Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tHcQ0g9SlLwgfmZ_hnMSbi9cEaw.cer
File: tHcQ0g9SlLwgfmZ_hnMSbi9cEaw.cer (raw, json)
Hash identifier: YjaVPl4nlykcRAVNfxPuPfiE5pkeympYTEySnmNaE5g=
Subject key identifier: B4:77:10:D2:0F:52:94:BC:20:7E:66:7F:86:73:12:6E:2F:5C:11:AC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0186B928BB76D3D21EAD9A0B732A2109A183
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d1/bd41e0-8fb2-4593-9dce-a1fc8c2e6dfe/1/tHcQ0g9SlLwgfmZ_hnMSbi9cEaw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d1/bd41e0-8fb2-4593-9dce-a1fc8c2e6dfe/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 06 Mar 2023 23:01:39 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 199668
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b9:28:bb:76:d3:d2:1e:ad:9a:0b:73:2a:21:09:a1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 6 23:01:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b47710d20f5294bc207e667f8673126e2f5c11ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7a:d3:13:c3:0d:46:3c:f5:9c:e0:4f:cc:b8:
92:fa:82:48:87:0a:53:38:61:d8:4c:af:10:43:e6:
13:00:26:3f:67:2c:2e:61:4f:80:9b:be:5d:ec:60:
ac:14:e6:89:a8:bf:72:6e:ae:db:fe:8e:8c:4c:b3:
01:5d:eb:2f:50:a9:a9:e8:43:65:b2:a4:68:bf:a6:
6e:9d:d7:11:38:3c:3b:15:a2:22:9d:db:63:18:eb:
44:9f:d5:11:c7:2f:a8:84:f4:90:27:cf:05:4c:fe:
ea:14:9e:64:9c:0d:fa:45:b9:c0:c0:90:e2:b7:80:
19:97:86:e9:80:82:42:ce:1c:9a:33:d2:12:4e:ed:
92:43:6a:b7:0a:1f:d7:53:92:d4:7a:cf:11:74:05:
1d:68:f2:65:fb:66:35:1d:ee:c4:20:f9:3f:a9:6f:
c1:c4:01:79:9a:17:d1:f8:d6:06:59:db:91:a2:89:
65:da:36:2f:02:60:47:a9:f3:33:8f:cd:52:00:95:
63:17:78:6e:32:a3:84:00:b8:bf:98:38:b0:9a:e6:
7f:88:a4:b4:0c:b2:f4:59:f4:57:4a:66:53:ee:a9:
58:b8:57:b4:13:2d:fc:be:fd:d4:1a:c0:52:fa:a5:
b5:f9:2e:8a:72:ed:91:0e:75:d0:53:af:23:e1:f6:
dd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:77:10:D2:0F:52:94:BC:20:7E:66:7F:86:73:12:6E:2F:5C:11:AC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/bd41e0-8fb2-4593-9dce-a1fc8c2e6dfe/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/bd41e0-8fb2-4593-9dce-a1fc8c2e6dfe/1/tHcQ0g9SlLwgfmZ_hnMSbi9cEaw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199668
Signature Algorithm: sha256WithRSAEncryption
99:26:d3:35:dd:78:2d:d7:98:67:3a:db:75:05:a7:9f:14:7d:
f2:03:f5:ad:57:dc:7c:f0:55:1a:82:8d:81:6b:2e:0b:aa:38:
63:41:1e:68:a5:fc:ca:8e:ce:7d:66:71:12:c4:f4:f2:81:d1:
30:70:fd:84:b6:ae:ec:18:cd:31:2f:30:3d:98:6e:fe:e6:9f:
65:e1:6a:36:ef:25:32:8f:38:db:10:f5:e9:b5:a8:b8:9b:c6:
88:e9:62:5b:2a:88:c6:ff:e0:a3:4b:f6:92:2e:64:08:17:35:
df:04:57:ff:05:24:45:b9:cf:4b:4f:85:90:79:1b:ba:03:cb:
82:df:29:e1:10:42:49:82:f2:a7:f2:46:24:99:a9:ce:24:5f:
79:14:54:96:6c:4e:6f:b5:13:ba:11:65:33:a1:79:d4:cd:da:
66:8e:6b:ef:cd:f9:57:59:e5:c8:a9:f8:56:4a:7d:1b:d6:f7:
83:6f:50:e8:89:cb:83:13:3b:62:ee:89:fd:fd:80:71:8a:14:
1d:fa:a7:35:f7:58:c0:12:96:33:8f:c6:7f:27:ed:79:73:d2:
24:85:ef:50:e5:37:1e:36:09:cb:51:08:cc:c2:3a:39:79:78:
1f:dc:66:19:4d:ca:55:8b:fb:e5:92:49:77:cf:97:eb:41:10:
af:21:c4:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 09:22:00 2025 by rpki-client