Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XYNPhNFKibbd5dqFo9secm46gkI.cer
File: XYNPhNFKibbd5dqFo9secm46gkI.cer (raw, json)
Hash identifier: It5WfF3CvDrZ1fo9SS2sUXK3AvgN7CbY1hOGuyqnVMY=
Subject key identifier: 5D:83:4F:84:D1:4A:89:B6:DD:E5:DA:85:A3:DB:1E:72:6E:3A:82:42
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: AD1C2C9677
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/52/d72bbb-46a8-4b6d-a2e3-eb8600485272/1/XYNPhNFKibbd5dqFo9secm46gkI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/52/d72bbb-46a8-4b6d-a2e3-eb8600485272/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 08 Feb 2022 17:30:35 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 210365
IP: 2001:67c:22cc::/48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 743502026359 (0xad1c2c9677)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 8 17:30:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d834f84d14a89b6dde5da85a3db1e726e3a8242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:5d:4b:3c:8e:6c:6c:03:99:13:8c:67:2c:20:
24:85:9a:48:11:e2:ee:05:a3:fd:2e:b6:c7:5f:32:
0f:9f:b5:ff:2d:e2:2c:e0:a3:0d:a1:10:d4:f7:06:
17:9c:97:79:44:23:74:c7:67:8b:9c:6c:a8:5c:9d:
9e:08:89:cd:fe:2d:8a:b6:25:10:4d:3e:3b:e0:a2:
19:34:37:b4:83:f0:64:bf:d8:82:68:ad:9b:93:42:
50:09:d7:02:87:64:d2:e0:15:dc:a4:b7:37:71:da:
27:05:19:95:05:a4:c5:be:78:f1:15:36:c2:7c:1e:
95:ab:07:01:07:3f:06:d6:73:dd:44:2c:c6:e9:9b:
83:ce:b5:78:c9:33:e9:38:17:f9:0d:38:2d:88:12:
e6:26:0f:63:67:23:8f:00:9b:5a:f0:21:28:f0:ab:
94:97:41:35:8b:6e:f5:1e:1a:f1:a9:9b:79:c4:88:
2d:ae:33:65:33:ae:64:fe:5a:72:ac:af:5f:fd:2e:
ec:fd:ee:d7:cb:af:55:fc:4f:16:77:75:ba:31:b0:
36:3c:e2:c6:76:ed:ac:f8:45:77:f0:f1:c6:a1:d8:
7d:38:45:55:15:88:94:e8:1c:86:7d:96:b5:b7:99:
5b:a0:f1:37:cd:8b:97:d1:3c:3c:c4:ec:4b:9b:ff:
2c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:83:4F:84:D1:4A:89:B6:DD:E5:DA:85:A3:DB:1E:72:6E:3A:82:42
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d72bbb-46a8-4b6d-a2e3-eb8600485272/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d72bbb-46a8-4b6d-a2e3-eb8600485272/1/XYNPhNFKibbd5dqFo9secm46gkI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:22cc::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210365
Signature Algorithm: sha256WithRSAEncryption
20:b6:31:d4:99:06:f1:62:af:6d:b0:85:27:d7:21:d1:48:1c:
6c:83:a3:3f:8b:2f:33:99:9f:b1:d8:75:5d:d4:ba:83:36:5f:
79:59:c3:d2:62:75:bb:d4:0e:e3:1c:f0:9d:47:76:07:ab:b6:
30:a4:9f:da:4d:86:c6:0d:ce:3c:e9:6e:86:f6:ef:88:0e:ef:
fd:d5:e7:e3:c9:18:e6:60:37:e4:8a:7e:d6:02:15:eb:0f:19:
a0:99:40:18:e5:ce:db:01:fb:f4:1a:26:7d:f8:ac:35:1f:78:
b8:8e:21:47:50:e8:e9:24:32:00:62:a4:32:85:1c:d2:9b:d0:
d7:7e:f3:4f:2c:eb:11:5d:36:89:50:24:5f:dd:2e:d4:93:26:
0f:e6:c1:53:2b:ce:80:f2:00:b1:e4:e9:dc:2c:05:81:0b:b0:
07:42:37:19:19:92:42:7e:30:e2:ee:fa:1f:86:bd:48:43:e3:
aa:b7:c5:37:1c:5b:c8:c7:1a:37:24:05:e0:a8:7c:37:a6:b6:
5c:f5:23:11:77:93:3c:c7:e2:40:1f:7c:6d:e3:9a:42:4c:1d:
a2:82:6c:6c:a9:f5:ff:44:46:62:20:1a:75:d5:f3:17:24:c4:
96:8c:fd:c1:62:ca:f1:4e:1a:d0:15:d7:6a:c1:4d:14:ab:bf:
62:6a:e6:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:44:11 2023 by rpki-client on console.sobornost.net