Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/0JparVoXc9hrHSbdXRxET8ys9uQ.cer
File: 0JparVoXc9hrHSbdXRxET8ys9uQ.cer (raw, json)
Hash identifier: 4B2hd3JmVJHDaBr+UocxeMtdWCG6NfI4wR+0BgYt3aU=
Subject key identifier: D0:9A:5A:AD:5A:17:73:D8:6B:1D:26:DD:5D:1C:44:4F:CC:AC:F6:E4
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2ABD
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/0JparVoXc9hrHSbdXRxET8ys9uQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Thu 11 Jul 2024 07:51:05 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 37153
IP: 41.72.128.0/19
IP: 41.203.0.0/19
IP: 41.204.192.0/19
IP: 154.65.96.0/20
IP: 196.22.132.0 -- 196.22.143.255
IP: 196.40.96.0/20
IP: 197.189.192.0/18
IP: 197.221.0.0/18
IP: 197.242.64.0/19
IP: 2c0f:fce8::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10941 (0x2abd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jul 11 07:51:05 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36180A1AF/serialNumber=D09A5AAD5A1773D86B1D26DD5D1C444FCCACF6E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:29:2a:50:1f:e9:4c:1d:c0:b8:2a:6c:3c:e1:
8b:47:86:61:18:57:e9:35:47:f9:38:4b:82:c1:8f:
86:fb:13:97:83:bf:ca:63:81:ca:f4:ca:f9:76:e2:
40:a9:00:57:45:78:a4:5f:b7:dd:4c:c3:1c:a7:e3:
aa:84:e8:dc:e6:37:76:67:2a:b9:bf:9a:60:8b:0d:
22:a8:e3:a2:75:07:87:c8:ed:42:0f:1a:3a:4d:64:
1d:f9:d1:3b:9a:be:0f:f4:f1:75:46:8b:10:31:6a:
d5:9b:57:a1:66:4d:15:04:6d:2b:2d:33:6e:7d:28:
28:7c:36:58:38:fc:44:72:44:d0:fc:b0:53:0f:ed:
fe:91:eb:88:05:86:e2:2a:52:82:22:16:2a:58:ff:
1e:7a:12:b1:c7:25:ee:7c:24:b0:e4:e9:0f:0f:27:
13:4c:f4:66:ae:7f:d7:98:91:08:34:90:ce:b0:9f:
2b:31:70:54:96:8f:7c:08:aa:18:b1:27:98:8e:d2:
1f:71:c6:f6:11:e9:f9:ce:cc:6a:f7:5a:47:bc:37:
77:c1:e7:74:0e:41:f2:e1:c5:4f:38:00:54:e7:ad:
a7:b3:84:17:d9:0b:34:de:cc:dd:56:6e:3d:dd:f3:
43:4c:e2:9c:38:09:dc:03:37:63:cf:aa:8c:18:c8:
ab:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:9A:5A:AD:5A:17:73:D8:6B:1D:26:DD:5D:1C:44:4F:CC:AC:F6:E4
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/0JparVoXc9hrHSbdXRxET8ys9uQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37153
sbgp-ipAddrBlock: critical
IPv4:
41.72.128.0/19
41.203.0.0/19
41.204.192.0/19
154.65.96.0/20
196.22.132.0-196.22.143.255
196.40.96.0/20
197.189.192.0/18
197.221.0.0/18
197.242.64.0/19
IPv6:
2c0f:fce8::/32
Signature Algorithm: sha256WithRSAEncryption
68:de:e0:15:f5:59:68:98:e2:7a:96:dd:58:95:a7:f9:56:9e:
c0:78:b8:26:db:2f:32:95:71:3b:be:a4:e4:a0:60:36:cd:4f:
3a:fa:53:16:ab:6f:a0:63:52:76:13:86:b0:97:8b:ab:d5:19:
d1:7a:9b:5f:75:fd:c5:0e:bb:62:fe:be:28:0c:91:b2:14:7c:
62:ca:36:1e:21:0b:c9:ef:e4:fe:81:50:66:11:26:f9:7f:27:
44:ed:60:d2:10:d4:f9:fe:89:b5:b1:2c:0f:a8:ec:26:4c:60:
ed:86:ab:a3:d2:c4:c8:4b:fa:f5:10:3e:c8:91:1c:32:5b:0f:
35:93:09:13:4e:77:12:bf:b1:08:43:83:ed:76:32:6a:27:4b:
05:30:6e:db:e3:37:b2:02:7b:06:94:53:b1:df:e6:d3:33:20:
7c:ce:a8:88:0e:70:39:32:d8:27:2e:c3:2c:2f:92:8c:9f:a9:
4c:5d:76:d9:1c:8e:5e:b9:6e:11:62:a9:e2:f2:d9:5a:13:5b:
62:d6:21:0e:80:c9:43:90:da:02:fb:cb:5d:89:15:0f:55:32:
a7:53:ad:fb:93:bc:0f:58:c5:8c:1c:ce:d9:41:75:45:43:fd:
8f:0c:06:92:60:88:57:d5:c3:eb:08:3e:fe:dc:67:de:45:e8:
38:27:93:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:21 2024 by rpki-client on console-ams.rpki-client.org