Certificate
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07.cer
File: 871da40f-793a-4a45-a0a9-978148321a07.cer (raw, json)
Hash identifier: JgdM+87U6iicwKmhCO0m2MpY4NqgfUNBTbd2BSAt2Xs=
Subject key identifier: 95:84:1C:EB:EB:09:4A:4E:59:7A:09:03:58:D0:60:E7:4F:39:89:77
Authority key identifier: 62:47:7E:1F:D9:E5:25:D0:D7:A2:BB:63:D9:14:E1:4E:E4:54:A3:64
Certificate issuer: /CN=5e4a23ea-e80a-403e-b08c-2171da2157d3
Certificate serial: 010D0C9F432858434EBECB4C432B395B6F238A70
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
Manifest: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft
caRepository: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/
Notify URL: https://rrdp.arin.net/notification.xml
Certificate not before: Fri 22 Sep 2023 13:09:41 +0000
Certificate not after: Thu 25 Dec 2025 14:09:41 +0000
Subordinate resources: AS: inherit
IP: inherit
IP: inherit
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Sat 27 Apr 2024 14:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:43:4e:be:cb:4c:43:2b:39:5b:6f:23:8a:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e4a23ea-e80a-403e-b08c-2171da2157d3
Validity
Not Before: Sep 22 13:09:41 2023 GMT
Not After : Dec 25 14:09:41 2025 GMT
Subject: CN=871da40f-793a-4a45-a0a9-978148321a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a4:b8:14:01:d6:ab:bd:ed:28:af:b9:92:9f:
17:84:9f:24:5d:a4:1c:e2:b9:72:44:88:21:8a:9c:
74:24:3e:3c:3a:f1:7a:6b:6d:06:b2:17:ab:3f:6c:
c7:e0:46:b0:95:e8:03:0e:ec:a9:ce:41:97:fb:ac:
3d:c9:c4:0a:7e:38:4e:77:69:45:5f:00:e9:92:a3:
0a:a4:85:17:7a:91:39:c4:85:22:95:c0:0d:d8:41:
b4:c6:90:0d:f4:0c:86:6a:fd:0f:de:1a:2f:05:d0:
6c:00:9f:c2:d9:74:15:20:52:18:52:ea:eb:f7:22:
c6:1f:65:39:f0:a4:f7:36:db:cf:99:25:44:d0:2a:
79:c7:6f:5e:95:64:5c:58:04:2d:be:c5:8a:51:38:
81:85:81:e2:75:bd:c8:2b:03:65:8d:7f:90:cd:6b:
cb:b9:6d:85:ef:47:22:8d:6e:d3:1f:c6:1d:f3:b4:
cc:c5:84:46:eb:54:d2:ad:d6:42:bc:1e:12:f6:5e:
ca:ed:5f:fc:b8:fe:31:8f:20:c8:b3:bb:3b:20:b0:
1b:95:38:2e:67:06:37:94:43:f6:ef:63:58:f1:a1:
df:b7:14:4f:b3:8d:7c:a8:67:22:c1:41:6a:38:26:
d9:74:21:66:e7:da:a6:c2:83:d0:3b:30:00:27:e3:
bd:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:84:1C:EB:EB:09:4A:4E:59:7A:09:03:58:D0:60:E7:4F:39:89:77
Subject Information Access:
CA Repository - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/
RPKI Manifest - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft
RPKI Notify - URI:https://rrdp.arin.net/notification.xml
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
X509v3 Authority Key Identifier:
keyid:62:47:7E:1F:D9:E5:25:D0:D7:A2:BB:63:D9:14:E1:4E:E4:54:A3:64
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
1d:21:f2:09:6d:b7:21:2e:5a:06:dd:05:bf:52:ab:87:63:74:
32:a5:d7:d1:4d:3a:f6:e6:92:d3:79:89:f7:76:91:cd:63:74:
7d:a9:8b:58:d0:92:a7:7d:5a:80:a0:ed:b5:6b:21:05:ed:1b:
09:6a:72:43:b4:16:24:d0:e9:c1:5d:ba:65:2b:36:71:0d:b5:
e9:98:96:3d:38:1e:97:a0:c6:56:9b:23:cf:64:14:05:39:4b:
fd:0b:2c:24:b2:bb:27:3a:9e:31:d8:f1:26:03:d4:e0:22:e1:
4a:d8:a0:54:a4:18:c5:45:22:1c:67:aa:13:b4:57:5f:e6:12:
8d:49:12:9c:03:13:a5:e0:ea:dc:f1:af:84:81:b2:57:52:1f:
85:09:54:0f:c4:ae:21:37:c2:1f:6f:31:b3:31:2e:35:ed:e4:
8c:53:4c:72:c4:25:22:92:9a:6d:1d:b2:1a:e7:5d:e1:5b:07:
3d:b5:74:63:be:1f:1d:59:92:aa:8f:e0:6d:19:52:13:ff:9f:
e0:df:d5:93:34:9b:91:c7:b1:ad:0f:00:2f:bc:16:fd:7c:06:
61:b7:08:37:84:b7:92:70:19:12:a7:65:83:fc:49:fd:4c:62:
a8:61:01:74:d2:fd:f1:a8:58:aa:61:db:f8:c5:4a:cb:ae:c7:
1b:68:ec:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:45:23 2024 by rpki-client on console-fra.rpki-client.org