Certificate
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nljobsnijders/voibVdC3Nzl9dcSfSFuFj6mK0R8.cer
File: voibVdC3Nzl9dcSfSFuFj6mK0R8.cer (raw, json)
Hash identifier: F9GCiGID9rlYLXvR6H3xknMgWliw9m545NMfkNj5qwY=
Subject key identifier: BE:88:9B:55:D0:B7:37:39:7D:75:C4:9F:48:5B:85:8F:A9:8A:D1:1F
Authority key identifier: CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
Certificate issuer: /CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Certificate serial: C8AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
BGPsec ECDSA public key: MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE4FxJr0n2bux1uX1Evl+QWwZYvIadPjLuFX2mxqKuAGUhKnr7VLLDgrE++l9p5eH2kWTNVAN22FUU3db/RKpE2w==
Router key not before: Wed 07 Dec 2022 17:27:51 +0000
Router key not after: Sat 04 Nov 2023 13:47:59 +0000
Subordinate resources: AS: 15562
Validation: OK
Signature path: rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl
rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.mft
rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 15 Mar 2023 17:11:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51373 (0xc8ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Validity
Not Before: Dec 7 17:27:51 2022 GMT
Not After : Nov 4 13:47:59 2023 GMT
Subject: CN=ROUTER-00003cca/serialNumber=00000001
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:e0:5c:49:af:49:f6:6e:ec:75:b9:7d:44:be:5f:
90:5b:06:58:bc:86:9d:3e:32:ee:15:7d:a6:c6:a2:
ae:00:65:21:2a:7a:fb:54:b2:c3:82:b1:3e:fa:5f:
69:e5:e1:f6:91:64:cd:54:03:76:d8:55:14:dd:d6:
ff:44:aa:44:db
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:88:9B:55:D0:B7:37:39:7D:75:C4:9F:48:5B:85:8F:A9:8A:D1:1F
X509v3 Authority Key Identifier:
keyid:CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
X509v3 Key Usage: critical
Digital Signature
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15562
X509v3 Extended Key Usage:
BGPsec Router
Signature Algorithm: sha256WithRSAEncryption
0f:6d:71:31:1b:cb:9e:ff:c7:08:e2:ab:c5:35:2b:05:1d:e7:
0b:d1:1b:4b:0c:03:8a:0c:81:b8:18:d7:f8:90:0d:5d:ba:86:
b7:60:05:0e:07:b6:2f:0d:a5:fc:ff:6a:5a:92:23:40:a9:a8:
cd:b4:29:cb:35:fb:17:61:b1:18:f2:36:52:8b:bd:cf:59:f7:
43:74:53:53:00:81:55:7b:30:37:e7:96:9a:64:89:f8:eb:4c:
9f:d5:6a:3a:57:16:87:f5:d4:1e:c1:1d:4f:eb:2a:09:48:42:
a5:10:7f:37:a2:d3:84:07:f5:17:e0:e1:42:38:5e:e6:13:e8:
89:71:5e:14:aa:1d:13:46:00:96:b0:f3:ae:4f:5c:11:e5:10:
5b:2c:a9:51:70:3b:c0:59:6b:0f:d1:ea:db:94:b4:59:e1:32:
60:37:a7:e7:e0:52:cf:d4:93:f4:1b:a3:59:7f:d4:49:f1:66:
f8:b5:83:d1:28:99:a4:7a:02:e1:ac:37:8a:2b:0a:62:44:3c:
13:3e:b5:f7:2e:fd:e6:3c:77:8f:c6:76:ea:43:5d:d7:cf:82:
50:15:8d:88:14:8c:c5:e4:de:24:ca:a8:26:59:0f:e0:e6:65:
74:72:17:a3:40:94:6a:ff:6b:9f:1d:c2:4b:da:d4:cb:bc:5c:
af:94:cf:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 15 11:32:22 2023 by rpki-client on console-ams.rpki-client.org