Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/H6XLUDs2njy6hEUi0G01qKz1xzM.cer
File: H6XLUDs2njy6hEUi0G01qKz1xzM.cer (raw, json)
Hash identifier: 8Hi/xpAQNc9koObJuZYO0Ez6hGUHYFlB1bUEKLjhHxs=
Subject key identifier: 1F:A5:CB:50:3B:36:9E:3C:BA:84:45:22:D0:6D:35:A8:AC:F5:C7:33
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0183560DAB242FB8DA9C1665447F1BD94E2E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b4/e3d5fa-5331-4b23-8aff-bf4dbe7f9acb/1/H6XLUDs2njy6hEUi0G01qKz1xzM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b4/e3d5fa-5331-4b23-8aff-bf4dbe7f9acb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 19 Sep 2022 14:01:19 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 2.56.228.0/22
IP: 5.180.244.0/22
IP: 45.12.176.0/22
IP: 45.66.176.0/22
IP: 45.80.116.0/22
IP: 45.82.96.0/22
IP: 45.84.228.0/22
IP: 45.89.116.0/22
IP: 45.92.84.0/22
IP: 45.95.132.0/22
IP: 45.131.100.0/22
IP: 45.134.112.0/22
IP: 45.138.224.0/22
IP: 45.143.104.0/22
IP: 45.148.104.0/22
IP: 45.159.8.0/22
IP: 82.115.213.0/24
IP: 92.118.208.0/22
IP: 139.28.120.0/22
IP: 171.22.252.0/22
IP: 176.111.175.0/24
IP: 185.242.217.0/24
IP: 193.228.56.0/22
IP: 194.124.239.0 -- 194.124.240.255
IP: 194.124.247.0 -- 194.124.248.255
IP: 195.158.248.0/24
IP: 2a12:adc0::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:56:0d:ab:24:2f:b8:da:9c:16:65:44:7f:1b:d9:4e:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 19 14:01:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fa5cb503b369e3cba844522d06d35a8acf5c733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:1f:a8:ef:f3:8f:9c:e5:5b:37:ec:5a:60:73:
49:64:a0:2c:bf:7a:53:9f:26:fa:23:65:a0:23:1d:
66:e5:69:69:51:01:3f:1c:46:d1:04:0a:bf:27:a9:
37:3e:ab:53:e8:73:21:41:b4:af:15:67:3f:b6:01:
31:cf:b5:63:c0:9a:fc:8b:e5:1d:0b:f5:eb:9a:e9:
7a:45:e3:5e:c6:51:7f:20:10:d7:c2:c4:cf:25:01:
15:52:42:43:27:53:72:b2:2b:7a:86:f6:f0:f5:bf:
7b:41:ab:f5:60:c0:f2:ae:e3:cb:e1:f2:e2:7e:6c:
8b:c9:bd:17:50:a9:04:ee:d7:be:7f:3a:1e:7c:b0:
6f:13:9a:8a:3b:29:1e:1d:41:94:f5:91:a9:cc:a8:
ad:12:44:8a:04:5e:db:be:22:ed:0f:81:94:f4:0f:
f8:da:95:96:b8:72:80:93:b4:1c:3c:97:9c:e9:5d:
78:1b:35:cf:7c:f7:0a:c2:ad:3b:ed:71:bd:c3:eb:
9a:80:8b:7a:51:b2:50:fc:0f:3c:bc:dd:55:9f:3c:
ad:ac:85:8e:66:7e:80:f8:d2:02:6e:41:a5:2a:61:
d3:7e:df:5e:7a:66:1c:5a:03:3e:d4:19:ed:d6:3f:
30:1f:43:f4:dc:9d:2c:cc:a5:b6:42:be:de:a8:b6:
3c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A5:CB:50:3B:36:9E:3C:BA:84:45:22:D0:6D:35:A8:AC:F5:C7:33
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/e3d5fa-5331-4b23-8aff-bf4dbe7f9acb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/e3d5fa-5331-4b23-8aff-bf4dbe7f9acb/1/H6XLUDs2njy6hEUi0G01qKz1xzM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.228.0/22
5.180.244.0/22
45.12.176.0/22
45.66.176.0/22
45.80.116.0/22
45.82.96.0/22
45.84.228.0/22
45.89.116.0/22
45.92.84.0/22
45.95.132.0/22
45.131.100.0/22
45.134.112.0/22
