Certificate

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
File:                     521eb33f-9672-4cd9-acce-137227e971ac.cer (raw, json)
Hash identifier:          0JA0IWFWQKLWCLDl0uiBT05h3VxBWkZX4rmEDcXJTM8=
Subject key identifier:   A2:15:11:51:87:1C:6A:15:A3:D3:83:5A:8D:B5:A1:EE:76:52:7B:E7
Authority key identifier: 62:47:7E:1F:D9:E5:25:D0:D7:A2:BB:63:D9:14:E1:4E:E4:54:A3:64
Certificate issuer:       /CN=5e4a23ea-e80a-403e-b08c-2171da2157d3
Certificate serial:       010D0C9F4328583AE0C2D748A0A776776B492280
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
Manifest:                 rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
caRepository:             rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/
Notify URL:               https://rrdp.arin.net/notification.xml
Certificate not before:   Tue 10 Aug 2021 13:23:25 +0000
Certificate not after:    Sun 10 Aug 2031 13:23:25 +0000
Subordinate resources:    AS: inherit
                          IP: inherit
                          IP: inherit

Validation:               OK
Signature path:           rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 16 Mar 2023 14:00:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:3a:e0:c2:d7:48:a0:a7:76:77:6b:49:22:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5e4a23ea-e80a-403e-b08c-2171da2157d3
        Validity
            Not Before: Aug 10 13:23:25 2021 GMT
            Not After : Aug 10 13:23:25 2031 GMT
        Subject: CN=521eb33f-9672-4cd9-acce-137227e971ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:9e:a8:4c:d7:63:4b:17:9e:de:ec:18:31:4b:
                    7d:4c:0b:69:8e:49:f3:6c:42:25:ef:33:5d:c7:80:
                    65:d8:32:8d:83:30:c5:b8:45:0c:d6:0a:8e:19:63:
                    30:b2:fd:dd:95:45:38:14:31:ce:ff:69:a3:80:33:
                    4a:38:3d:38:71:6e:1c:57:35:44:e8:d8:b4:7f:50:
                    be:68:ef:76:0e:26:04:0d:3c:26:53:39:31:94:fe:
                    79:c3:4f:b5:53:e4:13:98:8c:5f:e2:34:40:dc:0e:
                    b7:67:f6:09:a3:eb:b0:bd:0b:9c:d6:17:d2:57:50:
                    31:09:2e:4d:1d:e9:3d:ff:a8:95:4a:17:a4:ed:1f:
                    21:2a:9c:54:59:1b:7a:d2:02:24:40:c4:a2:b9:81:
                    24:46:6f:83:d3:04:14:bb:0e:d4:92:e5:1a:c3:68:
                    1e:79:da:4b:fb:9f:ea:d0:35:4b:4c:cd:ce:9e:e0:
                    c7:51:0b:c5:97:24:13:d2:af:f9:15:6d:69:d9:68:
                    8e:4b:e3:db:e6:4f:a5:5d:26:99:0f:86:af:86:ac:
                    65:f7:08:5f:2c:f4:46:15:4e:bb:4f:13:5a:6e:73:
                    ac:f7:d7:22:1d:e1:0c:ee:4a:26:5f:c2:cf:f0:d2:
                    29:41:13:3d:7f:7d:29:e5:6a:e1:38:1c:bf:ef:cf:
                    27:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                A2:15:11:51:87:1C:6A:15:A3:D3:83:5A:8D:B5:A1:EE:76:52:7B:E7
            Subject Information Access: 
                CA Repository - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/
                RPKI Manifest - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
                RPKI Notify - URI:https://rrdp.arin.net/notification.xml

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl

            X509v3 Authority Key Identifier: 
                keyid:62:47:7E:1F:D9:E5:25:D0:D7:A2:BB:63:D9:14:E1:4E:E4:54:A3:64

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         d4:b3:bb:58:c8:54:1d:66:b1:cd:60:80:39:f0:ca:47:41:75:
         24:ee:a1:16:51:a2:74:74:2e:96:20:f2:43:54:5d:c1:34:ac:
         92:d9:75:49:45:0c:54:34:ea:74:60:11:94:f9:1e:8e:da:6c:
         37:f8:93:d6:e8:65:c7:1c:b7:b0:15:70:e9:9b:23:83:ca:3f:
         ab:9d:51:8c:77:db:98:6a:06:4e:b1:82:9a:0c:3c:46:77:ff:
         78:f0:7d:c1:02:a3:a0:3a:11:0d:1d:f0:c6:c9:81:0e:2a:64:
         35:71:44:6e:01:ad:5a:e4:a8:d7:53:ce:53:fe:61:4e:ec:2b:
         20:52:5d:0a:c4:20:92:18:41:83:e9:2f:db:d5:a3:c8:6b:b6:
         5e:30:29:64:0d:28:f9:8e:33:f5:99:a3:94:4a:9a:13:7e:3c:
         ab:35:32:86:55:81:36:33:30:93:03:a1:41:92:44:12:5d:ae:
         86:08:e7:4b:37:b7:cf:65:86:1c:ea:9b:b7:f3:dd:22:0b:79:
         55:15:19:04:70:19:43:67:19:39:28:36:1d:3d:ea:21:18:a7:
         3e:af:c1:5e:6c:88:05:38:8b:78:b8:5a:1f:a8:7a:dc:13:53:
         9f:58:75:6e:e5:61:7b:b9:0b:f6:4d:38:dc:0e:97:61:6d:4b:
         85:20:05:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 15 11:48:38 2023 by rpki-client on console-ams.rpki-client.org