Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
File: YFf0ifWtxOkmnCYNcCyBqraqLm0.cer (raw, json)
Hash identifier: xP/vzEVKrgQpbEMQIX8oS6Y1FmH6VmMnWWN2KpGJvQk=
Subject key identifier: 60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2504
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:10:12 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 37049
IP: 41.222.136.0/21
IP: 41.242.160.0/20
IP: 196.32.248.0/21
IP: 2c0e:7e00::/28
IP: 2c0f:fdc8::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9476 (0x2504)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 02:10:12 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F369BF27AF/serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6b:d1:48:a6:51:9e:61:2a:85:e1:fc:15:ef:
f5:0c:28:c5:90:4c:e8:7d:06:db:eb:f4:d6:1c:df:
29:89:c6:7a:3e:48:70:30:91:ee:1f:5b:2a:42:aa:
9a:e5:f5:47:41:8a:b6:07:3b:48:4f:02:57:fc:ab:
81:7f:96:16:ff:1b:ba:14:4d:89:f3:2a:37:3f:10:
79:75:7f:6e:f6:4b:74:63:ce:5d:99:50:1e:38:34:
1e:1d:a5:ca:24:d4:06:e4:a4:2a:99:e8:f5:11:49:
b3:25:5e:7b:66:92:51:e5:0c:16:9b:49:c2:82:68:
7e:a9:97:31:90:11:74:2d:51:34:d8:bd:a4:35:0a:
a5:7e:ba:33:20:29:93:b2:72:80:ca:af:2d:55:9b:
03:7f:73:59:65:3f:3d:70:ae:0d:1d:f1:7e:0d:2f:
31:47:e8:be:af:33:31:6f:74:af:60:a8:0b:35:bc:
c5:3b:1a:de:7a:4e:53:ac:dd:b7:4d:fd:91:d8:d3:
e9:2b:0c:80:b8:87:65:15:03:de:b5:f4:04:f6:3f:
3c:b4:88:4f:e5:2b:92:0a:f0:1e:58:57:45:ff:dc:
b6:4d:83:6f:e1:81:04:21:d4:d9:cf:3f:9d:54:d3:
13:04:c7:35:a1:43:6e:66:1c:c5:86:bb:62:f3:73:
14:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37049
sbgp-ipAddrBlock: critical
IPv4:
41.222.136.0/21
41.242.160.0/20
196.32.248.0/21
IPv6:
2c0e:7e00::/28
2c0f:fdc8::/32
Signature Algorithm: sha256WithRSAEncryption
57:4d:ae:5d:07:83:cf:41:2e:62:99:7b:ef:d1:d7:e2:bc:b7:
b7:32:ba:69:30:05:2a:b2:6f:d7:7f:dc:7c:b2:5c:dd:34:67:
b7:6e:d0:78:a8:a1:57:4a:29:9b:f9:eb:d5:52:f0:51:8b:c3:
b9:49:16:87:f4:a6:99:f9:20:99:66:b2:65:01:c9:45:f1:e2:
84:63:58:51:9b:67:5f:2f:3c:f7:f8:3b:15:61:79:13:7f:95:
89:6a:0f:a0:3a:69:d8:a2:33:50:c4:4a:ad:72:c6:16:d8:4c:
08:a5:5d:12:e5:16:ab:de:90:0d:a0:74:c3:32:b8:74:fa:f8:
1b:99:88:56:60:97:c6:cd:9d:80:7c:47:49:9b:6f:29:4a:90:
11:57:6f:f6:6d:a9:1b:16:0b:0b:49:33:69:79:73:07:e1:f7:
f2:18:ef:94:c7:6a:e2:af:53:bc:1b:0c:f2:20:c3:bb:f1:de:
ff:79:c9:d3:68:b5:0f:a3:78:5e:32:7d:4b:33:90:4c:3d:5a:
42:c3:da:00:b0:51:08:9a:02:4c:40:cc:d9:d6:9a:0a:d4:39:
7a:fb:17:35:7f:08:1f:90:79:a8:5c:e0:87:44:95:73:f7:a0:
d2:70:f2:3f:6c:eb:20:01:24:ef:b6:19:b1:23:3b:1c:39:7f:
08:6b:da:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:49:56 2024 by rpki-client on console-ams.rpki-client.org