Certificate

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
File:                     41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer (raw, json)
Hash identifier:          yJ/tZ7/33wViALbpShi7st8AXHVstdFqObb/f4FRZPQ=
Subject key identifier:   41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Certificate issuer:       /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial:       11F12E582C6150B692BE0FC611BAC51010986139
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Manifest:                 rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft
caRepository:             rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/
Notify URL:               https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before:   Tue 19 Sep 2023 01:04:42 +0000
Certificate not after:    Tue 17 Sep 2024 01:09:42 +0000
Subordinate resources:    IP: 2a07:54c0::/29

Validation:               OK
Signature path:           rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
                          rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 03:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            11:f1:2e:58:2c:61:50:b6:92:be:0f:c6:11:ba:c5:10:10:98:61:39
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
        Validity
            Not Before: Sep 19 01:04:42 2023 GMT
            Not After : Sep 17 01:09:42 2024 GMT
        Subject: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:82:28:8d:d2:ce:4b:87:a3:69:d0:c2:8d:31:
                    35:bb:5a:29:ff:e7:f3:e9:ea:d2:7f:8d:5a:1c:83:
                    a3:35:f5:57:47:22:bb:4b:a2:cc:c8:08:7c:27:f6:
                    71:3f:c2:c3:69:40:8b:e5:c8:76:05:4e:f6:db:78:
                    90:bc:30:d4:39:78:c3:91:c6:3c:30:ab:e2:38:e1:
                    cd:28:fe:19:3b:44:d1:e6:77:b6:2c:ac:c7:ca:51:
                    4a:68:91:e7:37:47:3b:1b:6f:38:44:46:2f:41:f0:
                    14:a2:9f:85:fa:c4:62:72:b4:3b:b3:fd:bf:2f:80:
                    34:9f:b2:2e:28:78:8c:c7:1e:1b:8f:fa:41:5c:7d:
                    2e:bb:8b:e2:4b:55:cd:42:8f:46:e1:4e:35:97:1f:
                    05:f1:a6:91:23:fe:56:5b:d4:20:04:d4:22:45:3e:
                    54:45:52:96:98:0e:0c:9a:16:eb:e0:7d:93:d0:ce:
                    d0:3a:e7:c5:51:5e:25:6e:84:aa:38:6f:08:a2:bd:
                    67:87:4b:81:05:dd:26:5e:eb:a9:ec:d2:f7:ba:ec:
                    da:a6:a3:67:98:00:73:3d:35:8c:c5:b4:72:e7:ab:
                    72:72:56:45:01:f6:6e:b4:f1:a9:5d:9e:07:4f:9c:
                    04:e3:88:4a:9f:7d:3d:76:87:f7:7d:2d:d8:4f:ff:
                    03:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Subject Key Identifier:
                41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
            X509v3 Authority Key Identifier:
                keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer

            Subject Information Access:
                CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/
                RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft
                RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a07:54c0::/29

    Signature Algorithm: sha256WithRSAEncryption
         4e:8e:6c:1b:f6:ac:f7:0f:08:31:8a:c0:33:a1:59:39:03:31:
         38:12:74:f1:88:fa:ad:31:64:8b:de:98:ff:4c:3c:94:1a:7d:
         96:6c:eb:23:f3:71:70:8d:75:16:9d:f1:d6:95:c2:ec:a4:ba:
         8a:25:41:e7:c4:2c:89:20:f4:d9:96:2e:4b:7c:ba:aa:26:5b:
         bc:bf:0e:87:55:bf:b7:c4:02:0d:0f:7e:78:83:13:76:98:6d:
         cd:15:3e:f6:b8:87:6d:c7:02:86:df:18:69:93:a4:6f:33:cc:
         fd:9a:02:73:20:71:fb:a4:ba:c3:ad:33:7a:24:86:7a:e1:77:
         be:34:0c:af:2c:7b:4e:eb:e6:59:0c:0f:ad:cd:1d:a8:3b:bd:
         2f:58:b1:d6:81:39:b8:ef:93:85:33:3a:ff:f2:ef:19:96:ba:
         e3:a2:e3:cb:58:40:47:68:4a:84:ce:7d:5a:2a:80:56:b1:41:
         6e:90:4a:c5:1f:56:50:da:ee:c4:2b:ab:2b:cf:0a:1f:84:2d:
         a8:bc:a1:74:c0:9c:ca:22:14:3c:4e:bf:3c:0b:87:74:1c:0e:
         06:c8:66:2d:f9:13:96:61:05:c5:50:46:7e:60:69:e5:ac:24:
         cd:2d:48:a5:62:b4:54:28:00:5d:1d:94:70:2c:56:3e:b5:d3:
         1b:a1:a7:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 10:11:07 2024 by rpki-client on console-fra.rpki-client.org