Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BkG1mr8J7ot6nlTi6sDvP_wqQZA.cer
File: BkG1mr8J7ot6nlTi6sDvP_wqQZA.cer (raw, json)
Hash identifier: Y1PjKYLODvv9v+ONaf8MO0fQ4izgEUDUB3WMtb33N9w=
Subject key identifier: 06:41:B5:9A:BF:09:EE:8B:7A:9E:54:E2:EA:C0:EF:3F:FC:2A:41:90
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 9DF8B27524
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/88/ca9afc-6474-40bf-9e3d-7803d068544b/1/BkG1mr8J7ot6nlTi6sDvP_wqQZA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/88/ca9afc-6474-40bf-9e3d-7803d068544b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 04:57:35 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 35029
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 678482310436 (0x9df8b27524)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:57:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0641b59abf09ee8b7a9e54e2eac0ef3ffc2a4190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:64:c2:21:1b:cc:12:2a:a6:c4:4a:b6:a1:c2:
b2:fa:18:46:82:72:10:13:58:d6:fa:fe:41:7c:46:
ab:d8:30:7d:4c:a8:c2:37:9c:61:02:45:9e:70:fa:
ec:c1:bd:6e:a2:ca:08:95:79:dd:65:3e:76:9c:18:
21:f5:ba:af:0d:7c:dc:f8:ae:bb:5f:28:0f:ab:ff:
28:52:f6:15:e7:fb:89:f2:25:e3:f1:f6:4c:75:d0:
da:9f:e3:8e:ce:b1:21:bd:2f:26:2b:01:43:63:99:
1b:8c:cc:d0:a8:63:5e:c9:cb:ea:31:7c:af:ef:54:
97:d0:28:fc:6b:94:7c:e4:77:9a:66:7f:eb:55:fc:
53:f4:f7:fe:af:6a:ea:eb:fb:03:82:62:b1:22:45:
cd:50:1c:6a:79:33:db:3b:ad:ba:08:54:88:6a:4f:
cf:37:b7:28:03:f5:ae:02:02:67:08:8f:fd:e2:ab:
3b:51:5e:a2:6c:74:f4:48:df:1c:90:e0:eb:d5:a0:
15:88:af:c2:5b:fa:3e:01:4a:0f:83:05:30:0d:b4:
00:0d:96:fe:9f:cc:08:fb:9e:e6:a7:d8:e4:38:20:
37:f7:0a:cc:c6:b9:d4:60:0f:65:3d:04:16:78:78:
82:a5:88:07:27:03:6f:e8:f7:7a:56:92:4b:d7:ba:
11:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:41:B5:9A:BF:09:EE:8B:7A:9E:54:E2:EA:C0:EF:3F:FC:2A:41:90
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ca9afc-6474-40bf-9e3d-7803d068544b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ca9afc-6474-40bf-9e3d-7803d068544b/1/BkG1mr8J7ot6nlTi6sDvP_wqQZA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35029
Signature Algorithm: sha256WithRSAEncryption
2b:27:e0:89:d6:a5:5f:a2:cd:a7:bb:33:08:66:b1:f0:fd:69:
b9:1e:59:c0:bf:ae:49:21:e0:36:54:95:d8:b1:1c:ef:61:f3:
38:87:51:36:da:fc:c4:e4:5e:25:f2:5d:0e:50:96:19:48:3e:
de:c4:05:56:d2:20:16:8a:2c:b9:cf:35:e7:c0:c3:e1:0d:c8:
98:dd:96:9f:9e:3a:ec:27:c5:ec:dc:aa:01:f1:61:a7:ae:39:
a9:47:37:47:e2:1e:50:1b:b4:68:bf:72:67:7b:fd:69:8e:ec:
05:6e:ce:a2:9e:ae:36:12:49:a3:19:c9:d4:c7:90:5d:a4:2d:
1b:a7:fc:70:61:1e:b3:bd:6c:f6:cb:61:11:c3:f2:48:62:f5:
61:4d:ff:81:46:66:03:18:01:af:62:98:25:60:a8:a3:99:22:
8d:12:e0:5c:2e:37:96:b6:c8:70:d1:88:c6:b8:40:4b:81:83:
82:da:56:aa:c0:ec:5e:c3:09:c2:fc:17:25:63:96:09:04:72:
34:91:ef:f2:08:20:89:71:8e:01:5d:bf:c8:ab:d3:b8:e6:f2:
5d:b6:60:34:49:18:06:1d:15:5c:0a:af:ae:9d:63:d4:13:e0:
3b:02:36:06:4d:9d:c2:22:4b:2f:f9:d2:ab:1e:db:40:84:b5:
77:12:d3:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:32:55 2025 by rpki-client