Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer
File: ixAmlT7PfEzhOf6aWb3XIooVNUQ.cer (raw, json)
Hash identifier: okjEirmmTu9JtUOjik+ODpJr8eHIcgAQGbad6pmwwjM=
Subject key identifier: 8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2631
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 03:00:39 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 33771
AS: 37061
IP: 41.80.0.0/15
IP: 41.90.0.0/16
IP: 41.139.128.0/17
IP: 41.203.208.0/20
IP: 105.48.0.0/12
IP: 105.160.0.0/13
IP: 196.96.0.0/12
IP: 196.201.208.0/20
IP: 197.176.0.0/13
IP: 197.248.0.0/16
IP: 2001:43d0::/32
IP: 2c0f:fe38::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9777 (0x2631)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 03:00:39 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F3682104AF/serialNumber=8B1026953ECF7C4CE139FE9A59BDD7228A153544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:dd:79:c0:73:7b:b3:a7:57:21:19:b4:9a:7f:
04:88:3c:4e:ce:4a:62:2a:42:2f:de:c6:6a:00:63:
0a:3f:8c:62:aa:99:0f:ba:b2:ea:da:bc:02:8d:f9:
3e:72:68:fc:2a:76:d9:52:f7:7d:8d:bf:7d:e3:dd:
c1:93:78:71:63:b6:52:5b:dc:5c:85:88:cd:16:5b:
24:51:2a:39:26:bf:d2:e8:85:21:08:92:fb:fa:69:
56:b8:6d:01:c0:12:b6:cd:7f:44:56:d9:7d:0d:a0:
89:c9:5d:79:08:94:13:55:04:1a:00:68:48:79:bf:
0d:c8:be:8c:1f:f4:97:be:fd:49:00:a3:79:e1:3e:
e1:f0:da:d3:55:7d:fe:ef:bd:c2:a7:94:c1:6a:9e:
5d:4f:7f:03:09:bf:eb:c4:01:34:f3:33:8f:2d:1b:
fc:fa:4c:8d:b4:31:4e:8f:02:b5:f5:23:07:3a:57:
0d:d5:52:c4:7f:3b:18:83:d5:d1:f7:7a:b1:78:d5:
27:74:62:25:62:66:70:0a:59:fd:19:a2:11:b4:60:
08:b3:86:24:28:1b:da:7f:fb:e8:bf:6b:20:bb:17:
bf:6f:a7:a1:0f:51:27:1a:47:70:15:d7:06:38:a7:
0a:91:41:44:ef:59:0f:36:53:a1:05:a3:34:68:55:
cb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:10:26:95:3E:CF:7C:4C:E1:39:FE:9A:59:BD:D7:22:8A:15:35:44
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682104/09CCB94CA76311EABBC1911CF8AEA228/ixAmlT7PfEzhOf6aWb3XIooVNUQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
33771
37061
sbgp-ipAddrBlock: critical
IPv4:
41.80.0.0/15
41.90.0.0/16
41.139.128.0/17
41.203.208.0/20
105.48.0.0/12
105.160.0.0/13
196.96.0.0/12
196.201.208.0/20
197.176.0.0/13
197.248.0.0/16
IPv6:
2001:43d0::/32
2c0f:fe38::/32
Signature Algorithm: sha256WithRSAEncryption
10:2e:8c:27:fe:50:f0:dc:07:59:14:8d:d3:4a:ab:47:42:8b:
fd:8f:c6:ba:14:18:34:62:27:c1:ed:26:10:99:02:7e:fd:36:
