Certificate

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
File:                     njUz1mLD8Na7HmkvP6tte6OCTCg.cer (download)
Hash identifier:          k1SnEDR3ocKgwN5HXiijfbv7zdAFwH+8kCucaa4BDwI=
Subject key identifier:   9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer:       /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial:       01856E65A5AB55AD34608DA7938AD8CE8848
Authority info access:    rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest:                 rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/njUz1mLD8Na7HmkvP6tte6OCTCg.mft
caRepository:             rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/
Notify URL:               https://rrdp.ripe.net/notification.xml
Certificate valid until:  Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources:
    1: IP: 193.34.48.0/22
    2: IP: 195.13.60.0/22

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6e:65:a5:ab:55:ad:34:60:8d:a7:93:8a:d8:ce:88:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
        Validity
            Not Before: Jan  1 17:33:53 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:40:f1:63:79:54:a9:f7:69:4b:24:00:53:f3:
                    25:2f:67:0b:9f:f3:db:cb:6f:2b:a0:c5:51:9d:06:
                    49:2c:91:54:3f:f5:65:6a:13:b7:21:6e:f1:96:6c:
                    ee:e4:e9:3b:01:11:7a:c4:a4:e5:28:a1:db:75:2f:
                    b5:bf:f2:dd:d1:85:86:9a:23:57:17:75:da:e3:a1:
                    4f:df:3d:95:89:b1:44:f2:a0:9e:19:eb:d5:bc:99:
                    eb:5c:14:aa:05:a1:34:04:9b:40:af:22:22:27:56:
                    96:11:13:35:ee:9c:5b:d2:64:5e:3e:42:d8:a0:4b:
                    a2:f9:b8:d1:ca:7d:a6:09:8d:42:ee:10:8e:6f:98:
                    4f:08:85:68:fe:bf:fc:60:20:46:64:20:46:b0:f4:
                    1a:83:21:cc:3e:d5:a9:30:c1:09:c3:a7:bb:24:19:
                    2d:04:94:4f:57:2c:b0:1f:97:f9:56:76:32:cc:c1:
                    46:30:67:75:a9:b1:04:07:ac:63:35:ac:00:1a:33:
                    fa:00:f9:ce:f1:37:8a:83:0c:c7:17:a6:05:aa:ff:
                    81:8d:f3:75:01:82:ce:43:f7:d2:a2:84:61:ab:ae:
                    c3:5b:8a:c8:4a:fb:04:29:4e:68:e8:df:23:27:a3:
                    61:73:1c:be:52:b4:20:9c:3e:53:fe:39:ab:29:8b:
                    85:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
            X509v3 Authority Key Identifier: 
                keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer

            Subject Information Access: 
                CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/
                RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/njUz1mLD8Na7HmkvP6tte6OCTCg.mft
                RPKI Notify - URI:https://rrdp.ripe.net/notification.xml

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.34.48.0/22
                  195.13.60.0/22

    Signature Algorithm: sha256WithRSAEncryption
         77:ed:62:30:0f:8d:1d:7a:18:48:43:cb:07:a8:47:3f:d3:2a:
         ed:5b:14:b7:44:09:26:ef:5a:40:76:15:18:97:21:f6:5d:d9:
         af:04:e0:6b:d6:ff:e9:67:c7:97:80:a3:c8:47:26:77:73:ed:
         09:43:0e:45:5a:0b:a5:d1:e0:7c:5b:9b:20:39:25:87:1e:aa:
         2a:93:a4:03:24:fc:f0:97:aa:de:c5:47:41:b2:8f:c4:f8:11:
         f9:e1:13:6c:09:82:14:71:17:0e:5f:62:45:5c:45:77:fd:10:
         27:7c:3e:3b:a8:6e:1b:72:43:db:e0:4f:17:b0:86:75:82:e1:
         0d:32:6f:bc:a0:1f:10:cb:0f:04:f7:cc:37:ae:69:45:dd:61:
         b5:89:d2:b1:4d:37:33:71:8d:90:1b:b1:7b:fe:ed:e2:e0:b7:
         75:f6:93:bf:42:7a:01:0f:35:c2:7c:32:a7:9f:01:2f:55:0c:
         1a:71:a6:64:fb:d5:65:0c:fc:8b:95:83:6f:18:fd:f4:f4:b5:
         b9:e2:db:68:97:f1:05:27:bc:5d:ef:0f:75:a4:57:a4:7d:aa:
         9f:c9:e7:bf:78:80:de:95:29:c1:fc:2c:6b:79:66:d3:50:55:
         8b:d8:a1:a8:10:12:0f:6a:91:63:d3:f9:83:52:86:1a:23:4f:
         92:24:31:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 29 17:38:01 2023 by rpki-client.