Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Gui5Af04SDp0-NI1YM3fc7TRUGM.cer
File: Gui5Af04SDp0-NI1YM3fc7TRUGM.cer (raw, json)
Hash identifier: ok8ZBN3bpwC9DhiSvadFGlk+XNh0QlOhVGLK3GXkHLk=
Subject key identifier: 1A:E8:B9:01:FD:38:48:3A:74:F8:D2:35:60:CD:DF:73:B4:D1:50:63
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2BAC
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3644574/1EB618CA778011EF9C5A1CB2762E951A/Gui5Af04SDp0-NI1YM3fc7TRUGM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3644574/1EB618CA778011EF9C5A1CB2762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Fri 20 Sep 2024 18:42:52 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328095
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11180 (0x2bac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Sep 20 18:42:52 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F3644574AF/serialNumber=1AE8B901FD38483A74F8D23560CDDF73B4D15063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8c:a8:69:d1:2b:73:ab:22:1b:69:63:e2:3d:
32:e3:a3:00:79:c1:8f:02:1f:d5:35:dc:9b:65:7c:
26:9c:61:41:d8:7a:ed:94:fe:16:a6:6b:33:6b:6b:
14:a2:21:de:22:e0:4a:34:a2:df:52:f0:d1:73:29:
6f:8d:1e:c8:82:60:b1:aa:0a:9e:5e:3e:91:60:54:
a1:07:9c:25:2d:4b:76:9f:5b:85:96:f8:1e:73:4b:
c4:79:d3:9d:34:e9:be:74:0b:a1:03:64:df:bd:ac:
22:d9:13:c6:f8:0d:8e:67:a8:a2:fe:1c:be:b9:69:
b1:c8:01:d5:fd:5d:af:a1:af:a8:fd:7a:31:75:15:
71:4a:1a:c3:3a:63:c0:b0:f6:ba:35:61:11:c7:78:
55:67:83:73:66:ba:3e:c2:73:e4:32:40:57:0b:af:
cc:10:f6:7e:a5:b7:1d:80:d6:14:2f:bb:27:8c:ce:
23:c3:52:10:90:3c:4c:97:3c:a8:a2:e9:43:1d:bd:
31:22:36:28:4a:e1:a4:70:f8:f3:55:c4:54:53:1e:
09:a4:61:20:b3:6a:98:db:6b:31:ea:b0:91:23:59:
01:d2:b5:f7:2e:1c:66:87:88:d8:d1:76:6d:c0:4e:
5e:d1:8c:bd:ec:80:30:01:50:1f:e7:ab:00:ff:72:
40:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E8:B9:01:FD:38:48:3A:74:F8:D2:35:60:CD:DF:73:B4:D1:50:63
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644574/1EB618CA778011EF9C5A1CB2762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644574/1EB618CA778011EF9C5A1CB2762E951A/Gui5Af04SDp0-NI1YM3fc7TRUGM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328095
Signature Algorithm: sha256WithRSAEncryption
70:de:22:65:fd:2d:49:b2:cb:69:f0:e5:97:81:2d:3b:c2:5f:
04:d9:52:b7:03:bc:fd:5e:12:3b:9e:d8:24:38:a7:0a:85:a5:
c7:1f:a4:2b:bf:74:a5:b3:00:6c:b6:a3:52:2e:0b:9d:9c:95:
be:17:72:05:02:8d:02:e4:6d:7c:06:eb:32:89:83:8e:c5:4f:
33:8a:e1:7d:83:d3:2d:d3:0f:12:b3:e1:3f:0a:a8:52:c9:ec:
d9:82:2b:c8:47:a7:c6:d2:08:22:64:97:92:71:13:07:0b:1d:
9a:5d:39:5a:48:d5:de:6e:5c:33:7b:ed:43:06:50:36:43:00:
76:c4:01:a7:8c:42:61:cf:5e:4c:6f:39:95:c3:37:62:23:98:
50:bd:fc:33:dd:54:6a:7e:3d:38:31:02:88:c9:7a:f6:bf:62:
8c:32:40:af:7e:6c:cd:d8:9e:76:ad:71:6a:a1:25:cb:26:9d:
fd:65:1b:ea:2f:6f:0e:8a:c8:d1:62:fb:75:7b:86:50:0a:66:
59:1f:37:a6:84:81:56:5b:4b:fd:fa:d7:21:ea:07:50:1d:8b:
4a:b5:96:f7:40:08:bf:c8:6a:29:9b:3b:83:4c:47:f3:56:b4:
e2:e4:71:ad:4e:5c:af:95:0e:78:2d:f6:a6:54:da:54:1b:ca:
c4:cf:21:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 01:05:41 2024 by rpki-client on console-fra.rpki-client.org