Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/udVfNsUR22NsuC80dQzIriOUUOU.cer
File: udVfNsUR22NsuC80dQzIriOUUOU.cer (raw, json)
Hash identifier: /ZAOc4HylS2eJ3g0wTurK/tLNCs2QQxtPEuZqQhhYBY=
Subject key identifier: B9:D5:5F:36:C5:11:DB:63:6C:B8:2F:34:75:0C:C8:AE:23:94:50:E5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0184C2D28C37817133A3F3307FEF91BC0967
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/udVfNsUR22NsuC80dQzIriOUUOU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 29 Nov 2022 09:58:09 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: IP: 185.96.44.0/22
IP: 2a00:4140::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c2:d2:8c:37:81:71:33:a3:f3:30:7f:ef:91:bc:09:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 29 09:58:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9d55f36c511db636cb82f34750cc8ae239450e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:fb:1e:92:18:87:21:2b:a9:e4:87:ed:79:e9:
7c:b0:f5:e4:2a:fb:0f:2c:0f:f9:dd:7c:8a:86:bf:
8a:98:42:23:99:39:6e:44:d1:d4:c9:3c:89:13:57:
bf:15:5e:7a:c7:da:d2:68:72:46:11:23:36:f1:e3:
dc:74:bd:58:2c:d0:e6:c7:0a:b7:6c:f7:02:8c:d1:
72:9d:f9:c0:a6:83:ea:b9:64:52:0f:e4:6c:86:12:
1c:5b:44:1b:7c:ac:39:69:3d:62:5b:06:d7:ee:77:
8f:88:03:42:09:5a:f2:b1:42:60:3a:83:63:6e:ef:
c3:17:35:db:1f:e1:95:56:12:0c:83:5b:dd:bb:3f:
f4:c3:c0:a4:ba:3f:31:44:df:04:74:20:82:e1:73:
d8:40:11:7c:b7:06:27:7c:fb:96:cc:28:86:5a:f7:
e1:66:c6:bd:13:ee:23:ce:c1:13:d3:71:c1:c2:72:
df:89:21:95:c6:62:fa:fd:74:9e:97:ac:7c:b6:f6:
bf:2a:3f:19:39:11:81:11:06:09:7a:91:95:25:59:
a3:80:e9:12:f3:57:38:f9:86:ea:eb:40:a8:14:c5:
2d:a4:c4:62:7e:e5:74:ab:e6:86:35:ab:76:09:9d:
21:64:b1:8a:1a:6f:41:8e:fc:2e:32:4b:ef:21:0e:
a5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:D5:5F:36:C5:11:DB:63:6C:B8:2F:34:75:0C:C8:AE:23:94:50:E5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d6f953-e5f1-4d32-8d1d-1e26bd87a6f4/1/udVfNsUR22NsuC80dQzIriOUUOU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.44.0/22
IPv6:
2a00:4140::/29
Signature Algorithm: sha256WithRSAEncryption
21:c2:33:75:ba:32:cd:28:f3:6b:0b:51:48:01:61:c4:b7:59:
de:91:00:03:dd:b8:a4:11:e2:99:13:5e:66:e8:cd:de:2b:20:
19:86:25:5a:c0:e2:71:4c:d5:e1:da:64:30:08:6f:31:99:3d:
45:fe:5a:2a:7f:73:e1:93:b2:33:04:db:cc:bf:6f:04:4e:20:
c8:84:87:0a:e7:93:10:15:ba:e8:9e:8e:22:ac:4d:64:e5:74:
57:e6:08:fd:2b:e1:01:2b:59:14:5c:34:2e:8a:7d:97:5a:e2:
4e:2b:1b:85:23:6c:be:11:c4:6a:91:0b:38:3f:d4:d3:24:30:
cc:41:b7:ce:0f:9f:10:1c:1b:41:71:61:8e:33:ac:01:68:0c:
d8:6b:63:b5:9c:86:e2:88:c7:97:65:d6:69:1c:c8:11:76:8c:
32:7a:4c:08:df:7e:2f:7e:d4:b3:f5:ac:e3:73:f1:df:96:2b:
58:af:bf:03:38:92:84:e4:0e:97:f6:1b:30:fa:34:43:8f:22:
8c:aa:76:80:b1:2a:19:7b:99:eb:ab:66:d4:44:ba:ca:44:aa:
04:43:00:df:e9:27:ec:ee:d6:50:0d:85:fe:ee:01:e0:e8:a1:
67:f1:63:b6:3e:95:34:32:6f:ff:8c:9e:87:e0:53:42:a3:73:
ea:2c:70:ff
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgISAYTC0ow3gXEzo/Mwf++RvAlnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjIxMTI5MDk1ODA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOWQ1NWYzNmM1MTFkYjYzNmNiODJmMzQ3NTBjYzhhZTIzOTQ1MGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8/sekhiHISup5Ifteel8sPXkKvsP
LA/53XyKhr+KmEIjmTluRNHUyTyJE1e/FV56x9rSaHJGESM28ePcdL1YLNDmxwq3
bPcCjNFynfnApoPquWRSD+RshhIcW0QbfKw5aT1iWwbX7nePiANCCVrysUJgOoNj
bu/DFzXbH+GVVhIMg1vduz/0w8Ckuj8xRN8EdCCC4XPYQBF8twYnfPuWzCiGWvfh
Zsa9E+4jzsET03HBwnLfiSGVxmL6/XSel6x8tva/Kj8ZORGBEQYJepGVJVmjgOkS
81c4+Ybq60CoFMUtpMRifuV0q+aGNat2CZ0hZLGKGm9BjvwuMkvvIQ6lSQIDAQAB
o4ICkzCCAo8wHQYDVR0OBBYEFLnVXzbFEdtjbLgvNHUMyK4jlFDlMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAwL2Q2Zjk1
My1lNWYxLTRkMzItOGQxZC0xZTI2YmQ4N2E2ZjQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDAvZDZmOTUz
LWU1ZjEtNGQzMi04ZDFkLTFlMjZiZDg3YTZmNC8xL3VkVmZOc1VSMjJOc3VDODBk
UXpJcmlPVVVPVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuWAsMA0EAgACMAcDBQMqAEFAMA0GCSqGSIb3
DQEBCwUAA4IBAQAhwjN1ujLNKPNrC1FIAWHEt1nekQAD3bikEeKZE15m6M3eKyAZ
hiVawOJxTNXh2mQwCG8xmT1F/loqf3Phk7IzBNvMv28ETiDIhIcK55MQFbrono4i
rE1k5XRX5gj9K+EBK1kUXDQuin2XWuJOKxuFI2y+EcRqkQs4P9TTJDDMQbfOD58Q
HBtBcWGOM6wBaAzYa2O1nIbiiMeXZdZpHMgRdowyekwI334vftSz9azjc/HflitY
r78DOJKE5A6X9hsw+jRDjyKMqnaAsSoZe5nrq2bURLrKRKoEQwDf6Sfs7tZQDYX+
7gHg6KFn8WO2PpU0Mm//jJ6H4FNCo3PqLHD/
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:33 2023 by rpki-client on console.sobornost.net