Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/1DoqVLLNNnZCx2hmihOEa4nsje8.cer
File: 1DoqVLLNNnZCx2hmihOEa4nsje8.cer (raw, json)
Hash identifier: G38etleKymTXbf8t1onzxTlBjRHLJS5DyFhUQyFBO7c=
Subject key identifier: D4:3A:2A:54:B2:CD:36:76:42:C7:68:66:8A:13:84:6B:89:EC:8D:EF
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2AE1
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/1DoqVLLNNnZCx2hmihOEa4nsje8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Tue 23 Jul 2024 11:54:03 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 102.208.248.0/22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10977 (0x2ae1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jul 23 11:54:03 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F364EAB0AF/serialNumber=D43A2A54B2CD367642C768668A13846B89EC8DEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6c:0e:70:98:ba:5c:39:49:4d:b6:a9:ca:10:
cd:0c:26:8e:cc:aa:96:51:a7:a5:d3:c8:72:82:42:
5e:96:e0:eb:7f:47:52:d5:86:1b:be:07:e8:bb:c0:
1d:b3:cc:0a:df:b9:69:f9:32:97:84:2f:b5:e4:a9:
5d:e8:7a:df:bc:c4:b2:9e:2a:4a:9e:6f:81:3b:36:
55:88:92:a8:3c:a8:6a:33:99:1b:8b:73:33:c8:4b:
d8:85:78:a1:0e:73:57:7f:9b:50:3a:5d:3a:cd:c7:
b3:9b:ab:c3:fd:43:c4:27:c9:f7:c2:a8:fb:db:8f:
46:b5:71:d2:05:b4:8e:89:cb:f8:7b:1c:cf:51:46:
47:d1:69:7b:2e:f9:c6:f7:35:6c:bb:98:74:f0:a8:
a4:9c:9b:0f:c5:58:c5:67:ed:77:a5:43:28:66:51:
d0:1c:c0:3c:bd:dd:65:cd:bf:f2:52:11:01:ba:4a:
0f:32:1b:28:fc:4d:3e:2d:66:a6:0b:48:c6:ca:bb:
92:5d:ae:cd:29:49:3b:54:df:3f:2e:a6:62:df:a1:
4e:74:9f:b6:1e:a3:49:c9:b2:12:e8:70:a0:d2:b4:
6f:f7:a0:de:b8:88:5f:ef:27:b6:b6:f4:9e:40:37:
ad:dc:d5:16:be:6f:99:59:cc:1c:e8:0b:ec:25:75:
5e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:3A:2A:54:B2:CD:36:76:42:C7:68:66:8A:13:84:6B:89:EC:8D:EF
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/1DoqVLLNNnZCx2hmihOEa4nsje8.mft
sbgp-ipAddrBlock: critical
IPv4:
102.208.248.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:73:09:af:10:b1:8d:94:73:c2:d0:b3:8c:42:f0:f9:5f:0c:
89:43:9c:ee:d6:d1:cf:5e:b3:1c:30:ef:c4:14:7d:be:fb:81:
e1:c3:91:1d:c4:8b:17:46:38:83:ae:10:b9:b7:7f:2a:8f:4d:
de:2f:b5:76:50:9f:b3:17:20:aa:27:e8:0a:8d:24:e3:e9:87:
19:dd:f5:b4:bb:d6:f1:fc:88:f3:5a:42:97:cd:c5:b2:4d:02:
57:dd:4d:83:43:ac:72:98:e8:ce:5c:fa:34:a3:59:2c:76:48:
7c:34:cd:73:f3:69:15:75:fd:0a:85:33:d1:22:15:9e:26:c7:
fa:70:e7:d9:eb:bb:03:36:9c:cd:8d:1d:d9:69:29:c0:bc:dc:
1d:8f:a3:cd:46:fd:b1:ed:5c:dc:5f:29:15:36:50:42:ec:c8:
b4:dd:b0:bb:ed:59:ac:a2:f5:0d:de:27:ae:67:36:e4:42:48:
2f:cb:72:20:44:ea:9e:99:d0:94:ce:e0:e0:78:ca:e6:6a:3f:
2f:6c:a0:b1:27:82:13:97:bc:67:5a:e4:87:47:4c:2c:09:85:
f5:f7:b2:c6:5b:d0:b2:e1:b4:b1:6c:34:4f:ac:fa:9a:26:64:
bf:a2:81:b1:5d:7a:77:76:e2:61:83:9b:8e:5d:86:22:93:ea:
fb:1e:21:cd
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:21 2024 by rpki-client on console-ams.rpki-client.org