Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/An4aRGPGhfvWOGP507I7rC2TsWg.cer
File: An4aRGPGhfvWOGP507I7rC2TsWg.cer (raw, json)
Hash identifier: 2h73IbQ0UiqGnIEzhc4Sqll4etr3olSSi/YccddRIEI=
Subject key identifier: 02:7E:1A:44:63:C6:85:FB:D6:38:63:F9:D3:B2:3B:AC:2D:93:B1:68
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2385
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/An4aRGPGhfvWOGP507I7rC2TsWg.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:35:24 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 36985
IP: 41.77.56.0/21
IP: 41.223.172.0/22
IP: 154.66.64.0/20
IP: 2c0f:f150::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 00:04:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9093 (0x2385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 00:35:24 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36252A7AF/serialNumber=027E1A4463C685FBD63863F9D3B23BAC2D93B168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:be:ab:8b:14:ea:e3:a5:a6:de:cb:ca:78:2a:
57:73:0c:19:03:0d:93:1a:0d:fe:31:32:2d:2f:1f:
f7:6c:47:e2:53:65:ca:c2:23:6c:28:50:37:24:72:
02:fc:af:9e:1e:d6:a3:a5:64:d8:c7:ef:cb:94:4c:
4c:e2:26:d3:48:aa:80:ea:b4:8d:41:83:83:35:c2:
0f:9b:c1:55:17:f1:b4:aa:00:9a:9d:ab:e8:27:44:
25:01:5f:eb:ed:f2:33:b8:32:81:cc:59:50:d6:d5:
2e:08:eb:2a:41:ad:da:9f:a0:63:06:41:5d:0b:15:
29:10:77:38:14:a4:3c:ed:8a:c6:06:98:a8:e1:34:
9f:fe:6e:98:62:ee:2c:4c:8e:fe:07:fd:0c:ed:f7:
63:c7:18:3a:4e:7b:d3:6d:60:4f:4f:7d:d8:bc:1b:
65:3a:3b:21:de:3c:74:ca:fb:16:b2:64:dc:13:5d:
0f:af:d4:ca:55:f7:17:d6:9e:5e:4b:88:65:b5:4d:
27:c5:6a:91:4a:50:77:4a:5e:1a:00:6e:c8:c9:f9:
51:f6:de:c6:79:bf:dd:f5:bd:70:2a:ac:c5:49:46:
bc:82:1f:7f:cf:9c:01:4f:0f:3f:38:81:04:5e:c9:
42:9c:12:ef:1b:fb:f0:88:96:a7:8b:44:31:36:e8:
5c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7E:1A:44:63:C6:85:FB:D6:38:63:F9:D3:B2:3B:AC:2D:93:B1:68
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/An4aRGPGhfvWOGP507I7rC2TsWg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
36985
sbgp-ipAddrBlock: critical
IPv4:
41.77.56.0/21
41.223.172.0/22
154.66.64.0/20
IPv6:
2c0f:f150::/32
Signature Algorithm: sha256WithRSAEncryption
1f:cd:86:f9:87:a5:11:53:b6:e1:bc:32:de:bd:9f:f5:a0:83:
d7:57:68:c1:e9:dc:db:a9:25:37:6e:48:b4:d8:12:60:2c:45:
51:7c:50:a2:65:81:54:3a:8e:1b:a5:e9:5b:e8:d3:c8:a5:8b:
16:8f:18:d1:5e:c2:d1:15:43:13:37:53:f4:f2:bc:77:74:1a:
3b:49:17:d6:71:32:e9:15:01:9f:bf:4c:2a:ba:3d:ff:e2:e1:
f7:f1:95:87:1a:49:7e:2d:57:77:41:33:0d:ab:80:d7:30:04:
c6:ff:e5:0f:65:81:68:a1:c2:05:b0:d2:64:13:c7:3e:ba:9c:
41:ec:3a:68:5f:e5:d6:70:21:38:38:da:a3:3e:3e:02:14:27:
f4:61:31:74:fd:63:52:59:4a:d5:bc:64:21:ec:9b:99:5e:34:
8c:d8:09:fc:9f:32:50:96:33:17:47:33:c1:d5:3e:c2:a9:e3:
e8:1c:9b:be:a0:7b:d7:ad:5c:10:f8:d9:0c:c0:3d:69:8f:20:
13:20:28:a1:b7:32:90:3c:a0:0d:c3:d3:10:2f:a8:dc:7e:aa:
9c:45:17:ef:5e:b7:a8:e6:54:b4:da:86:2b:69:a0:80:67:b3:
64:32:11:a6:2f:0a:80:c8:ef:bd:2b:26:a6:2c:3e:e0:76:bb:
91:a8:43:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:02:41 2024 by rpki-client on console-fra.rpki-client.org