Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/-4Xgjl27Bclbe9Dafl_m_OOYJv8.cer
File: -4Xgjl27Bclbe9Dafl_m_OOYJv8.cer (raw, json)
Hash identifier: 4IPdTR/r1G5GM7JBeYNmzUcZu2IA7g1j0PJIkewMkuE=
Subject key identifier: FB:85:E0:8E:5D:BB:05:C9:5B:7B:D0:DA:7E:5F:E6:FC:E3:98:26:FF
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2A31
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/-4Xgjl27Bclbe9Dafl_m_OOYJv8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Fri 24 May 2024 16:44:23 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 37517
AS: 328941
IP: 41.74.128.0/20
IP: 41.215.208.0/20
IP: 41.221.192.0/20
IP: 102.209.52.0/22
IP: 102.209.160.0/22
IP: 102.211.8.0/22
IP: 102.213.204.0/22
IP: 102.219.86.0/23
IP: 102.220.164.0/22
IP: 197.255.128.0/20
IP: 2c0f:f438::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 21 Sep 2024 00:05:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10801 (0x2a31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: May 24 16:44:23 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36C2BF2AF/serialNumber=FB85E08E5DBB05C95B7BD0DA7E5FE6FCE39826FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c3:53:94:6a:51:e2:b5:0d:9f:25:1c:78:fb:
b1:62:e1:4e:20:c7:a6:47:de:7c:44:e9:ad:5b:7b:
b6:98:c8:38:a5:24:03:68:1b:65:a2:e2:87:50:51:
90:16:12:ef:a0:88:56:c3:e3:cb:18:3c:fc:20:85:
23:66:94:11:c2:7f:39:89:95:44:8e:f6:60:6d:5a:
b8:a2:4f:86:dc:03:29:13:9e:7f:50:01:5a:8d:93:
b4:bc:18:b1:67:97:0b:be:b3:03:c6:1f:63:25:08:
96:05:70:11:0e:69:af:b6:68:76:cc:b9:ed:6f:96:
4a:db:88:40:cc:cb:67:53:64:06:08:48:89:14:12:
d2:cc:29:dc:f9:c3:b0:7d:99:48:16:51:c7:cf:cd:
1d:b6:b5:4a:98:ce:38:f9:b3:0a:89:87:fd:03:eb:
9f:66:d0:44:f0:11:70:d4:00:23:6e:6b:9f:76:59:
5d:df:7d:66:85:13:db:d6:42:d8:ef:3f:8d:67:7a:
8f:34:5a:b0:6c:de:b5:66:ef:9d:59:35:8a:e4:e4:
0a:14:d6:5d:79:a0:7a:6b:69:3c:d9:c6:b6:19:8a:
34:24:b7:f6:80:6c:b2:25:79:d6:98:10:71:02:ac:
10:ca:d8:88:1e:dd:e3:46:2c:d7:d6:fb:e1:fa:1c:
42:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:85:E0:8E:5D:BB:05:C9:5B:7B:D0:DA:7E:5F:E6:FC:E3:98:26:FF
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C2BF2/DABAB87E19EC11EFBCBF5E2C017001B1/-4Xgjl27Bclbe9Dafl_m_OOYJv8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37517
328941
sbgp-ipAddrBlock: critical
IPv4:
41.74.128.0/20
41.215.208.0/20
41.221.192.0/20
102.209.52.0/22
102.209.160.0/22
102.211.8.0/22
102.213.204.0/22
102.219.86.0/23
102.220.164.0/22
197.255.128.0/20
IPv6:
2c0f:f438::/32
Signature Algorithm: sha256WithRSAEncryption
9a:14:f9:01:d2:46:c6:07:b9:2c:cd:5e:59:c7:6c:64:48:32:
ce:c6:15:b5:ba:90:f5:af:8b:e4:b8:18:e8:bf:0c:4b:d5:c0:
ea:3c:68:6c:e0:06:37:6a:26:34:e8:2f:17:63:29:60:65:c4:
46:8f:9f:af:83:7c:a2:9a:81:61:76:ef:c5:58:3a:8a:b3:73:
25:69:41:df:13:08:ed:af:68:cd:84:c9:cb:58:d8:c0:69:b4:
73:01:0a:b1:28:d8:ad:0b:8f:82:55:45:65:04:e7:e1:c5:4b:
fd:bd:1a:79:40:6a:e5:15:dc:65:a5:0a:a8:29:c6:8a:48:02:
3e:39:3a:23:2d:fc:0a:68:84:94:d5:00:44:60:13:8d:47:b8:
e0:b2:43:11:75:00:af:86:04:c2:e0:93:7f:6a:28:9f:e6:68:
45:7d:ba:84:37:48:23:24:64:45:e4:de:e9:38:4b:d3:cd:3e:
c5:a1:23:53:13:65:ae:9a:4d:54:4a:e8:75:41:d5:d3:dd:d0:
54:f1:71:63:59:5c:d1:32:1e:99:6e:99:d8:33:94:62:24:01:
15:53:88:f9:58:58:e5:a5:82:d3:e7:76:b9:fc:6e:61:59:40:
af:4b:3c:04:74:64:79:6b:0b:ca:86:24:5b:d9:04:7f:d3:4f:
29:ca:80:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 01:12:54 2024 by rpki-client on console-fra.rpki-client.org