Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bs8tPXJ_Sv-sMPqm0FcilK1CzJs.cer
File: bs8tPXJ_Sv-sMPqm0FcilK1CzJs.cer (raw, json)
Hash identifier: kmnJxa9XqUtjliOvxndUPmRHN/WYTUXfE8F72vvToYY=
Subject key identifier: 6E:CF:2D:3D:72:7F:4A:FF:AC:30:FA:A6:D0:57:22:94:AD:42:CC:9B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0183797657D22C924F20CAB1E6903A142010
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/be/41c170-eb39-4750-bed3-f9c749dd4b48/1/bs8tPXJ_Sv-sMPqm0FcilK1CzJs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/be/41c170-eb39-4750-bed3-f9c749dd4b48/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 26 Sep 2022 11:02:22 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 202995
IP: 5.182.80.0/22
IP: 45.14.208.0/22
IP: 45.89.40.0/22
IP: 45.147.204.0/22
IP: 81.22.232.0/22
IP: 185.148.52.0/22
IP: 185.209.8.0/22
IP: 185.210.60.0/22
IP: 185.210.72.0/22
IP: 185.255.72.0/22
IP: 193.228.194.0/23
IP: 193.228.204.0/23
IP: 194.36.104.0/22
IP: 194.147.144.0/22
IP: 2a0a:f600::/29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:79:76:57:d2:2c:92:4f:20:ca:b1:e6:90:3a:14:20:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 26 11:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ecf2d3d727f4affac30faa6d0572294ad42cc9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8c:aa:92:9a:a0:1d:f3:79:28:9e:72:5a:4a:
92:e9:5e:e4:1f:ff:42:93:56:13:db:25:21:75:cc:
cc:5d:6b:1e:58:a2:ef:ea:f1:48:26:7a:b0:0b:fa:
c4:83:36:09:2a:00:77:2c:82:b0:40:06:e1:13:d9:
a3:5a:a1:36:ec:f8:e2:bd:e2:24:28:90:22:d3:79:
38:b2:5e:33:92:0f:ac:92:56:fb:81:3b:cf:cb:11:
32:07:0b:95:99:41:cc:49:d5:c9:4f:1b:0f:55:04:
0e:6e:fa:6b:1e:6d:e3:6d:da:39:9d:61:58:ec:4b:
48:d3:07:67:58:b5:93:0c:30:c6:f1:7e:52:50:8e:
c8:80:10:60:fa:89:88:2c:10:2f:df:ed:07:e1:7a:
d5:5a:bb:14:e4:a2:4f:d5:fd:1b:e0:ab:5d:7d:64:
22:9f:fb:c5:e9:a2:03:f6:e7:b6:e2:c7:36:8e:43:
06:66:12:c1:b2:a1:4d:3c:1b:ec:88:cb:6b:93:2f:
2a:3b:c5:ba:24:78:95:5d:39:43:c5:fe:a4:d6:35:
93:57:c2:e0:39:f3:27:1f:65:5c:6e:0b:be:8d:90:
95:c4:c9:5e:5e:67:08:50:82:28:6a:43:d7:15:40:
60:d9:04:b5:a1:25:cf:31:e5:dc:a0:7f:ff:78:f7:
22:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:CF:2D:3D:72:7F:4A:FF:AC:30:FA:A6:D0:57:22:94:AD:42:CC:9B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/41c170-eb39-4750-bed3-f9c749dd4b48/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/41c170-eb39-4750-bed3-f9c749dd4b48/1/bs8tPXJ_Sv-sMPqm0FcilK1CzJs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.80.0/22
45.14.208.0/22
45.89.40.0/22
45.147.204.0/22
81.22.232.0/22
185.148.52.0/22
185.209.8.0/22
185.210.60.0/22
185.210.72.0/22
185.255.72.0/22
193.228.194.0/23
193.228.204.0/23
