Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/k8LJmvDsTRpGQ0l_X4y9x-xFdI8.cer
File: k8LJmvDsTRpGQ0l_X4y9x-xFdI8.cer (raw, json)
Hash identifier: RsqClsQehmbSq2qzCKaTgHNpkh8O8lSf/9N7LaV1uGI=
Subject key identifier: 93:C2:C9:9A:F0:EC:4D:1A:46:43:49:7F:5F:8C:BD:C7:EC:45:74:8F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 28C2
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36FEA6B/7B27920E8B8211E9888B6F73F8AEA228/k8LJmvDsTRpGQ0l_X4y9x-xFdI8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36FEA6B/7B27920E8B8211E9888B6F73F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:40:42 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 33791
AS: 37710
AS: 37769
AS: 37777 -- 37779
AS: 327844
AS: 327852
AS: 328022
AS: 328294
AS: 328325 -- 328326
AS: 328700
IP: 102.214.142.0/24
IP: 102.223.0.0/24
IP: 196.49.5.0/24
IP: 196.49.12.0/24
IP: 196.49.20.0/24
IP: 196.49.50.0/24
IP: 196.49.52.0/24
IP: 196.49.54.0/24
IP: 196.60.0.0/24
IP: 196.60.48.0/24
IP: 196.60.50.0/24
IP: 196.60.52.0/24
IP: 196.223.5.0 -- 196.223.6.255
IP: 2001:43f8:: -- 2001:43f8:6:ffff:ffff:ffff:ffff:ffff
IP: 2001:43f8:14d0::/48
IP: 2001:43fd:e000::/48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 04 May 2024 00:58:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10434 (0x28c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 04:40:42 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36FEA6BAF/serialNumber=93C2C99AF0EC4D1A4643497F5F8CBDC7EC45748F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:80:41:88:b9:34:8c:68:93:69:2c:56:23:97:
50:7c:95:30:e7:83:af:e2:f4:fb:24:ac:9b:32:b8:
15:a2:67:25:14:9c:47:01:29:7f:da:1e:dc:55:4e:
98:3c:a6:01:b2:48:2b:cb:62:86:59:a5:0e:06:64:
ac:5e:bc:8c:e1:da:86:96:55:8a:ee:42:02:d7:48:
c9:77:6c:f7:0d:7a:02:19:30:35:ec:f1:36:04:5b:
fc:33:c2:f9:5e:20:fa:34:13:68:91:f2:78:9c:85:
ec:ad:31:f1:f2:92:6f:f6:e8:99:2e:07:e8:02:a3:
a1:2a:cb:c5:44:09:c5:67:eb:83:cb:f0:b5:4f:ef:
e8:a2:1b:77:33:09:4f:67:a8:7c:c7:eb:ae:01:39:
f7:3c:7d:f3:a0:81:d9:4b:d2:1d:02:11:ec:af:ca:
4c:f8:5f:1d:d3:2c:97:ad:5c:27:df:dd:37:93:58:
53:6f:8d:cb:ad:96:bf:51:2d:36:aa:a1:1d:b3:72:
0f:ea:22:fd:5d:8f:e2:6d:55:42:c4:6a:64:a0:26:
01:79:53:c0:d2:81:cb:b6:2e:55:eb:7b:1e:b9:d1:
25:e9:39:7f:4e:42:75:c6:22:6f:a3:2f:fa:d6:9e:
e5:2f:24:db:2c:5d:ed:78:c0:62:ff:00:69:e2:dc:
32:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C2:C9:9A:F0:EC:4D:1A:46:43:49:7F:5F:8C:BD:C7:EC:45:74:8F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FEA6B/7B27920E8B8211E9888B6F73F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FEA6B/7B27920E8B8211E9888B6F73F8AEA228/k8LJmvDsTRpGQ0l_X4y9x-xFdI8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
33791
37710
37769
37777-37779
327844
327852
328022
328294
328325-328326
328700
sbgp-ipAddrBlock: critical
IPv4:
102.214.142.0/24
102.223.0.0/24
196.49.5.0/24
196.49.12.0/24
196.49.20.0/24
196.49.50.0/24
196.49.52.0/24
196.49.54.0/24
196.60.0.0/24
196.60.48.0/24
196.60.50.0/24
196.60.52.0/24
196.223.5.0-196.223.6.255
IPv6:
2001:43f8::-2001:43f8:6:ffff:ffff:ffff:ffff:ffff
2001:43f8:14d0::/48
2001:43fd:e000::/48
Signature Algorithm: sha256WithRSAEncryption
96:37:a8:cf:50:2e:3b:1c:f6:1a:74:ab:19:9e:51:d8:6f:48:
9b:94:be:8d:05:5c:3c:89:35:a1:51:b3:1b:04:fc:0e:d5:2f:
58:ac:da:be:93:a9:ff:f8:c0:a8:1b:33:88:f0:6e:88:a6:3e:
08:3b:ad:2b:da:5e:6b:1a:47:f9:73:17:67:09:8b:b7:b0:b5:
1a:cd:55:26:0d:19:05:8a:d2:b4:c7:64:65:d7:0c:6a:bd:d2:
28:61:66:62:0d:fb:73:10:f8:05:c3:df:a4:a7:85:ee:85:fb:
04:96:67:9c:b6:0e:80:8a:b3:b4:72:f9:5c:1a:86:26:0b:1b:
c8:15:71:53:31:1a:94:97:e1:ef:05:f6:32:ae:b2:51:76:6d:
5b:08:fe:41:5b:f8:37:8d:41:9d:7b:48:62:55:02:da:88:3f:
f6:13:eb:c6:3b:34:5b:93:c0:84:af:4e:3f:de:1a:df:7e:4c:
de:e7:b4:ee:ec:d9:de:c4:77:1a:4f:4e:4d:6b:5f:23:41:27:
c2:af:49:e3:47:a5:b8:ab:2e:37:40:84:c2:81:de:8e:52:b3:
d9:80:c0:ca:4d:96:c4:f2:df:5a:63:e2:b0:cb:08:1f:a3:66:
24:f9:d1:d0:0d:32:65:7d:09:5b:b9:40:70:5d:02:93:bc:10:
45:3f:e9:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:12:10 2024 by rpki-client on console-ams.rpki-client.org