Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/7PbzU5pP4IyibRf5jcsVmgR8v-g.cer
File: 7PbzU5pP4IyibRf5jcsVmgR8v-g.cer (raw, json)
Hash identifier: BKftX7s7P0gweLagw3ob7qcsTUm3OX1phvOp1+9pY3U=
Subject key identifier: EC:F6:F3:53:9A:4F:E0:8C:A2:6D:17:F9:8D:CB:15:9A:04:7C:BF:E8
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2555
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/7PbzU5pP4IyibRf5jcsVmgR8v-g.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:15 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328501
IP: 102.64.112.0/23
IP: 102.216.36.0/23
IP: 2001:43f8:13b0::/47
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9557 (0x2555)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 02:29:15 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F3662F58AF/serialNumber=ECF6F3539A4FE08CA26D17F98DCB159A047CBFE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:98:41:fc:e6:6c:48:22:f3:36:d1:b1:8f:d4:
c7:30:f6:40:f3:d4:2e:d4:87:11:1b:d5:fa:c5:87:
12:c9:ca:8d:54:07:a7:66:08:a9:6e:10:d1:3b:61:
25:0b:4e:60:c1:32:dc:0f:34:1a:ae:c8:cf:1d:08:
33:56:42:50:1d:ae:40:2b:12:29:6e:e0:f0:30:04:
36:69:66:30:65:b4:a4:83:c6:68:86:4b:8f:c4:6a:
dc:0f:de:02:97:8f:85:6a:87:ab:f0:a8:27:73:bc:
18:cc:0c:d7:c3:68:43:24:b2:d4:84:d0:1f:68:26:
e3:f0:96:65:5e:30:ba:90:f5:fb:71:13:46:4c:d9:
d6:c4:68:92:61:cb:3d:d2:32:69:d7:53:98:68:68:
85:9c:6f:51:21:29:97:2a:6b:3a:4a:ea:ed:74:95:
11:3b:a6:47:7c:c2:ec:75:cf:70:08:2f:7d:b2:78:
80:71:c6:d2:f0:77:37:f8:9e:e4:a0:2c:41:dc:64:
27:aa:a9:1c:9b:37:ae:f6:29:a1:ec:e7:64:7c:19:
62:84:8e:0a:45:8f:37:4d:09:96:26:62:13:30:48:
c1:2b:cf:7d:ad:5c:4c:5a:dc:19:32:db:17:22:79:
ad:d7:b2:54:fb:d7:d2:47:5d:c1:63:b3:6e:11:81:
b2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F6:F3:53:9A:4F:E0:8C:A2:6D:17:F9:8D:CB:15:9A:04:7C:BF:E8
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662F58/7594EBF2498711EA969C9454F8AEA228/7PbzU5pP4IyibRf5jcsVmgR8v-g.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328501
sbgp-ipAddrBlock: critical
IPv4:
102.64.112.0/23
102.216.36.0/23
IPv6:
2001:43f8:13b0::/47
Signature Algorithm: sha256WithRSAEncryption
5f:dd:63:8a:5a:03:d5:6f:9c:ca:97:4b:19:af:18:f1:b4:22:
42:25:c2:d8:a6:8c:c4:12:68:be:a8:69:50:0a:57:12:e2:36:
fc:e0:4b:2d:20:ae:99:52:b7:f8:95:6d:55:a3:ac:fb:de:68:
02:49:ae:28:25:3c:47:47:d2:bd:26:9d:49:09:c0:fc:bf:4c:
ec:8a:41:5b:75:db:6c:07:bb:83:5b:0d:a5:50:1e:4d:00:2d:
a6:fc:33:7d:79:e3:70:84:a0:cd:e3:cc:a2:89:26:1f:24:1a:
93:00:34:71:2c:32:e8:b0:5e:73:49:11:29:d1:b2:83:89:0e:
d8:5c:8f:03:23:5e:ae:b5:c8:00:8f:8a:8b:f9:f1:77:7a:ac:
58:eb:a6:41:a8:dc:22:88:42:f0:e3:95:c8:a9:6b:12:f3:1f:
73:d5:95:de:19:fb:95:64:9c:68:b0:92:85:c4:15:24:37:a3:
77:b1:0e:d2:2b:85:64:e7:17:b6:f9:87:05:75:b6:3a:dd:4a:
6c:d2:95:58:14:18:6b:d5:cd:cf:05:85:83:f4:63:7a:01:11:
6f:a1:c3:aa:5c:03:9b:f8:8c:cf:c2:74:bb:e1:93:3a:ef:4a:
6e:b0:d9:d1:57:20:fe:18:73:3f:85:4e:7d:d8:4b:77:2e:60:
0f:d4:f6:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:21 2024 by rpki-client on console-ams.rpki-client.org