Certificate

$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/B7rWF3RYtkhAnQf1mpkQpdNAPQw.cer
File:                     B7rWF3RYtkhAnQf1mpkQpdNAPQw.cer (raw, json)
Hash identifier:          9ywIGXFajVK0imZi+u2zTdpccSwXEDbAFDmj9axCmgc=
Subject key identifier:   07:BA:D6:17:74:58:B6:48:40:9D:07:F5:9A:99:10:A5:D3:40:3D:0C
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer:       /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial:       2483
Authority info access:    rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest:                 rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/B7rWF3RYtkhAnQf1mpkQpdNAPQw.mft
caRepository:             rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/
Notify URL:               https://rrdp.afrinic.net/notification.xml
Certificate not before:   Mon 01 Jan 2024 01:39:24 +0000
Certificate not after:    Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources:    AS: 37308
                          IP: 41.78.208.0/22
                          IP: 197.234.32.0/19
                          IP: 197.242.240.0/20
                          IP: 2c0f:f3a8::/32

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Sat 23 Nov 2024 08:48:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9347 (0x2483)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
        Validity
            Not Before: Jan  1 01:39:24 2024 GMT
            Not After : Mar 31 00:00:00 2025 GMT
        Subject: CN=F36479AFAF/serialNumber=07BAD6177458B648409D07F59A9910A5D3403D0C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:92:eb:25:0a:70:c7:23:c7:5d:4c:ad:58:b5:
                    8a:61:6b:43:de:1d:34:62:ac:17:e9:4d:a0:fb:05:
                    c4:c1:1a:fc:d5:f1:5e:0d:1c:14:fe:1f:66:aa:82:
                    81:b1:34:5b:59:46:d6:29:15:51:73:87:d5:16:61:
                    47:5d:0f:06:14:91:e3:88:24:f4:89:7e:e6:6e:3d:
                    64:e0:23:56:2a:fc:7b:73:3d:a4:61:fe:f1:bd:77:
                    13:36:2a:0f:e9:43:ce:af:0a:22:d4:eb:e3:8e:6c:
                    a2:76:e2:14:e4:9c:b8:7c:f7:d8:dd:93:ae:9d:74:
                    29:dd:51:26:e2:e7:48:0e:79:97:b8:0b:be:67:3a:
                    a4:6d:29:ed:a2:11:a3:79:d3:76:ca:cb:58:b9:05:
                    a7:74:30:36:46:df:0b:5a:d9:e8:a6:74:31:88:af:
                    9d:97:5e:42:7e:5e:95:42:dd:75:c8:f9:be:f2:ae:
                    d7:35:2d:63:15:ed:20:08:a3:f5:d1:a0:6e:12:8b:
                    dc:ac:9a:3e:0d:27:8c:7a:c1:85:48:61:2c:b6:b9:
                    a5:0b:3a:ff:67:01:ec:0c:18:dc:dc:a9:e3:d6:c2:
                    74:b6:8e:0e:91:d3:01:3a:b8:10:1e:e0:cc:ad:b5:
                    1f:5d:6e:8e:5d:ec:ae:c0:fd:aa:c5:6d:99:4e:c8:
                    14:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:BA:D6:17:74:58:B6:48:40:9D:07:F5:9A:99:10:A5:D3:40:3D:0C
            X509v3 Authority Key Identifier:
                keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
                RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36479AF/5CFEC160C4C811E9B4DD3D1AF8AEA228/B7rWF3RYtkhAnQf1mpkQpdNAPQw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  37308

            sbgp-ipAddrBlock: critical
                IPv4:
                  41.78.208.0/22
                  197.234.32.0/19
                  197.242.240.0/20
                IPv6:
                  2c0f:f3a8::/32

    Signature Algorithm: sha256WithRSAEncryption
         23:fd:71:b1:bc:07:fa:d1:d5:81:25:79:c8:6b:09:7e:14:75:
         5a:f6:49:b1:8c:fe:99:c6:f1:f7:b0:df:de:2d:43:12:9e:1c:
         b7:cc:f9:ea:9f:a7:ad:f4:26:19:15:63:64:89:b3:4b:e5:9c:
         1e:a6:21:69:b5:21:d0:77:6e:f2:0d:ae:3e:85:65:73:27:2e:
         34:ac:2a:fb:2e:31:3e:d0:e1:30:cd:40:46:53:43:42:b7:b4:
         9d:5c:63:5b:1e:d3:34:27:8d:63:0f:f2:06:b8:6d:a0:aa:9c:
         ba:d9:09:50:d4:df:05:64:e6:5f:04:dd:6c:41:0e:f0:2c:16:
         18:6e:c6:cf:b7:fb:1f:4a:39:bc:3b:24:a0:8c:67:a6:8c:de:
         50:91:79:e7:5d:f3:f8:d5:0e:db:36:55:19:bf:7c:f6:d1:09:
         95:81:11:64:d9:51:20:7e:3e:a3:34:0e:a5:6f:26:b4:4a:7c:
         2d:1e:e9:1f:11:b9:c8:f6:fe:51:4a:4c:36:f4:60:1f:ac:e5:
         37:e5:d3:e0:2e:56:2b:f6:70:a5:dd:f6:43:25:fc:34:ed:85:
         b0:90:73:30:b6:e7:3a:e0:36:7a:82:dc:a1:2e:4f:ac:23:f4:
         45:4c:1c:cc:ba:8c:e9:55:72:71:96:81:59:03:b7:0d:c4:32:
         6c:b5:71:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:21 2024 by rpki-client on console-ams.rpki-client.org