45.138.224.0/22
45.143.104.0/22
45.148.104.0/22
45.159.8.0/22
82.115.213.0/24
92.118.208.0/22
139.28.120.0/22
171.22.252.0/22
176.111.175.0/24
185.242.217.0/24
193.228.56.0/22
194.124.239.0-194.124.240.255
194.124.247.0-194.124.248.255
195.158.248.0/24
IPv6:
2a12:adc0::/29
Signature Algorithm: sha256WithRSAEncryption
0e:ae:73:92:ab:78:a8:86:d0:3d:1f:e7:64:f4:18:ee:6b:93:
6f:86:31:3b:62:84:d2:70:9b:b0:92:57:01:36:f7:28:13:c6:
2e:95:02:11:d2:be:a4:f4:d7:32:e6:aa:a0:3c:f0:24:fa:95:
2c:6e:e7:f5:8e:4e:7d:ad:0b:4b:98:64:08:d1:d1:66:99:b3:
41:a3:94:b4:ba:54:2c:84:90:8b:4d:72:3c:65:6c:49:77:72:
cf:24:39:99:0f:ab:49:86:2d:02:ff:b4:55:a5:e3:cb:25:72:
91:ef:79:4e:f1:8a:8d:5e:f9:6d:f4:c0:5c:7b:03:62:1e:d8:
87:e0:12:bb:e5:66:08:64:64:18:e6:50:fd:75:8d:e3:b5:8e:
08:21:e7:bd:c4:df:1d:86:23:43:fc:84:82:48:d0:bb:90:a4:
3b:24:21:4e:df:2a:65:4f:40:bb:45:27:33:47:09:54:cf:ea:
24:69:35:25:7e:2e:80:4f:d9:d8:9f:57:4e:34:f1:7f:cf:31:
fe:7a:cc:d4:36:9b:08:3d:2f:fb:31:f8:ce:79:8f:30:9b:6e:
6f:69:76:d3:38:26:d2:2a:b5:bd:79:45:30:72:cc:e6:13:e6:
dc:d2:40:c5:7a:35:a7:6e:be:eb:ba:a6:b4:a7:93:63:ca:9d:
cf:5b:78:26
-----BEGIN CERTIFICATE-----
MIIGMjCCBRqgAwIBAgISAYNWDaskL7janBZlRH8b2U4uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjIwOTE5MTQwMTE5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZmE1Y2I1MDNiMzY5ZTNjYmE4NDQ1MjJkMDZkMzVhOGFjZjVjNzMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6R+o7/OPnOVbN+xaYHNJZKAsv3pT
nyb6I2WgIx1m5WlpUQE/HEbRBAq/J6k3PqtT6HMhQbSvFWc/tgExz7VjwJr8i+Ud
C/Xrmul6ReNexlF/IBDXwsTPJQEVUkJDJ1Nysit6hvbw9b97Qav1YMDyruPL4fLi
fmyLyb0XUKkE7te+fzoefLBvE5qKOykeHUGU9ZGpzKitEkSKBF7bviLtD4GU9A/4
2pWWuHKAk7QcPJec6V14GzXPfPcKwq077XG9w+uagIt6UbJQ/A88vN1VnzytrIWO
Zn6A+NICbkGlKmHTft9eemYcWgM+1Bnt1j8wH0P03J0szKW2Qr7eqLY8wQIDAQAB
o4IDPjCCAzowHQYDVR0OBBYEFB+ly1A7Np48uoRFItBtNais9cczMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I0L2UzZDVm
YS01MzMxLTRiMjMtOGFmZi1iZjRkYmU3ZjlhY2IvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjQvZTNkNWZh
LTUzMzEtNGIyMy04YWZmLWJmNGRiZTdmOWFjYi8xL0g2WExVRHMybmp5NmhFVWkw
RzAxcUt6MXh6TS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIHYBggrBgEF
BQcBBwEB/wSByDCBxTCBswQCAAEwgawDBAICOOQDBAIFtPQDBAItDLADBAItQrAD
BAItUHQDBAItUmADBAItVOQDBAItWXQDBAItXFQDBAItX4QDBAItg2QDBAIthnAD
BAItiuADBAItj2gDBAItlGgDBAItnwgDBABSc9UDBAJcdtADBAKLHHgDBAKrFvwD
BACwb68DBAC58tkDBALB5DgwDAMEAMJ87wMEAMJ88DAMAwQAwnz3AwQAwnz4AwQA
w574MA0EAgACMAcDBQMqEq3AMA0GCSqGSIb3DQEBCwUAA4IBAQAOrnOSq3iohtA9
H+dk9Bjua5NvhjE7YoTScJuwklcBNvcoE8YulQIR0r6k9Ncy5qqgPPAk+pUsbuf1
jk59rQtLmGQI0dFmmbNBo5S0ulQshJCLTXI8ZWxJd3LPJDmZD6tJhi0C/7RVpePL
JXKR73lO8YqNXvlt9MBcewNiHtiH4BK75WYIZGQY5lD9dY3jtY4IIee9xN8dhiND
/ISCSNC7kKQ7JCFO3yplT0C7RSczRwlUz+okaTUlfi6AT9nYn1dONPF/zzH+eszU
NpsIPS/7MfjOeY8wm25vaXbTOCbSKrW9eUUwcszmE+bc0kDFejWnbr7ruqa0p5Nj
yp3PW3gm
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:24 2023 by rpki-client on console.sobornost.net