Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/hkJSB_EVmhqjAlv7NbytTwQo54E.cer
File: hkJSB_EVmhqjAlv7NbytTwQo54E.cer (raw, json)
Hash identifier: d0Q20P3hZYF97eOzy4PWQS/029MLTGpndoxkLWhjNS4=
Subject key identifier: 86:42:52:07:F1:15:9A:1A:A3:02:5B:FB:35:BC:AD:4F:04:28:E7:81
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 9FAABB95D2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/04/9ccdfc-98b9-4a89-8bff-06ac63567b9b/1/hkJSB_EVmhqjAlv7NbytTwQo54E.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/04/9ccdfc-98b9-4a89-8bff-06ac63567b9b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 06:04:12 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 208006
AS: 210296
IP: 130.185.120.0/22
IP: 185.215.232.0/22
IP: 185.235.40.0/22
IP: 194.5.192.0/23
IP: 194.5.206.0/23
IP: 2a0a:77c0::/29
IP: 2a0d:4ac0::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 685764220370 (0x9faabb95d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:04:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86425207f1159a1aa3025bfb35bcad4f0428e781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:97:6c:af:d7:da:89:1c:11:6d:41:f9:76:e8:
f8:4f:41:16:fb:0f:1e:25:d3:87:ee:1a:a1:98:48:
d6:dd:38:eb:5e:5e:cf:91:9d:8f:19:ea:18:e6:75:
e3:cc:33:ac:5a:1f:e7:94:83:e7:c9:e6:41:41:fc:
c0:d2:0a:48:26:79:86:ab:ca:76:66:7e:dd:93:f6:
1b:30:58:a7:c7:d5:65:8b:36:94:f1:d2:71:cc:3c:
c3:d0:41:0b:f4:7c:e1:6b:e0:5b:36:3e:26:fb:ee:
6b:6a:d2:94:4f:81:82:97:23:2c:29:5f:ee:d8:4e:
62:be:29:73:66:c3:a1:6a:c1:10:18:37:24:64:37:
d2:4b:ec:96:86:8e:87:cb:e1:dd:08:90:db:bd:7e:
08:96:45:e6:60:64:00:65:1a:cf:48:a4:f7:b5:3b:
b3:57:29:b0:7f:41:53:12:0a:a0:2b:56:55:9e:4f:
d0:63:21:4a:e6:83:d4:92:26:a5:be:a8:bc:27:7a:
6e:f5:c5:5a:96:c8:0b:f1:28:e2:ed:d4:10:dc:d1:
16:f1:4b:30:ab:35:06:c2:40:da:2e:35:60:2d:7c:
e0:fa:69:c5:a1:fe:ec:91:52:12:48:ba:99:c2:5b:
0e:a2:de:ab:31:49:d8:66:4e:ac:be:02:0e:1f:5b:
45:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:42:52:07:F1:15:9A:1A:A3:02:5B:FB:35:BC:AD:4F:04:28:E7:81
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/9ccdfc-98b9-4a89-8bff-06ac63567b9b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/9ccdfc-98b9-4a89-8bff-06ac63567b9b/1/hkJSB_EVmhqjAlv7NbytTwQo54E.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.185.120.0/22
185.215.232.0/22
185.235.40.0/22
194.5.192.0/23
194.5.206.0/23
IPv6:
2a0a:77c0::/29
2a0d:4ac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208006
210296
Signature Algorithm: sha256WithRSAEncryption
09:b6:78:d2:64:db:94:e1:2c:bf:67:78:2a:b4:db:e3:9a:56:
22:f0:02:cb:2d:77:07:a3:e9:8c:8f:60:42:23:e6:64:77:19:
47:98:39:ae:14:a4:f8:ff:1c:54:57:3b:1a:69:c4:a0:ef:2f:
5f:ea:4e:79:7c:df:40:0f:1a:3a:8e:3b:5c:7a:62:3d:b6:06:
0f:8e:7a:3f:22:15:34:d3:5e:1e:8b:4f:46:cd:5b:83:46:f9:
7d:f6:99:d9:50:4b:92:9d:34:2d:d7:d9:6c:de:cd:5b:46:9e:
28:39:3b:18:71:ea:b4:33:15:57:16:52:42:34:ae:8e:90:b8:
52:bb:57:4b:7f:33:aa:f6:39:40:10:e2:a3:62:18:c4:ed:47:
51:06:e2:dd:6d:04:42:a5:8a:3c:ff:50:80:d2:70:7a:c2:c7:
dd:7d:6a:a5:69:e7:e8:32:c6:ba:cb:0e:f1:2c:65:ef:9e:e0:
43:91:ae:e0:62:0d:31:74:86:2f:9c:b4:26:91:d9:f2:b2:f1:
10:27:ba:8e:1d:cb:34:e1:70:88:cb:7b:24:7f:e8:2b:73:d9:
99:0f:cb:b2:df:55:90:00:f5:1e:cd:fc:ab:73:71:3d:11:f0:
3d:ea:f3:2d:72:97:60:43:4a:1f:b6:46:a4:11:a6:bb:c3:52:
84:22:93:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:15 2023 by rpki-client on console.sobornost.net