Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/7XZlKQ0TEj69LBHPCH2D_1DLck8.cer
File: 7XZlKQ0TEj69LBHPCH2D_1DLck8.cer (raw, json)
Hash identifier: Ufo5vw1myqzcBQ4JO8dYlAqQPwJkuLKaIHKlj0CT/PI=
Subject key identifier: ED:76:65:29:0D:13:12:3E:BD:2C:11:CF:08:7D:83:FF:50:CB:72:4F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 24B1
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364C329/E383A4E0048D11EEA39B4C6A4AD9E6FC/7XZlKQ0TEj69LBHPCH2D_1DLck8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364C329/E383A4E0048D11EEA39B4C6A4AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 01:49:29 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328858
IP: 102.210.220.0/22
IP: 102.220.12.0/22
IP: 2c0f:b40::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9393 (0x24b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 01:49:29 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F364C329AF/serialNumber=ED7665290D13123EBD2C11CF087D83FF50CB724F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:39:4b:57:85:aa:9b:cc:49:fc:50:c0:59:93:
42:26:9f:53:4d:5f:8d:73:b3:88:5d:c3:52:2a:8c:
d4:97:8f:7f:40:cf:a9:1d:2d:cb:3c:c0:c6:1b:21:
56:18:a2:02:da:f4:c4:99:13:2a:2a:f3:7a:fb:8b:
77:0e:0f:a5:81:52:4c:fb:e1:08:05:d5:3b:c8:cf:
60:5a:9e:e8:e8:04:05:35:d3:3d:bb:c2:bc:0f:79:
0d:80:18:20:77:9f:3c:2f:b3:8d:ed:c9:89:f7:5b:
e8:35:05:4a:9d:b5:df:e1:31:82:9c:d8:7c:58:0e:
23:30:79:aa:40:b4:46:56:64:3e:d8:02:a4:b0:83:
66:c2:4c:3c:7a:18:81:a3:b1:16:1f:e3:5e:b6:a8:
7e:96:b2:87:ad:8e:07:10:23:61:19:9f:e1:26:c2:
e3:15:12:2e:de:ed:dc:11:e8:bb:29:08:9b:ea:55:
dd:d2:c4:1f:aa:4d:50:12:88:1b:eb:ed:73:90:ec:
c1:b9:48:fb:cd:bd:46:19:db:7c:bd:c0:b8:d3:91:
19:16:73:e2:19:2a:61:b6:d2:44:86:43:79:b2:b7:
ba:95:16:02:4f:ee:6b:16:7d:4d:a4:6f:6f:f4:61:
f1:11:28:16:51:80:70:7f:c4:70:5a:c1:42:d3:6a:
fd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:76:65:29:0D:13:12:3E:BD:2C:11:CF:08:7D:83:FF:50:CB:72:4F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364C329/E383A4E0048D11EEA39B4C6A4AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364C329/E383A4E0048D11EEA39B4C6A4AD9E6FC/7XZlKQ0TEj69LBHPCH2D_1DLck8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328858
sbgp-ipAddrBlock: critical
IPv4:
102.210.220.0/22
102.220.12.0/22
IPv6:
2c0f:b40::/32
Signature Algorithm: sha256WithRSAEncryption
8b:55:f5:6c:d1:22:c3:0c:75:14:d9:0f:e5:52:76:4c:9a:d4:
d9:68:25:38:c9:0c:bc:55:e8:69:65:d9:7b:43:61:4a:aa:d9:
6c:af:00:41:55:18:46:48:83:e6:94:8d:ba:fb:75:e5:ab:1b:
58:a4:db:53:7b:1e:37:b7:f5:0a:ba:1d:43:49:6c:a6:59:cd:
22:9e:d8:2f:8b:fc:df:6e:90:d1:47:3c:52:7c:dc:53:b6:6e:
20:59:49:2c:e1:2f:5c:4d:b8:0e:34:cd:81:90:c2:be:e7:82:
e8:bf:ba:fd:70:db:86:2f:93:9b:d7:f0:5b:9f:9a:cd:91:a0:
cb:2c:59:71:4d:e9:8d:7f:26:35:ed:aa:9c:9a:9c:d7:93:45:
af:c8:d0:38:2f:62:70:ee:22:1e:65:41:2d:63:59:20:50:9b:
0e:28:e9:5b:24:ee:9d:de:f7:b0:42:21:a4:4a:23:cb:83:b3:
d4:4f:ec:d4:b7:c4:7f:30:5a:37:2f:02:e8:ca:13:c0:a3:39:
65:51:57:f2:c2:76:98:35:fe:e0:d4:0e:18:8e:48:3e:3c:9b:
34:90:69:74:ae:ce:05:22:a7:41:80:03:06:4f:af:30:14:a6:
f8:3d:b1:8f:99:5e:c5:16:11:50:5f:0b:16:7c:1b:86:62:e4:
bf:8a:81:1d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon May 6 00:50:26 2024 by rpki-client on console-fra.rpki-client.org