Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xaSi1LACOgq-9jdd_bO0nBtCJCY.cer
File: xaSi1LACOgq-9jdd_bO0nBtCJCY.cer (raw, json)
Hash identifier: Nv4rO5QVqGQmkKBDBaXh0jeAAtMunjI+fsKIV3Dm64g=
Subject key identifier: C5:A4:A2:D4:B0:02:3A:0A:BE:F6:37:5D:FD:B3:B4:9C:1B:42:24:26
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01880065E0EFFC7B603F52828A2BCBEE86DB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bb/e0326a-9bdb-4289-841b-47704e17d31c/1/xaSi1LACOgq-9jdd_bO0nBtCJCY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bb/e0326a-9bdb-4289-841b-47704e17d31c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 09 May 2023 12:04:16 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 193.3.166.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:00:65:e0:ef:fc:7b:60:3f:52:82:8a:2b:cb:ee:86:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 9 12:04:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5a4a2d4b0023a0abef6375dfdb3b49c1b422426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:df:a1:17:22:4c:4d:aa:37:6a:d4:10:e6:d4:
c9:6e:a3:13:e2:9b:14:e3:3e:ee:ba:75:69:78:b8:
a3:f0:7a:3f:ed:d9:81:db:d3:08:7d:2c:5a:53:c4:
02:e0:c7:7b:28:60:e1:33:36:53:84:d1:71:99:ee:
62:c2:3b:d1:33:0a:28:e6:0c:c7:c3:1e:cb:57:52:
36:a2:73:99:8d:0c:f1:af:56:27:c1:17:e7:16:0d:
e2:0b:ee:54:75:b5:21:5f:4c:1b:91:33:26:d9:71:
68:48:fc:e8:44:86:5f:71:04:3a:fc:e0:f4:b6:1a:
86:73:ef:49:48:07:7f:f8:a9:4e:8c:ee:c8:f0:06:
9c:d9:92:38:b8:ce:c6:63:1c:f2:5b:bb:0a:4d:a4:
63:39:22:b2:27:7f:c2:3d:42:2e:b4:25:10:62:04:
02:95:37:f1:6b:e6:92:0e:6e:fa:72:3f:b2:ff:57:
2e:a9:86:86:8f:8c:2b:92:fe:10:4c:e2:46:8e:1b:
57:df:d9:6b:5d:b7:62:67:7b:1d:5c:d7:f6:e5:b1:
13:f4:a3:59:f8:a6:ed:3b:7a:b7:62:2a:32:bd:2f:
33:25:d0:11:e8:e6:29:ad:1d:11:0e:67:6e:77:9f:
2c:f0:5a:71:91:4b:f7:06:08:3d:08:11:97:62:ae:
42:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A4:A2:D4:B0:02:3A:0A:BE:F6:37:5D:FD:B3:B4:9C:1B:42:24:26
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/e0326a-9bdb-4289-841b-47704e17d31c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/e0326a-9bdb-4289-841b-47704e17d31c/1/xaSi1LACOgq-9jdd_bO0nBtCJCY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.166.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:ad:5a:49:f7:c4:00:9a:eb:76:db:a2:72:94:43:21:d4:66:
06:58:72:1d:3c:84:3f:54:53:07:74:00:de:86:5f:4f:82:ab:
4e:05:f2:ac:e2:5c:46:a7:a4:84:dd:c9:c6:66:24:0b:ec:f2:
4a:b9:3a:49:0b:5d:39:cc:e4:65:98:ac:41:6a:89:90:fc:f3:
3b:2a:92:5c:a5:fc:ca:7a:e8:a1:6e:cc:c9:fd:4f:ca:2a:80:
54:54:5e:53:6a:32:b0:6b:1d:3f:8c:0f:36:fc:ba:12:00:cb:
b8:58:09:d7:6d:c5:25:51:4d:2a:10:3d:dd:0b:bf:c1:29:c5:
ea:72:21:04:ea:93:30:d0:05:1c:e6:2f:4e:e4:d2:4f:02:cc:
19:2b:b4:23:0f:d9:fa:94:c8:47:d4:8f:5b:17:1b:2b:59:26:
44:74:1b:92:2a:6b:3e:54:e5:63:48:f5:ed:dc:90:16:63:46:
00:11:bd:aa:3b:a9:12:07:1c:e5:25:a1:e2:a6:7e:c1:52:0e:
d8:69:f6:fc:0a:90:91:a2:94:f7:2e:42:02:9f:91:92:bf:28:
15:e1:d8:70:82:3e:04:d9:49:aa:35:5d:f8:17:e0:28:99:ff:
6b:98:a3:5b:61:c1:d1:9e:a0:12:0c:16:1e:d6:2f:90:58:e2:
9e:db:03:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:38:00 2025 by rpki-client