Certificate

$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nljobsnijders/voibVdC3Nzl9dcSfSFuFj6mK0R8.cer
File:                     voibVdC3Nzl9dcSfSFuFj6mK0R8.cer (raw, json)
Hash identifier:          F9GCiGID9rlYLXvR6H3xknMgWliw9m545NMfkNj5qwY=
Subject key identifier:   BE:88:9B:55:D0:B7:37:39:7D:75:C4:9F:48:5B:85:8F:A9:8A:D1:1F
Authority key identifier: CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
Certificate issuer:       /CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Certificate serial:       C8AD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
BGPsec ECDSA public key:  MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE4FxJr0n2bux1uX1Evl+QWwZYvIadPjLuFX2mxqKuAGUhKnr7VLLDgrE++l9p5eH2kWTNVAN22FUU3db/RKpE2w==
Router key not before:    Wed 07 Dec 2022 17:27:51 +0000
Router key not after:     Sat 04 Nov 2023 13:47:59 +0000
Subordinate resources:    AS: 15562

Validation:               OK
Signature path:           rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl
                          rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
                          rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
                          rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 20 Jul 2023 03:39:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 51373 (0xc8ad)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
        Validity
            Not Before: Dec  7 17:27:51 2022 GMT
            Not After : Nov  4 13:47:59 2023 GMT
        Subject: CN=ROUTER-00003cca/serialNumber=00000001
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub: 
                    04:e0:5c:49:af:49:f6:6e:ec:75:b9:7d:44:be:5f:
                    90:5b:06:58:bc:86:9d:3e:32:ee:15:7d:a6:c6:a2:
                    ae:00:65:21:2a:7a:fb:54:b2:c3:82:b1:3e:fa:5f:
                    69:e5:e1:f6:91:64:cd:54:03:76:d8:55:14:dd:d6:
                    ff:44:aa:44:db
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BE:88:9B:55:D0:B7:37:39:7D:75:C4:9F:48:5B:85:8F:A9:8A:D1:1F
            X509v3 Authority Key Identifier:
                keyid:CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer

            X509v3 Key Usage: critical
                Digital Signature
            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  15562

            X509v3 Extended Key Usage:
                BGPsec Router
    Signature Algorithm: sha256WithRSAEncryption
         0f:6d:71:31:1b:cb:9e:ff:c7:08:e2:ab:c5:35:2b:05:1d:e7:
         0b:d1:1b:4b:0c:03:8a:0c:81:b8:18:d7:f8:90:0d:5d:ba:86:
         b7:60:05:0e:07:b6:2f:0d:a5:fc:ff:6a:5a:92:23:40:a9:a8:
         cd:b4:29:cb:35:fb:17:61:b1:18:f2:36:52:8b:bd:cf:59:f7:
         43:74:53:53:00:81:55:7b:30:37:e7:96:9a:64:89:f8:eb:4c:
         9f:d5:6a:3a:57:16:87:f5:d4:1e:c1:1d:4f:eb:2a:09:48:42:
         a5:10:7f:37:a2:d3:84:07:f5:17:e0:e1:42:38:5e:e6:13:e8:
         89:71:5e:14:aa:1d:13:46:00:96:b0:f3:ae:4f:5c:11:e5:10:
         5b:2c:a9:51:70:3b:c0:59:6b:0f:d1:ea:db:94:b4:59:e1:32:
         60:37:a7:e7:e0:52:cf:d4:93:f4:1b:a3:59:7f:d4:49:f1:66:
         f8:b5:83:d1:28:99:a4:7a:02:e1:ac:37:8a:2b:0a:62:44:3c:
         13:3e:b5:f7:2e:fd:e6:3c:77:8f:c6:76:ea:43:5d:d7:cf:82:
         50:15:8d:88:14:8c:c5:e4:de:24:ca:a8:26:59:0f:e0:e6:65:
         74:72:17:a3:40:94:6a:ff:6b:9f:1d:c2:4b:da:d4:cb:bc:5c:
         af:94:cf:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 22:19:50 2023 by rpki-client on console-ams.rpki-client.org