Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/nWdNqh0x5rcSPGSUgdEU-pO97R8.cer
File: nWdNqh0x5rcSPGSUgdEU-pO97R8.cer (raw, json)
Hash identifier: KOp79DEHx1joIdyjJjojxakDW+bERiXI1OvLcWHa0jo=
Subject key identifier: 9D:67:4D:AA:1D:31:E6:B7:12:3C:64:94:81:D1:14:FA:93:BD:ED:1F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 26DB
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36A05AB/98015F36DBF311EBAE6FAD33F8AEA228/nWdNqh0x5rcSPGSUgdEU-pO97R8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36A05AB/98015F36DBF311EBAE6FAD33F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 03:25:49 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328870
IP: 102.219.108.0/22
IP: 2c0f:4900::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9947 (0x26db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 03:25:49 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36A05ABAF/serialNumber=9D674DAA1D31E6B7123C649481D114FA93BDED1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f6:16:0b:c2:25:6b:e9:dc:50:f9:6b:24:d5:
f4:b5:9f:de:c4:a2:06:6c:07:68:45:aa:d7:c9:db:
bb:bf:a2:a9:cf:c2:3d:10:9b:95:6e:f2:b6:3b:80:
9a:96:fd:e2:8a:aa:4a:f3:ae:88:8f:48:19:46:15:
7f:ed:0e:95:76:fc:57:c6:d3:55:82:f8:c9:d9:96:
f1:12:8d:9e:79:0f:b9:66:36:34:5c:30:d3:16:ed:
cc:62:da:76:88:24:c6:65:9e:59:e6:c0:1a:33:2b:
25:02:a8:ff:cb:3e:98:05:9b:ea:d6:b2:f6:62:c4:
99:da:a8:8d:3d:df:b6:2a:63:67:4d:bd:25:8a:be:
b0:5c:6d:07:cc:38:cd:7e:11:e0:49:0a:50:cc:23:
c2:59:1e:0a:9b:3f:11:ef:0c:93:c3:5d:d5:39:e3:
94:a8:35:97:bc:ad:84:79:c9:77:0d:9e:a5:ab:27:
19:18:44:2a:b5:8a:d3:c6:f5:f2:b4:94:c3:49:d8:
92:14:83:28:ba:de:84:17:79:df:62:8a:4b:5f:42:
62:c3:97:a1:79:47:46:c3:cc:67:6d:2d:62:d8:64:
36:46:45:40:76:4a:32:d5:d7:ba:75:1f:51:cc:0a:
77:56:3a:f2:10:61:cb:66:fb:b9:fc:2b:16:07:ce:
e7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:67:4D:AA:1D:31:E6:B7:12:3C:64:94:81:D1:14:FA:93:BD:ED:1F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A05AB/98015F36DBF311EBAE6FAD33F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A05AB/98015F36DBF311EBAE6FAD33F8AEA228/nWdNqh0x5rcSPGSUgdEU-pO97R8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328870
sbgp-ipAddrBlock: critical
IPv4:
102.219.108.0/22
IPv6:
2c0f:4900::/32
Signature Algorithm: sha256WithRSAEncryption
32:b9:04:7c:d6:17:f1:f5:1a:08:05:51:af:e8:b9:34:dc:00:
1f:d2:d9:43:1c:f4:7e:73:37:a0:67:9d:ef:c5:be:bf:58:35:
26:83:34:8f:d1:c0:9c:ec:e0:a5:73:74:b4:f2:1c:51:ea:3c:
52:ea:e3:d5:77:86:dc:91:f9:81:de:b1:13:85:8f:06:9a:08:
e4:66:4d:5f:a1:ec:ae:6c:3b:06:c4:2d:ee:86:f5:e2:55:a2:
56:f9:86:48:63:7f:89:af:82:8e:65:e5:c3:58:95:e3:c3:d3:
06:f4:de:c7:e5:dd:c5:77:ba:73:51:99:cc:a9:7c:5b:86:6c:
38:d5:8c:54:9f:16:17:f4:1f:70:4c:29:a9:ab:de:27:12:63:
b1:2a:8c:1b:b2:12:b4:b5:d5:a1:b0:79:c5:4c:a0:cf:16:08:
d6:a2:3e:24:41:09:63:dd:8c:a7:7d:fd:c0:d0:a2:17:95:5b:
b2:d8:59:9e:d4:9d:c6:af:2e:78:5a:51:16:87:58:0e:7e:1c:
d4:c8:d7:09:b5:86:5b:0b:c0:49:bd:a7:bd:8f:e3:e1:27:c6:
14:8e:10:94:ba:80:53:22:cd:78:57:00:d2:a4:64:e3:fe:56:
0e:74:fc:2c:22:86:be:35:17:c6:e5:94:c6:4e:57:71:c8:36:
70:8b:a1:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:46:32 2024 by rpki-client on console-fra.rpki-client.org