194.36.104.0/22
194.147.144.0/22
IPv6:
2a0a:f600::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202995
Signature Algorithm: sha256WithRSAEncryption
40:23:34:d3:32:3b:63:63:e4:c0:9a:f8:09:b1:0d:c1:d2:6b:
2a:9a:e0:b3:e0:1b:84:eb:6f:94:34:30:a5:ae:a9:45:25:22:
1e:28:47:b2:30:04:8d:8c:b8:d8:0f:8c:9c:30:d5:b7:3f:61:
2e:a9:1e:bb:a8:48:9d:a6:be:c7:5f:4e:aa:63:95:4c:f2:7c:
20:01:e3:56:2a:ec:c1:fa:d1:6e:d3:cd:08:57:78:b8:c7:d2:
26:44:1b:2f:70:8d:aa:4b:9d:97:54:47:a2:28:b2:aa:35:4d:
b2:cc:af:88:13:be:e5:9b:6c:85:8d:bb:00:a9:40:5b:ee:ab:
40:46:ef:77:02:39:ad:3f:53:6e:cb:18:df:97:7a:fa:17:a0:
bd:83:03:4d:f2:d0:57:65:0e:dc:9a:9a:d6:51:78:9b:59:33:
e5:6c:88:b1:f8:c9:23:c5:4c:29:c6:66:52:18:73:69:91:3f:
f6:32:e2:f1:34:28:dd:87:23:c0:9b:d1:aa:74:fe:c6:3e:62:
07:87:7b:51:60:d5:9b:37:89:7b:e9:72:7b:2b:8f:42:1c:65:
af:d1:c9:2a:08:c0:f0:d0:58:3e:2e:91:d0:78:e3:65:cb:99:
94:59:87:22:4a:69:b5:d4:11:7b:37:47:cd:ed:b0:f2:f5:e6:
56:8c:95:d9
-----BEGIN CERTIFICATE-----
MIIF8TCCBNmgAwIBAgISAYN5dlfSLJJPIMqx5pA6FCAQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjIwOTI2MTEwMjIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZWNmMmQzZDcyN2Y0YWZmYWMzMGZhYTZkMDU3MjI5NGFkNDJjYzliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4yqkpqgHfN5KJ5yWkqS6V7kH/9C
k1YT2yUhdczMXWseWKLv6vFIJnqwC/rEgzYJKgB3LIKwQAbhE9mjWqE27PjiveIk
KJAi03k4sl4zkg+sklb7gTvPyxEyBwuVmUHMSdXJTxsPVQQObvprHm3jbdo5nWFY
7EtI0wdnWLWTDDDG8X5SUI7IgBBg+omILBAv3+0H4XrVWrsU5KJP1f0b4KtdfWQi
n/vF6aID9ue24sc2jkMGZhLBsqFNPBvsiMtrky8qO8W6JHiVXTlDxf6k1jWTV8Lg
OfMnH2Vcbgu+jZCVxMleXmcIUIIoakPXFUBg2QS1oSXPMeXcoH//ePcixQIDAQAB
o4IC/TCCAvkwHQYDVR0OBBYEFG7PLT1yf0r/rDD6ptBXIpStQsybMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JlLzQxYzE3
MC1lYjM5LTQ3NTAtYmVkMy1mOWM3NDlkZDRiNDgvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUvNDFjMTcw
LWViMzktNDc1MC1iZWQzLWY5Yzc0OWRkNGI0OC8xL2JzOHRQWEpfU3Ytc01QcW0w
RmNpbEsxQ3pKcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMHwGCCsGAQUF
BwEHAQH/BG0wazBaBAIAATBUAwQCBbZQAwQCLQ7QAwQCLVkoAwQCLZPMAwQCURbo
AwQCuZQ0AwQCudEIAwQCudI8AwQCudJIAwQCuf9IAwQBweTCAwQBweTMAwQCwiRo
AwQCwpOQMA0EAgACMAcDBQMqCvYAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMY
8zANBgkqhkiG9w0BAQsFAAOCAQEAQCM00zI7Y2PkwJr4CbENwdJrKprgs+AbhOtv
lDQwpa6pRSUiHihHsjAEjYy42A+MnDDVtz9hLqkeu6hInaa+x19OqmOVTPJ8IAHj
VirswfrRbtPNCFd4uMfSJkQbL3CNqkudl1RHoiiyqjVNssyviBO+5ZtshY27AKlA
W+6rQEbvdwI5rT9TbssY35d6+hegvYMDTfLQV2UO3Jqa1lF4m1kz5WyIsfjJI8VM
KcZmUhhzaZE/9jLi8TQo3YcjwJvRqnT+xj5iB4d7UWDVmzeJe+lyeyuPQhxlr9HJ
KgjA8NBYPi6R0HjjZcuZlFmHIkpptdQRezdHze2w8vXmVoyV2Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:58 2024 by rpki-client on console-ams.rpki-client.org