 12:51:09 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 91.193.56.0/23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 740926554543 (0xac82aa01af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 26 12:51:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c47e96d7581aa7b530aad4cd249dd55aa4235bc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b6:ff:8b:df:b6:29:c2:bd:d7:89:54:d6:b1:
fa:c3:0e:d1:49:f8:44:ab:05:35:75:e7:b0:ab:e7:
35:e4:e9:e3:57:83:33:b6:b8:fa:45:6b:89:00:3c:
1e:ab:8a:91:22:2a:78:d1:d2:c5:4b:22:53:64:f6:
47:91:a1:cf:8d:d1:39:78:61:a1:22:da:e6:29:9e:
d5:49:a1:f3:fd:04:f7:f3:44:ea:a7:fb:42:53:b0:
9b:d0:68:77:8e:c0:b8:1b:5c:de:fa:d2:c6:33:f4:
d0:34:c5:7e:96:a4:56:8d:d8:28:3a:c8:f2:72:03:
4c:a8:2f:96:eb:63:38:0e:e2:af:27:73:b2:37:ec:
46:34:93:51:10:83:3c:91:e3:84:2e:fe:32:2a:76:
87:a7:a7:dd:a7:55:bd:fd:0a:f3:93:b9:be:4b:ed:
a9:9a:fa:6a:9e:d5:12:6a:4c:ef:b6:a3:4e:70:0b:
f9:79:08:8e:60:78:94:2c:a4:32:66:fd:9e:d0:0c:
93:b6:bb:e6:a1:b2:e9:a4:87:64:c7:12:6d:c7:d7:
13:68:da:a6:ed:98:0c:e2:6e:4b:74:88:1b:6b:59:
5f:11:1f:92:8f:f7:bb:1c:15:fb:fd:93:64:e1:56:
e9:fb:24:f3:1c:74:f7:5c:78:a6:5d:c4:a1:c0:72:
68:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:7E:96:D7:58:1A:A7:B5:30:AA:D4:CD:24:9D:D5:5A:A4:23:5B:C3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.roa.net/rrdp/xTom/35
RPKI Manifest - URI:rsync://rpki.roa.net/rrdp/xTom/35/C47E96D7581AA7B530AAD4CD249DD55AA4235BC3.mft
RPKI Notify - URI:https://rpki.roa.net/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.56.0/23
Signature Algorithm: sha256WithRSAEncryption
63:3b:44:55:ca:7e:9e:e8:77:75:75:68:ba:19:28:bf:45:60:
06:7d:c2:8b:a1:0e:27:cd:9d:ec:bf:a9:8d:51:e9:20:59:af:
59:ea:b3:8e:fd:48:00:76:00:1f:7c:1c:46:66:48:c0:d5:d4:
64:dc:5f:09:14:dd:11:5c:b0:2e:19:ae:79:16:49:21:32:ef:
88:19:85:7a:31:0b:9a:d7:ae:5d:d2:56:f7:e5:c5:f5:b4:46:
c5:fe:4f:f2:02:e5:9e:f5:9b:4d:72:32:c6:55:4c:7a:6b:1d:
2a:3d:a2:d8:5b:40:c7:07:25:5c:7a:58:66:a0:c9:f2:99:67:
0c:c8:ba:04:df:b0:45:ee:9b:67:73:a7:25:0a:b9:c2:f8:11:
c2:dd:68:bb:0a:80:ca:6b:91:64:7d:98:c4:45:e4:e8:34:87:
9e:84:10:db:9b:ee:ed:0a:ab:2f:3b:5d:26:d8:50:31:d5:e6:
72:c5:c7:45:1a:27:23:eb:13:c0:31:9b:08:80:04:71:2c:af:
42:a0:95:88:27:58:60:f4:36:2e:67:54:d7:1d:39:8b:e8:35:
ad:59:3d:74:b4:aa:01:5f:3a:8b:2f:5a:d0:98:a5:d7:33:92:
06:57:67:54:0f:1b:df:9c:a6:c3:a2:2e:ba:47:2d:0a:6a:e6:
43:9f:4f:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:04 2024 by rpki-client on console-ams.rpki-client.org