Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/4V9Q3dKOAv1uaWbVkY0bC79GhOg.cer
File: 4V9Q3dKOAv1uaWbVkY0bC79GhOg.cer (raw, json)
Hash identifier: gz1MW0/GJ37fkLq4goF2vm9y3qHOqLd2FTjo78WPFsg=
Subject key identifier: E1:5F:50:DD:D2:8E:02:FD:6E:69:66:D5:91:8D:1B:0B:BF:46:84:E8
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 28C8
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C3A58/1B78C60CA8BF11EEBB3CA855775412E6/4V9Q3dKOAv1uaWbVkY0bC79GhOg.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C3A58/1B78C60CA8BF11EEBB3CA855775412E6/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:02:12 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 327921
IP: 102.220.140.0/22
IP: 154.73.128.0/21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10440 (0x28c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 16:02:12 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36C3A58AF/serialNumber=E15F50DDD28E02FD6E6966D5918D1B0BBF4684E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0a:27:04:68:ea:58:f5:ff:3c:dd:f1:f9:33:
a1:4c:18:42:5a:22:e5:6b:4a:18:cc:70:29:94:0b:
d6:31:7e:5e:d3:67:63:0a:3a:ef:5d:63:7e:77:e4:
10:36:4d:a9:9b:5c:50:06:6e:dc:4e:b9:59:cf:71:
ff:17:aa:c9:58:22:1d:10:86:e7:c3:c8:e8:74:35:
0a:fe:69:13:7f:7c:83:18:da:c1:c6:a6:a7:21:72:
32:d1:69:7c:fb:a4:15:7b:17:7f:bc:ae:33:26:35:
be:aa:c7:00:3e:d8:00:da:1e:df:6f:f3:34:d4:32:
26:ec:66:fb:25:2b:d8:df:94:46:9a:05:c2:a7:b6:
7d:a0:df:03:5f:df:7f:8f:e6:d4:40:60:87:82:b2:
73:71:ac:45:dd:e1:b6:ee:b6:dd:ff:3d:66:1b:15:
04:50:a3:0d:07:14:71:e0:61:cf:e3:90:8f:6d:25:
2f:d8:37:13:8f:8b:0a:1e:38:15:ed:a6:e4:4a:a7:
f9:11:a9:52:8e:4f:b4:1d:cd:05:ec:68:b9:85:cc:
6c:ab:d4:e0:e0:b6:c5:f4:0b:8e:08:76:5f:20:85:
19:5b:49:ba:02:3a:41:b8:03:75:6a:06:db:36:48:
50:5a:ac:e2:ca:ac:0b:41:ce:f7:b2:30:69:24:0a:
c3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5F:50:DD:D2:8E:02:FD:6E:69:66:D5:91:8D:1B:0B:BF:46:84:E8
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3A58/1B78C60CA8BF11EEBB3CA855775412E6/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3A58/1B78C60CA8BF11EEBB3CA855775412E6/4V9Q3dKOAv1uaWbVkY0bC79GhOg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327921
sbgp-ipAddrBlock: critical
IPv4:
102.220.140.0/22
154.73.128.0/21
Signature Algorithm: sha256WithRSAEncryption
42:1f:63:c4:5a:84:de:cc:b5:53:25:ec:1f:40:d6:80:de:c9:
3f:ea:c2:84:4e:7d:07:71:4e:b4:10:f0:96:4b:04:71:de:fa:
1b:78:c5:65:2d:69:e1:ad:44:aa:91:41:94:0b:b4:02:b6:d3:
13:f3:43:55:5c:aa:00:2a:27:9c:ff:01:d6:4b:ec:14:0b:1d:
6a:33:44:43:cb:db:a5:5a:00:13:1b:36:75:a2:13:fa:12:9c:
cf:b2:b8:22:68:0d:1b:d3:42:ef:56:23:59:e6:2d:74:aa:af:
66:c0:ca:e3:e2:d8:7f:bc:fd:a7:da:e4:fc:f3:0e:b6:ab:31:
4c:8c:13:8a:b8:25:35:de:1c:26:b7:1c:8e:66:02:81:8c:93:
f9:24:53:c2:6e:7a:dc:25:9e:d7:c5:a1:ea:59:7f:97:b7:01:
5a:4c:50:fa:2a:df:4c:af:53:9f:ff:c7:76:4e:46:72:7c:5e:
94:b5:52:ef:d3:94:a9:f9:f6:f6:8b:fd:26:68:a0:4a:ad:51:
84:f0:f5:57:b3:22:03:37:af:c3:9b:8e:fd:8a:06:bc:1b:af:
e6:86:99:75:36:d5:a6:6f:47:61:f0:2a:15:27:c1:d3:51:a3:
cd:4a:ce:27:a8:29:53:c8:c1:9f:9a:dd:ca:d1:9d:7f:11:45:
22:33:73:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:31 2024 by rpki-client on console-fra.rpki-client.org