Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/TqhwmP2eG9FVfBmbmqYuhQRRrdg.cer
File: TqhwmP2eG9FVfBmbmqYuhQRRrdg.cer (raw, json)
Hash identifier: ovhbTiXXySBvbVYC00kymsOZiY+EOKaxqkFBeDVOJnU=
Subject key identifier: 4E:A8:70:98:FD:9E:1B:D1:55:7C:19:9B:9A:A6:2E:85:04:51:AD:D8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856CAD1AF05DC492C2109E8DF4134688D2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/88/020e48-1e09-4a22-b0bd-ad110aba84bd/1/TqhwmP2eG9FVfBmbmqYuhQRRrdg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/88/020e48-1e09-4a22-b0bd-ad110aba84bd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 09:32:42 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 201670
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ad:1a:f0:5d:c4:92:c2:10:9e:8d:f4:13:46:88:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:32:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ea87098fd9e1bd1557c199b9aa62e850451add8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:37:b1:2d:14:2a:e1:92:cd:71:b0:ee:32:bc:
e9:97:73:7e:d3:7c:e6:32:5b:56:2b:62:76:06:9a:
2f:10:09:43:71:22:86:3c:03:b5:51:33:73:c2:45:
4a:7a:d4:97:ea:94:63:27:d3:88:ab:bf:0d:d3:4c:
f4:d5:d2:fa:5d:ea:79:27:03:f7:94:4b:94:6b:dc:
18:58:94:71:8e:59:44:72:ce:8b:ec:07:be:de:ec:
d3:56:69:a0:ee:60:7e:2f:75:c9:bb:34:fb:00:2f:
f5:4f:a3:c1:ef:55:15:8b:0a:cf:8b:8c:38:42:48:
89:88:89:d2:67:55:f9:30:4c:17:33:9d:15:1b:5d:
1b:74:8a:0b:98:3a:88:96:84:5c:74:64:16:ea:c1:
ef:73:3d:5c:63:60:c5:dd:8d:56:34:d7:4a:9f:9e:
3b:e9:95:44:3d:c3:79:10:69:3f:49:c9:78:8f:c6:
34:54:26:d5:df:05:06:7d:3b:27:34:1d:4d:a0:28:
77:64:a6:c4:b4:7e:ab:fa:ad:7e:aa:ec:5e:f7:29:
f3:e1:4c:1e:94:5d:ca:6e:94:55:d1:1b:c0:5d:fc:
09:19:23:b2:f3:a6:9a:d2:82:7a:36:6f:97:7c:31:
d8:8a:09:44:12:af:47:0b:65:c2:e6:0d:66:b6:72:
56:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A8:70:98:FD:9E:1B:D1:55:7C:19:9B:9A:A6:2E:85:04:51:AD:D8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/020e48-1e09-4a22-b0bd-ad110aba84bd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/020e48-1e09-4a22-b0bd-ad110aba84bd/1/TqhwmP2eG9FVfBmbmqYuhQRRrdg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201670
Signature Algorithm: sha256WithRSAEncryption
8e:31:be:3b:10:43:b2:16:46:61:93:48:60:09:bb:42:06:2f:
bf:b6:48:8d:cf:b3:39:db:1d:48:83:a3:8f:ea:f7:07:d7:18:
a7:fb:39:51:58:23:0a:d5:60:c0:64:ba:a7:fe:8a:8d:fb:34:
92:6d:92:0c:a0:62:5d:48:9d:ae:3b:13:0b:1e:f2:ea:6e:d2:
bd:cc:19:fc:cf:02:47:cd:60:6e:dc:8b:e0:26:e1:f5:4b:4a:
bd:50:63:39:90:24:2d:b2:c8:83:cb:68:9a:7d:30:74:fd:c5:
26:61:2c:97:23:54:c6:41:ef:28:3e:ae:ea:60:c4:fb:c9:82:
72:cc:90:f4:7a:44:90:3f:aa:58:6a:bc:c9:9c:57:ff:8b:47:
08:56:ea:dd:b8:92:3e:bc:5f:cf:e7:38:33:6c:df:90:dd:27:
48:e9:e2:73:7e:03:ba:e4:4f:73:52:81:61:75:70:20:fb:10:
9c:13:a4:e6:40:0b:7b:62:8e:fc:c2:b6:b3:57:91:cf:d6:d1:
40:ab:10:92:e6:5c:43:d1:d6:be:15:ee:6b:e4:46:7b:ed:bc:
b5:cf:e0:24:47:e1:37:fc:07:80:42:2a:a8:97:72:da:8b:1b:
e2:03:3f:41:88:d2:b2:b3:98:ab:bc:6f:61:76:82:1b:ce:0d:
53:77:36:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 01:29:25 2025 by rpki-client