Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
File: Sh_na037AXO28xt_NqWpguCNnBk.cer (raw, json)
Hash identifier: oi6FU9HV5EtFxncnAK/G5uZXY0sRLiT/44dSACRSCkQ=
Subject key identifier: 4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 25B2
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:42:15 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328748
IP: 102.216.156.0/22
IP: 102.221.176.0/22
IP: 2c0f:e9f0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9650 (0x25b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 02:42:15 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F366FE6CAF/serialNumber=4A1FE76B4DFB0173B6F31B7F36A5A982E08D9C19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f3:0c:b8:1d:a5:23:4b:86:8a:fe:5e:a0:ef:
49:3a:0c:e7:17:bd:00:1f:a7:49:bf:a9:59:5b:06:
73:19:31:92:41:65:27:ab:33:c2:74:55:ef:77:2f:
87:90:ea:41:a5:d6:70:e0:2b:fd:67:a7:c5:ee:c5:
b1:a0:00:3d:85:43:2d:b6:40:53:23:db:0f:60:96:
11:d4:92:24:14:94:02:7a:ee:24:7d:92:06:2f:51:
5f:f0:59:c2:3d:a1:16:9d:3c:bf:5d:c8:15:7b:62:
3b:04:42:cf:58:c6:68:92:a3:d2:aa:72:d5:f6:25:
53:23:3c:2e:f8:9d:c7:3f:e1:6e:4e:28:38:8f:65:
e8:c3:4c:c9:ca:f4:34:41:e3:d2:ae:10:cd:25:1b:
14:ca:e5:e8:e5:c2:48:8f:11:55:42:b8:ee:5b:b1:
99:04:29:1f:93:9c:81:bd:c6:0e:c6:10:af:4e:ea:
20:ce:d4:24:08:6a:db:6b:a8:da:99:5d:f8:c5:0a:
fa:5b:24:e4:35:2a:f9:45:8a:b0:82:c2:ac:20:37:
13:ca:4e:da:7b:0e:47:62:ca:91:b0:40:a0:fe:87:
3b:90:d9:fd:64:b7:e0:81:fa:2e:03:80:50:b9:a7:
84:3f:0e:21:37:ef:df:5f:c9:76:96:4c:12:46:37:
da:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328748
sbgp-ipAddrBlock: critical
IPv4:
102.216.156.0/22
102.221.176.0/22
IPv6:
2c0f:e9f0::/32
Signature Algorithm: sha256WithRSAEncryption
b0:43:1e:35:33:82:d3:74:ba:6f:d0:1c:d6:a4:6c:25:0d:18:
95:5d:2c:18:85:e6:68:05:83:d4:37:39:11:25:98:1e:81:b6:
f4:4f:ab:3f:2f:d1:c4:ec:95:1a:b4:e1:c0:fc:45:73:6d:ee:
52:31:cb:91:a6:a6:3e:95:93:d1:de:e4:12:53:a6:da:66:e5:
82:b4:25:5a:10:c6:70:76:ce:85:c7:eb:f7:39:50:87:31:46:
32:6a:f5:3d:4d:7b:cd:6e:28:64:cd:03:41:37:36:2e:89:f7:
a3:77:ee:a6:14:7a:d1:ab:7d:d6:14:43:39:dd:a7:68:32:85:
12:3e:40:c0:e9:95:b9:5e:ef:ee:6d:74:0e:c6:bf:06:c7:ac:
c3:a4:80:56:85:3e:6e:05:65:96:40:9d:95:33:a6:65:92:ec:
e6:28:e0:56:84:12:0d:41:f4:de:ef:5c:16:fd:1f:0a:29:c7:
ea:3d:31:57:e5:38:70:f8:95:1d:67:8a:df:80:14:4b:8b:91:
25:d7:15:74:4e:03:50:1f:18:00:ab:dc:e5:6b:39:e3:b1:16:
2e:a4:d4:a7:6c:8d:3a:41:01:68:93:d6:5b:c4:bd:88:aa:16:
d1:a5:24:e7:6c:28:23:0c:e4:b9:56:57:a3:9d:d4:32:1a:3e:
e5:18:88:b5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue May 21 01:46:32 2024 by rpki-client on console-fra.rpki-client.org