Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.cer
File: Gy5x2gSuCRA5RRF_kHbH-OGZJDw.cer (raw, json)
Hash identifier: lEQpP44r2v+IyNfi5wxpMKkAI1CUhvUoxM9pZtUAp9Q=
Subject key identifier: 1B:2E:71:DA:04:AE:09:10:39:45:11:7F:90:76:C7:F8:E1:99:24:3C
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2B65
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 02 Sep 2024 21:37:46 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328583
IP: 102.36.140.0/22
IP: 102.213.148.0/22
IP: 2c0f:6140::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11109 (0x2b65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Sep 2 21:37:46 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36AC9F1AF/serialNumber=1B2E71DA04AE09103945117F9076C7F8E199243C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:aa:6f:fc:97:18:e1:13:ef:37:9e:75:36:1b:
65:90:f1:5f:99:6e:c1:60:5b:5a:44:86:24:dc:15:
3d:49:5d:ea:e6:f5:02:34:31:d2:0e:c5:06:4d:4a:
25:f7:5c:2b:7a:b1:84:db:3d:74:3b:36:8b:7a:7c:
ed:68:4c:15:58:70:da:07:88:b7:9e:a9:c2:d8:a4:
42:e5:11:16:ac:d9:85:65:20:0d:86:8d:4f:be:de:
81:3b:25:10:d6:6e:f3:d8:01:ec:90:2c:b9:94:62:
3d:00:59:92:15:32:5a:0f:2f:b8:e4:ba:d1:bf:69:
fc:71:76:f0:62:44:9c:3d:42:d9:6b:74:d5:66:c6:
72:d2:d5:b4:cf:39:23:7b:d8:b1:18:3d:be:3b:08:
f6:0b:f6:db:a7:7b:2c:c6:21:f1:d4:f2:b7:8a:74:
f9:d5:a0:fd:f2:19:03:7f:79:a7:eb:41:0a:be:f9:
75:1c:c3:b8:46:03:42:89:b4:18:bb:63:65:5b:6b:
6b:0d:b9:13:83:27:8a:d4:b3:ae:4f:b3:70:43:9e:
33:95:51:38:12:a4:dd:eb:ec:a0:de:a1:8a:7e:ec:
cb:97:3b:a2:1d:da:95:ff:5b:b6:b2:24:11:d9:00:
7f:bc:ba:ed:63:74:fa:01:6e:e7:e8:e6:f6:57:67:
fc:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2E:71:DA:04:AE:09:10:39:45:11:7F:90:76:C7:F8:E1:99:24:3C
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328583
sbgp-ipAddrBlock: critical
IPv4:
102.36.140.0/22
102.213.148.0/22
IPv6:
2c0f:6140::/32
Signature Algorithm: sha256WithRSAEncryption
81:7b:52:8a:c1:c4:c1:c6:6b:95:4e:ef:a1:73:83:a2:9c:a8:
aa:71:ec:42:6b:71:36:f1:32:f0:dc:ca:3d:97:a5:71:de:51:
39:76:b9:fa:f8:a2:07:b8:60:44:0d:ca:ce:eb:53:66:0a:a0:
81:28:cd:58:9f:d9:e3:62:81:98:88:68:09:7e:26:91:dd:97:
75:1d:ba:b5:0b:69:15:b9:c7:f2:78:9c:3e:84:f4:59:4c:ec:
f9:50:36:e5:60:f0:34:fa:32:e2:b7:f1:06:3c:47:f6:09:f5:
8f:0b:16:f9:a6:53:e7:28:0a:32:e5:c9:c0:e8:cd:4a:c7:17:
d5:6a:1e:55:8b:7f:8a:bd:b1:ea:df:5b:98:ac:b2:81:83:09:
f4:85:61:97:27:26:d6:c0:3f:74:a3:44:9e:0f:90:a6:8b:56:
bb:a4:ba:40:ee:29:55:68:39:0c:65:c1:ec:dd:82:1a:c9:32:
91:9b:88:28:5e:58:84:de:73:3d:65:21:fd:63:ad:ca:fb:6a:
85:5f:30:44:60:5a:97:74:94:c3:53:13:77:37:8c:d1:73:8c:
aa:fa:fe:25:ca:83:d8:6a:48:54:94:c5:bd:37:cb:3d:53:64:
71:5f:5f:28:c8:fe:d7:2a:c7:ce:93:8d:fe:4d:62:62:0b:d5:
0e:5b:55:93
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:21 2024 by rpki-client on console-ams.rpki-client.org