Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bzjsIYffzP_yaTFCbraEuSDvYvg.cer
File: bzjsIYffzP_yaTFCbraEuSDvYvg.cer (raw, json)
Hash identifier: Ypw/qm1oFWzvxkqilJZxWNpP4vGKjI4E2ahDC+jpIqM=
Subject key identifier: 6F:38:EC:21:87:DF:CC:FF:F2:69:31:42:6E:B6:84:B9:20:EF:62:F8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0182F6A660B4948D37201258AB803A204584
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fe/68a242-08e0-4fc0-a834-77ba6b8fa86a/1/bzjsIYffzP_yaTFCbraEuSDvYvg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fe/68a242-08e0-4fc0-a834-77ba6b8fa86a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 01 Sep 2022 01:24:35 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 56390
IP: 195.3.218.0/24
IP: 2001:67c:2bf0::/48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f6:a6:60:b4:94:8d:37:20:12:58:ab:80:3a:20:45:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 1 01:24:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f38ec2187dfccfff26931426eb684b920ef62f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9f:b3:c7:d0:80:8a:a0:ba:da:0e:61:dc:dd:
8f:f4:6e:f6:0d:d9:73:b7:a6:4b:5d:45:07:38:84:
95:61:97:b6:39:b8:95:4e:af:5b:9f:7c:ad:9e:47:
b7:ac:eb:1e:21:49:01:72:b9:ea:cf:94:4b:b5:ec:
7e:80:ff:18:1e:49:aa:22:0f:e9:27:91:13:6a:43:
62:b9:dc:76:7d:34:c2:ff:c5:25:9c:41:70:64:1b:
e5:69:99:1e:91:25:dd:e9:fa:9e:96:17:a2:92:37:
1c:b8:04:6b:e5:76:74:21:1f:01:3c:0a:25:16:37:
b9:24:3b:94:a1:0d:59:ce:fe:1f:77:55:14:c4:67:
57:71:cb:49:95:b3:d6:74:0b:68:3b:8a:70:64:af:
85:40:33:66:d2:f1:99:46:e0:52:50:68:3b:d8:60:
1d:53:d6:67:13:59:25:e5:ad:f9:0c:ec:8e:c6:1e:
fe:ee:f1:2b:2f:1d:0d:2b:c9:fc:30:72:c1:a3:06:
2c:6f:e1:50:34:eb:35:70:09:41:98:a7:11:95:f3:
8a:ad:75:45:67:a3:c4:68:c8:f4:a8:22:a3:64:95:
41:13:07:2f:cd:62:cd:1a:a4:c5:74:be:54:23:83:
77:12:ce:96:5d:0f:61:14:a9:56:31:bd:04:ef:69:
3e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:38:EC:21:87:DF:CC:FF:F2:69:31:42:6E:B6:84:B9:20:EF:62:F8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/68a242-08e0-4fc0-a834-77ba6b8fa86a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/68a242-08e0-4fc0-a834-77ba6b8fa86a/1/bzjsIYffzP_yaTFCbraEuSDvYvg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.3.218.0/24
IPv6:
2001:67c:2bf0::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56390
Signature Algorithm: sha256WithRSAEncryption
6c:b6:d0:0b:ee:ab:0b:e6:a8:95:16:c3:f5:e1:cd:f2:3a:f0:
59:79:b4:1d:d3:8c:e2:e8:a6:5d:9b:64:28:80:f7:50:4f:38:
20:90:b7:6a:f4:9a:23:c3:5f:5a:16:19:3c:fe:05:a9:26:be:
82:53:b8:9e:be:80:11:cd:1e:33:bc:3d:96:cc:3c:a3:5e:23:
32:15:6d:8a:0b:fc:3f:77:d4:47:df:41:1c:db:32:bc:3a:1e:
36:5d:31:3a:55:91:c3:ce:ca:4e:a6:10:74:e8:f7:13:43:e9:
fc:18:c1:ec:49:83:17:f6:08:4c:02:68:24:a7:8d:e6:79:cd:
53:90:12:49:cd:6b:77:b3:18:50:b4:61:b4:d9:20:a0:ac:a9:
c1:b9:04:ce:65:fe:d1:d9:38:22:b3:37:cc:be:14:fd:79:90:
76:a3:83:3e:d3:c8:66:4f:c5:ce:18:4c:21:d5:26:ad:48:88:
b8:0c:57:ce:7f:ea:2a:16:eb:d7:59:3b:62:be:26:3b:be:1f:
08:8a:1e:02:90:b3:55:8f:a5:22:21:84:25:37:ca:ec:2a:58:
82:7c:a1:a3:dc:cb:05:06:6a:d1:91:2f:23:a1:64:ff:56:4e:
5f:4a:aa:8b:dd:40:e0:05:6a:32:94:21:29:1f:e2:92:46:4f:
a0:03:98:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:46:53 2025 by rpki-client