Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Ga2syP-jkxMYpsdToKwbKukpXgM.cer
File: Ga2syP-jkxMYpsdToKwbKukpXgM.cer (raw, json)
Hash identifier: /dlouR9gYd/uGJgikRMDZ0M8pJmmfqHDQzVmu6iwOs0=
Subject key identifier: 19:AD:AC:C8:FF:A3:93:13:18:A6:C7:53:A0:AC:1B:2A:E9:29:5E:03
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 24A1
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 01:46:01 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 41.82.0.0/15
IP: 41.208.128.0/18
IP: 41.214.0.0/17
IP: 154.124.0.0/15
IP: 196.207.192.0/18
IP: 2001:4278::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9377 (0x24a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 01:46:01 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36B52A6AF/serialNumber=19ADACC8FFA3931318A6C753A0AC1B2AE9295E03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:29:37:3e:85:95:20:7e:ff:f0:2a:51:52:a2:
fe:11:75:c7:52:32:e9:51:15:eb:99:c2:95:a8:e3:
af:ca:33:93:0b:69:d5:72:aa:11:d7:d3:63:8b:ad:
f1:3a:1f:02:2f:d2:c1:c7:55:bb:46:38:b7:c4:ec:
4a:1e:8c:9a:47:65:6b:cd:ca:9e:67:a3:32:2b:25:
df:ea:9c:0b:49:2f:f3:d1:dc:44:b7:2a:f2:e1:ef:
8b:ec:c6:0c:bd:80:b4:7d:15:fa:31:48:17:a8:a3:
51:28:97:29:5c:ee:5c:85:67:a0:c7:91:18:c1:05:
e4:74:10:26:a0:a0:06:88:5b:57:7b:18:bd:d7:3e:
78:04:93:e2:74:5d:80:5c:fb:ed:23:fc:ca:e8:a9:
03:5e:ab:eb:41:d2:29:e7:bd:14:15:7e:4f:b1:a0:
ad:ae:29:ac:dd:c1:14:0a:dd:22:a0:7d:fb:34:ae:
53:a6:6f:40:e8:66:0a:2e:7a:b3:b3:40:00:68:b6:
ee:30:d9:87:54:e7:a3:c8:81:0f:b9:30:da:26:b4:
28:5e:ab:6e:f6:f1:52:ca:dc:c2:e2:58:3d:d2:16:
f5:5d:c2:ca:ba:1a:dc:9c:35:4c:27:98:22:21:85:
f0:d1:a8:fa:3e:db:e5:d3:29:96:fa:21:9d:ee:5e:
5d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:AD:AC:C8:FF:A3:93:13:18:A6:C7:53:A0:AC:1B:2A:E9:29:5E:03
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.mft
sbgp-ipAddrBlock: critical
IPv4:
41.82.0.0/15
41.208.128.0/18
41.214.0.0/17
154.124.0.0/15
196.207.192.0/18
IPv6:
2001:4278::/32
Signature Algorithm: sha256WithRSAEncryption
bf:21:95:12:4c:22:b1:74:23:b9:aa:39:16:00:ae:6d:ce:a2:
aa:67:a9:46:41:c1:3f:a8:01:3f:40:ec:df:f0:8d:66:51:55:
37:f1:7f:7d:f4:3d:69:02:33:ad:7a:06:cf:35:08:c9:f1:36:
c0:7e:cc:ef:73:a4:17:bc:f5:74:a2:a7:b6:7b:7c:ec:86:da:
da:ed:b5:d6:dc:92:50:ee:d4:ea:2f:92:b3:79:0e:e5:b9:56:
b9:dc:7d:f2:fe:e2:83:f2:21:7b:53:18:ac:48:c0:e7:74:66:
ed:8e:b4:e6:87:1d:b8:aa:15:a4:51:a7:fc:a4:b9:b9:ea:98:
e5:0e:8c:37:eb:68:79:27:28:da:3c:ba:35:23:a5:e9:dd:bd:
ab:eb:b8:eb:86:b0:5e:e5:dd:5b:84:92:bf:d8:79:2d:8a:2e:
bb:31:fc:0f:7a:e8:85:45:9b:8a:4e:47:7b:e2:5e:fc:97:61:
1c:03:ee:c5:55:e1:0d:98:d4:c4:20:f3:36:0d:f0:87:d6:09:
7d:1c:ae:fe:55:f0:f9:11:24:f2:0e:e3:34:52:2f:9c:fc:ba:
85:1c:33:c7:b1:b9:b4:19:82:8d:81:b9:51:e5:34:8f:72:9a:
c1:fa:ae:5f:38:49:ab:dd:a8:f3:2c:7c:da:15:31:b4:5b:d2:
b7:ab:fa:8c
-----BEGIN CERTIFICATE-----
MIIGHzCCBQegAwIBAgICJKEwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNDAxMDEwMTQ2MDFaFw0yNTAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkI1MkE2QUYxMTAvBgNVBAUTKDE5QURBQ0M4RkZBMzkzMTMxOEE2Qzc1
M0EwQUMxQjJBRTkyOTVFMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCzKTc+hZUgfv/wKlFSov4RdcdSMulRFeuZwpWo46/KM5MLadVyqhHX02OLrfE6
HwIv0sHHVbtGOLfE7EoejJpHZWvNyp5nozIrJd/qnAtJL/PR3ES3KvLh74vsxgy9
gLR9FfoxSBeoo1Eolylc7lyFZ6DHkRjBBeR0ECagoAaIW1d7GL3XPngEk+J0XYBc
++0j/MroqQNeq+tB0innvRQVfk+xoK2uKazdwRQK3SKgffs0rlOmb0DoZgouerOz
QABotu4w2YdU56PIgQ+5MNomtCheq2728VLK3MLiWD3SFvVdwsq6GtycNUwnmCIh
hfDRqPo+2+XTKZb6IZ3uXl3HAgMBAAGjggMUMIIDEDAdBgNVHQ4EFgQUGa2syP+j
kxMYpsdToKwbKukpXgMwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZCNTJBNi82QUUzMDdCNjZGRkQx
MUU5QTY5Q0MxMzRGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QjUyQTYvNkFFMzA3QjY2RkZEMTFFOUE2OUNDMTM0RjhBRUEyMjgvR2Eyc3lQ
LWpreE1ZcHNkVG9Ld2JLdWtwWGdNLm1mdDBEBggrBgEFBQcBBwEB/wQ1MDMwIgQC
AAEwHAMDASlSAwQGKdCAAwQHKdYAAwMBmnwDBAbEz8AwDQQCAAIwBwMFACABQngw
DQYJKoZIhvcNAQELBQADggEBAL8hlRJMIrF0I7mqORYArm3OoqpnqUZBwT+oAT9A
7N/wjWZRVTfxf330PWkCM616Bs81CMnxNsB+zO9zpBe89XSip7Z7fOyG2trttdbc
klDu1OovkrN5DuW5VrncffL+4oPyIXtTGKxIwOd0Zu2OtOaHHbiqFaRRp/ykubnq
mOUOjDfraHknKNo8ujUjpendvavruOuGsF7l3VuEkr/YeS2KLrsx/A966IVFm4pO
R3viXvyXYRwD7sVV4Q2Y1MQg8zYN8IfWCX0crv5V8PkRJPIO4zRSL5z8uoUcM8ex
ubQZgo2BuVHlNI9ymsH6rl84SavdqPMsfNoVMbRb0rer+ow=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:21 2024 by rpki-client on console-ams.rpki-client.org