Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/9HOLangCORiAdDf6GQfEytcpPvk.cer
File: 9HOLangCORiAdDf6GQfEytcpPvk.cer (raw, json)
Hash identifier: 5FGWW6w4LyAtsG/zFqf41qi/R6CyrV2+DQqfAx8v45M=
Subject key identifier: F4:73:8B:6A:78:02:39:18:80:74:37:FA:19:07:C4:CA:D7:29:3E:F9
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 25C9
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3672E90/D779C03273A511ECA57469985A40D577/9HOLangCORiAdDf6GQfEytcpPvk.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3672E90/D779C03273A511ECA57469985A40D577/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:45:31 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 102.217.84.0/22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9673 (0x25c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 02:45:31 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F3672E90AF/serialNumber=F4738B6A78023918807437FA1907C4CAD7293EF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e4:35:9a:e4:e1:42:75:a4:cb:d6:9f:9e:a8:
39:e1:df:5e:74:3b:fc:45:73:d3:3a:8d:3a:e6:de:
5f:5e:99:96:f1:87:c4:82:e8:6b:19:8a:76:83:58:
c2:a7:5e:2a:62:75:ac:2a:d6:22:03:ee:20:e0:69:
b0:3e:ae:e6:52:a4:af:14:39:7f:11:58:35:7c:86:
ec:60:88:ee:9d:05:ee:87:1d:7f:24:bc:0d:8b:d4:
19:07:19:79:70:ab:3b:3e:4a:fe:b1:78:7e:44:1b:
33:98:cd:7a:a9:48:53:a3:fd:b2:ea:da:46:32:00:
9c:e9:89:35:33:ad:af:69:8e:3b:21:7d:b2:b6:32:
7d:80:8a:da:22:93:4a:ed:7c:39:c4:0c:35:bd:5a:
52:31:60:09:7c:f3:df:75:3a:66:61:6c:3d:1e:dd:
f3:ce:9c:53:85:95:24:6c:3b:2f:b3:63:65:fb:29:
23:12:77:f2:18:97:f7:b5:87:d0:c5:52:b2:d9:aa:
71:f6:5d:8c:32:31:da:1a:f5:c1:02:de:5a:99:9d:
e5:0c:15:d3:c5:80:05:02:1d:ac:ca:0e:36:a8:dc:
34:51:1f:b9:b4:9f:50:1d:79:c2:43:46:20:5c:33:
0a:9b:9f:50:7b:9c:75:69:25:db:f3:d1:00:95:80:
ed:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:73:8B:6A:78:02:39:18:80:74:37:FA:19:07:C4:CA:D7:29:3E:F9
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3672E90/D779C03273A511ECA57469985A40D577/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3672E90/D779C03273A511ECA57469985A40D577/9HOLangCORiAdDf6GQfEytcpPvk.mft
sbgp-ipAddrBlock: critical
IPv4:
102.217.84.0/22
Signature Algorithm: sha256WithRSAEncryption
99:40:e7:fb:e0:65:74:02:2c:c3:8a:0f:69:8f:49:fa:b8:36:
c5:89:0f:ab:8e:51:28:05:1d:fa:30:b2:ed:10:29:70:57:6d:
a0:ee:c3:15:b9:8b:c2:42:47:b5:c0:71:ee:50:c8:6e:49:da:
c7:7a:ee:ba:81:91:01:ab:11:4b:d4:1b:a3:aa:d1:6f:7a:5c:
fd:64:c9:91:23:67:ab:9c:95:99:ef:e9:02:17:ce:26:89:94:
b8:a1:fb:d4:91:34:7f:95:cc:c6:cc:b3:80:6b:b0:e0:5c:ef:
b8:38:9e:8b:81:72:e0:e7:7a:80:ec:15:f9:52:c4:0b:cf:8c:
5a:63:4c:ac:09:b3:9f:6d:d0:21:82:20:0a:68:39:44:d7:1e:
86:40:2a:9c:93:39:92:0d:7c:6d:34:55:61:d0:ee:cf:37:47:
33:46:40:1a:25:58:0d:d7:e2:a8:63:eb:d8:53:2a:a7:ea:a9:
30:75:e2:7d:ae:55:86:a8:be:20:cf:6c:d0:51:12:dc:95:bb:
6f:54:c4:b2:f9:36:77:b2:29:25:b1:c9:8d:cb:e4:7a:d9:55:
c9:a7:01:9f:65:b1:e2:62:0d:66:3c:34:cb:54:56:bc:4c:35:
d8:b2:2d:da:c0:fa:8d:da:a6:c8:e6:2f:74:b2:17:18:87:15:
42:f5:66:37
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:21 2024 by rpki-client on console-ams.rpki-client.org