Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PkSqqeUGNRG2Egs38ASFUZeRbSw.cer
File: PkSqqeUGNRG2Egs38ASFUZeRbSw.cer (raw, json)
Hash identifier: VajRF1u5QLxIj+JW/m+8PIXJj00eKoffUoZb8fbYy+c=
Subject key identifier: 3E:44:AA:A9:E5:06:35:11:B6:12:0B:37:F0:04:85:51:97:91:6D:2C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018AB6E789DB0DC4D0F1CEC4DD0BA17DAE3F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c2/661609-cfba-47ed-ad4f-066b3cd87d69/1/PkSqqeUGNRG2Egs38ASFUZeRbSw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c2/661609-cfba-47ed-ad4f-066b3cd87d69/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 21 Sep 2023 08:42:22 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 91.233.104.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b6:e7:89:db:0d:c4:d0:f1:ce:c4:dd:0b:a1:7d:ae:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 21 08:42:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e44aaa9e5063511b6120b37f004855197916d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:29:7c:0b:68:84:6b:d9:c6:d8:6c:7a:83:fd:
64:5c:54:41:db:25:29:58:a3:98:b5:f9:e1:56:a4:
86:e2:3d:a3:64:67:3a:5c:b5:a1:84:95:22:8f:f7:
da:48:b8:9e:2a:d6:3d:b5:d5:2b:30:34:bf:aa:8a:
64:97:46:b5:53:fb:53:d0:ad:74:f8:cd:bd:67:bc:
e4:53:73:d7:72:9e:0a:1a:ff:28:98:67:a9:b3:bf:
58:17:2a:bf:c9:da:a9:bd:96:08:8d:4c:84:1b:72:
1d:87:8b:a5:28:83:34:00:1a:da:c3:1d:b5:f4:58:
0a:c7:fd:c3:af:e8:2f:c8:2d:d2:1a:cb:02:ea:6a:
7e:53:e3:08:5c:e2:b7:25:23:65:b7:a1:ff:05:0c:
54:ce:46:05:b6:9d:02:e7:18:6a:40:6d:0e:1f:06:
f7:9d:0b:d2:7f:9b:00:5c:d9:1c:7f:fd:18:61:7f:
fa:7d:82:8c:b8:d7:b3:a3:44:4c:a8:c1:2e:f0:df:
da:49:60:5b:7d:af:c5:25:ea:12:39:e7:57:dd:47:
e7:dd:8c:82:58:71:59:7d:54:a8:d3:dc:1f:ef:f1:
7d:fc:90:8b:e6:e3:a9:ab:7b:72:e4:19:2e:0e:18:
12:9a:7e:a8:db:8a:b9:62:0c:31:a0:c9:4f:07:b2:
00:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:44:AA:A9:E5:06:35:11:B6:12:0B:37:F0:04:85:51:97:91:6D:2C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/661609-cfba-47ed-ad4f-066b3cd87d69/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/661609-cfba-47ed-ad4f-066b3cd87d69/1/PkSqqeUGNRG2Egs38ASFUZeRbSw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.104.0/24
Signature Algorithm: sha256WithRSAEncryption
64:9c:54:a0:f4:ca:35:b4:15:25:2d:cc:43:4f:93:5f:2c:45:
e7:16:cd:3e:83:f4:23:f9:7c:38:ea:75:6b:fc:bf:14:e7:d6:
ef:e3:39:3d:4b:95:77:f2:1d:d7:7e:64:ca:cb:64:44:33:4f:
74:a0:2c:ab:8b:dd:3b:88:20:48:a2:55:a3:43:dd:45:05:72:
63:ec:75:48:a2:8e:40:64:b8:d3:b7:ce:a4:88:d2:3e:f6:76:
5e:12:fc:ef:84:16:b2:d5:78:53:7b:29:e1:fe:dc:58:87:e5:
19:ec:83:cf:45:01:0f:b0:91:e2:91:d8:b4:e0:92:94:c4:ad:
74:99:56:4c:8d:19:82:c7:93:b5:5b:8d:e2:da:6f:d7:6c:c7:
05:35:e0:64:2a:53:af:77:6e:a1:75:6b:e7:b3:f6:c6:bd:3c:
50:be:9c:2d:53:5d:4d:61:95:8a:cf:89:f5:7f:bd:52:88:1c:
39:54:22:5f:e6:f3:6a:53:85:b6:d2:c3:71:39:01:f3:1d:e1:
6c:98:be:01:28:1f:50:b7:95:05:4e:92:9e:f2:ce:76:a9:9b:
62:cd:01:5c:20:68:e4:2c:cd:69:1a:5d:4f:5e:79:69:2a:d4:
f9:d3:d4:16:f9:55:ce:d4:2b:47:f8:e2:ad:7a:e7:be:a0:b0:
c9:d2:b7:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 17:34:56 2025 by rpki-client