2e:0e:4a:19:b6:ce:cb:4f:ba:6a:c3:1b:7a:3c:cb:54:86:8c:
38:d6:4a:6c:97:33:44:30:22:80:3d:4e:9a:41:f4:83:61:05:
8c:3a:76:0b:41:66:e4:2b:2c:2e:57:8d:fc:08:05:3f:4a:59:
c6:12:d5:58:69:8d:50:4f:c6:4d:83:7c:10:33:de:fe:4b:d2:
a2:2f:06:fc:e3:e0:22:ef:f8:0f:7c:cf:4f:07:20:19:b4:15:
b1:cf:ea:27:98:fd:f3:79:03:9d:37:c0:7b:06:c6:6f:84:a7:
64:63:13:27:20:95:24:3f:10:32:05:31:88:ce:bb:06:41:cf:
bb:f4:52:bd:b3:af:3d:51:dd:16:e6:b9:78:25:d3:4a:13:ad:
91:10:82:8e:7d:de:64:ed:58:a1:52:50:27:30:5e:e8:60:c4:
3e:72:2a:79:c9:e0:ad:67:48:8c:c9:06:ec:ae:da:18:63:15:
25:d9:e2:69:06:68:73:56:7b:25:27:b1:96:3a:11:e4:d8:44:
ab:a8:94:67:24:18:40:1a:a5:1b:56:76:6f:8e:d9:53:c7:10:
13:c1:bf:5b
-----BEGIN CERTIFICATE-----
MIIGYDCCBUigAwIBAgICJjEwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNDAxMDEwMzAwMzlaFw0yNTAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjgyMTA0QUYxMTAvBgNVBAUTKDhCMTAyNjk1M0VDRjdDNENFMTM5RkU5
QTU5QkRENzIyOEExNTM1NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDM3XnAc3uzp1chGbSafwSIPE7OSmIqQi/exmoAYwo/jGKqmQ+6suravAKN+T5y
aPwqdtlS932Nv33j3cGTeHFjtlJb3FyFiM0WWyRRKjkmv9LohSEIkvv6aVa4bQHA
ErbNf0RW2X0NoInJXXkIlBNVBBoAaEh5vw3Ivowf9Je+/UkAo3nhPuHw2tNVff7v
vcKnlMFqnl1PfwMJv+vEATTzM48tG/z6TI20MU6PArX1Iwc6Vw3VUsR/OxiD1dH3
erF41Sd0YiViZnAKWf0ZohG0YAizhiQoG9p/++i/ayC7F79vp6EPUScaR3AV1wY4
pwqRQUTvWQ82U6EFozRoVculAgMBAAGjggNVMIIDUTAdBgNVHQ4EFgQUixAmlT7P
fEzhOf6aWb3XIooVNUQwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY4MjEwNC8wOUNDQjk0Q0E3NjMx
MUVBQkJDMTkxMUNGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2ODIxMDQvMDlDQ0I5NENBNzYzMTFFQUJCQzE5MTFDRjhBRUEyMjgvaXhBbWxU
N1BmRXpoT2Y2YVdiM1hJb29WTlVRLm1mdDAfBggrBgEFBQcBCAEB/wQQMA6gDDAK
AgMAg+sCAwCQxTBkBggrBgEFBQcBBwEB/wRVMFMwOwQCAAEwNQMDASlQAwMAKVoD
BAcpi4ADBAQpy9ADAwRpMAMDA2mgAwMExGADBATEydADAwPFsAMDAMX4MBQEAgAC
MA4DBQAgAUPQAwUALA/+ODANBgkqhkiG9w0BAQsFAAOCAQEAEC6MJ/5Q8NwHWRSN
00qrR0KL/Y/GuhQYNGInwe0mEJkCfv02Lg5KGbbOy0+6asMbejzLVIaMONZKbJcz
RDAigD1OmkH0g2EFjDp2C0Fm5CssLleN/AgFP0pZxhLVWGmNUE/GTYN8EDPe/kvS
oi8G/OPgIu/4D3zPTwcgGbQVsc/qJ5j983kDnTfAewbGb4SnZGMTJyCVJD8QMgUx
iM67BkHPu/RSvbOvPVHdFua5eCXTShOtkRCCjn3eZO1YoVJQJzBe6GDEPnIqecng
rWdIjMkG7K7aGGMVJdniaQZoc1Z7JSexljoR5NhEq6iUZyQYQBqlG1Z2b47ZU8cQ
E8G/Ww==
-----END CERTIFICATE-----
Generated at Tue May 21 01:46:32 2024 by rpki-client on console-fra.rpki-client.org