Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/GDUHKiLvnZx8uLWjbGnnw5gTPGE.cer
File: GDUHKiLvnZx8uLWjbGnnw5gTPGE.cer (raw, json)
Hash identifier: Nz13VeAfQLdVCmcB0p46QwULWyDPRUhap4Mm8A9oZBw=
Subject key identifier: 18:35:07:2A:22:EF:9D:9C:7C:B8:B5:A3:6C:69:E7:C3:98:13:3C:61
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2644
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/GDUHKiLvnZx8uLWjbGnnw5gTPGE.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 03:03:16 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 102.211.187.0/24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9796 (0x2644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 03:03:16 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F3683B5BAF/serialNumber=1835072A22EF9D9C7CB8B5A36C69E7C398133C61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d2:23:61:ac:f7:c8:d4:3d:44:57:08:10:cf:
74:0b:89:e8:96:af:cd:57:de:35:db:6e:c7:8d:0a:
f2:39:00:bc:82:a7:ea:5f:5c:83:ac:9a:2f:0d:b9:
21:97:59:36:12:3a:4a:1a:21:8c:ae:09:7a:eb:eb:
57:90:dd:66:30:72:44:e4:50:de:b4:c8:70:db:d8:
5b:76:17:2d:21:74:85:3d:94:89:dc:f9:72:25:36:
80:51:31:5c:d4:2d:42:44:3c:f0:74:91:56:e2:47:
7e:24:63:d3:9a:7b:52:82:b8:86:f7:f0:db:9f:6c:
f3:5b:8d:15:29:88:1f:dd:9b:d9:93:cd:e0:98:ea:
4f:bf:1b:9a:92:b3:08:11:51:c4:8a:90:e1:d4:6c:
17:93:10:7f:0c:98:04:2e:36:29:a2:96:11:f7:af:
75:44:f9:2f:d6:6e:0a:40:5b:c9:42:75:78:40:d5:
46:ce:04:e6:73:20:74:8b:87:f7:fd:ec:dd:4a:09:
08:e0:3d:0b:9d:a6:f0:c8:65:13:d9:21:d6:2e:e8:
a0:9b:b3:a4:1e:ce:dc:cb:62:22:26:d4:41:dc:6c:
22:6e:75:98:b8:b1:d4:4c:ce:68:78:59:ae:75:2d:
40:8f:e8:d2:79:75:32:d9:34:9b:fd:b5:1b:e7:b3:
7c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:35:07:2A:22:EF:9D:9C:7C:B8:B5:A3:6C:69:E7:C3:98:13:3C:61
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/GDUHKiLvnZx8uLWjbGnnw5gTPGE.mft
sbgp-ipAddrBlock: critical
IPv4:
102.211.187.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:e3:fe:20:d8:98:b6:d8:92:e2:ed:04:db:75:18:f0:7f:f7:
50:84:83:17:97:34:6e:7c:5d:99:eb:f8:b7:19:5e:0c:a4:97:
a4:e2:fe:2e:3f:a2:84:d1:e6:fa:0c:63:80:3a:e4:6d:77:2b:
15:c5:5c:92:23:90:13:d0:db:35:eb:66:c1:f6:67:d5:74:0f:
f8:62:2a:1e:ca:f3:e0:27:bc:6b:dd:65:f1:ea:ed:c9:2b:56:
32:bb:a3:97:f4:4b:ee:b4:fa:bc:34:73:1e:10:66:e4:7f:e0:
da:c8:81:18:ab:b3:c0:c5:fc:45:4e:5b:48:41:5b:fc:1d:b2:
c0:f9:2c:3b:b3:ec:13:2b:3c:c1:67:66:e3:4a:79:88:5e:f7:
da:59:89:09:f4:c7:50:6c:f1:1a:19:0f:b3:14:99:f3:90:70:
d4:ae:83:01:a8:87:e3:28:a0:f0:0f:27:cd:a5:bf:68:9f:65:
68:a6:94:7d:64:d6:c6:dd:0e:cc:0b:e1:64:33:19:f7:06:18:
2f:0c:7c:d1:df:b7:23:3e:44:87:ae:91:d7:fc:25:42:f2:61:
dd:75:e5:05:6b:0b:af:3f:c3:da:32:5c:55:09:9e:e7:fc:f7:
96:05:b0:cd:8c:27:48:e7:51:e9:88:1a:e2:51:18:c8:23:5c:
a2:14:00:d1
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgICJkQwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNDAxMDEwMzAzMTZaFw0yNTAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjgzQjVCQUYxMTAvBgNVBAUTKDE4MzUwNzJBMjJFRjlEOUM3Q0I4QjVB
MzZDNjlFN0MzOTgxMzNDNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCZ0iNhrPfI1D1EVwgQz3QLieiWr81X3jXbbseNCvI5ALyCp+pfXIOsmi8NuSGX
WTYSOkoaIYyuCXrr61eQ3WYwckTkUN60yHDb2Ft2Fy0hdIU9lInc+XIlNoBRMVzU
LUJEPPB0kVbiR34kY9Oae1KCuIb38NufbPNbjRUpiB/dm9mTzeCY6k+/G5qSswgR
UcSKkOHUbBeTEH8MmAQuNimilhH3r3VE+S/WbgpAW8lCdXhA1UbOBOZzIHSLh/f9
7N1KCQjgPQudpvDIZRPZIdYu6KCbs6QeztzLYiIm1EHcbCJudZi4sdRMzmh4Wa51
LUCP6NJ5dTLZNJv9tRvns3yJAgMBAAGjggLvMIIC6zAdBgNVHQ4EFgQUGDUHKiLv
nZx8uLWjbGnnw5gTPGEwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY4M0I1Qi83QzNCRUYwODM1RDUx
MUVFOUM4OUMzNDM0QUQ5RTZGQy8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2ODNCNUIvN0MzQkVGMDgzNUQ1MTFFRTlDODlDMzQzNEFEOUU2RkMvR0RVSEtp
THZuWng4dUxXamJHbm53NWdUUEdFLm1mdDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAGbTuzANBgkqhkiG9w0BAQsFAAOCAQEAseP+INiYttiS4u0E23UY8H/3
UISDF5c0bnxdmev4txleDKSXpOL+Lj+ihNHm+gxjgDrkbXcrFcVckiOQE9DbNetm
wfZn1XQP+GIqHsrz4Ce8a91l8ertyStWMrujl/RL7rT6vDRzHhBm5H/g2siBGKuz
wMX8RU5bSEFb/B2ywPksO7PsEys8wWdm40p5iF732lmJCfTHUGzxGhkPsxSZ85Bw
1K6DAaiH4yig8A8nzaW/aJ9laKaUfWTWxt0OzAvhZDMZ9wYYLwx80d+3Iz5Eh66R
1/wlQvJh3XXlBWsLrz/D2jJcVQme5/z3lgWwzYwnSOdR6Yga4lEYyCNcohQA0Q==
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:31 2024 by rpki-client on console-fra.rpki-client.org