Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YBP3uJUlJQO3m5vYOuP0XbYkmJM.cer
File: YBP3uJUlJQO3m5vYOuP0XbYkmJM.cer (raw, json)
Hash identifier: 8IGEJhpVgEbDa33JlobZmVUUHa9z951sZ1JDKPk0c8U=
Subject key identifier: 60:13:F7:B8:95:25:25:03:B7:9B:9B:D8:3A:E3:F4:5D:B6:24:98:93
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A3F0AD940A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/ecb45d-15f3-4c4a-b396-2bef7edfa5cd/1/YBP3uJUlJQO3m5vYOuP0XbYkmJM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/ecb45d-15f3-4c4a-b396-2bef7edfa5cd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 09:59:00 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 210284
AS: 210978
IP: 94.232.240.0/22
IP: 2a0d:3e40::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 704117576714 (0xa3f0ad940a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:59:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6013f7b895252503b79b9bd83ae3f45db6249893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a4:c2:c7:12:4d:43:7b:d7:40:52:62:ba:f4:
4a:16:ca:05:e3:25:8e:ce:f3:f1:bf:da:eb:94:c8:
a2:6e:33:e9:af:d2:4e:68:a9:0c:3c:07:01:66:31:
d6:16:3a:72:35:55:36:24:0f:fb:e7:bc:d9:ab:ba:
63:0a:14:b7:c1:18:45:82:2a:14:a5:25:f2:7c:55:
01:90:dc:1e:2c:d5:26:58:7c:1e:7a:97:9a:62:d5:
74:78:83:30:8c:ef:05:86:f0:e6:56:f3:0c:0d:f9:
8b:b3:88:26:9f:74:38:ee:52:44:63:55:64:77:b3:
85:64:93:6a:3e:e1:80:70:b3:da:de:ff:b4:00:03:
45:c4:c8:8d:df:99:59:3d:b7:17:04:47:f4:3d:f5:
d1:62:bd:b8:de:9e:a8:0e:a5:90:e5:32:88:12:23:
0a:04:71:27:13:b5:a8:fc:1b:4c:f0:ec:8f:ad:7f:
05:19:e1:a2:db:02:95:a8:63:62:ff:69:68:51:d4:
71:b7:43:35:7a:4e:38:a3:39:b1:3a:81:09:3b:3d:
80:1c:9a:de:e9:5f:f0:e0:4c:36:c0:9e:83:7e:fa:
be:db:29:f3:bf:f3:6b:0e:7a:37:87:47:4d:7f:88:
9a:35:3e:5e:13:20:37:60:43:37:28:a9:5f:6a:4a:
fa:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:13:F7:B8:95:25:25:03:B7:9B:9B:D8:3A:E3:F4:5D:B6:24:98:93
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/ecb45d-15f3-4c4a-b396-2bef7edfa5cd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/ecb45d-15f3-4c4a-b396-2bef7edfa5cd/1/YBP3uJUlJQO3m5vYOuP0XbYkmJM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.232.240.0/22
IPv6:
2a0d:3e40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210284
210978
Signature Algorithm: sha256WithRSAEncryption
49:c8:1c:44:28:b1:ec:6d:d5:ff:35:ef:83:38:d0:65:2c:ef:
96:0a:13:60:fb:51:b8:1a:56:52:9d:57:82:ea:f9:f2:f0:44:
d0:e1:df:87:c6:79:89:05:18:3e:16:5c:b4:5a:19:82:a0:77:
30:71:83:5c:67:85:55:cb:c3:0d:c8:9b:3d:1c:2d:86:52:79:
9c:36:8a:20:ab:73:5d:ae:b8:c4:c2:23:2b:5a:a4:cf:0a:86:
98:1f:90:e4:ec:d8:d4:c1:5e:3d:bd:55:6d:33:16:60:ef:f9:
0c:0f:fc:da:6a:70:8f:bb:cb:ea:23:bd:7e:a9:d4:e7:89:58:
18:b6:0e:ef:35:54:f3:bc:e3:9f:b5:44:47:f4:77:db:5c:69:
a7:3d:4c:2a:37:72:0c:10:d3:25:b7:ba:12:23:72:f1:af:b6:
f5:58:71:cc:7e:36:ca:3f:5c:25:e9:ba:d5:76:f9:c2:d5:b1:
87:06:c7:39:a1:ed:68:00:4e:d3:b0:f4:20:f2:2c:38:37:14:
aa:49:35:45:61:cc:dd:49:48:c4:3d:60:5f:6f:dd:75:0e:6b:
f4:82:74:ac:60:ec:e9:31:f1:79:83:42:24:ff:1f:6f:a2:43:
31:63:7f:e0:d8:92:d6:0f:73:29:fd:f0:80:de:d0:bb:eb:84:
17:cf:38:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:44:15 2023 by rpki-client on console.sobornost.net