Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/I78EX4uOm-g4553TEsyV7LjMYQs.cer
File: I78EX4uOm-g4553TEsyV7LjMYQs.cer (raw, json)
Hash identifier: aFzAlJOXRLvZIq/9b2ZYWZoOm4bIUMfAgUXxGX8XMS0=
Subject key identifier: 23:BF:04:5F:8B:8E:9B:E8:38:E7:9D:D3:12:CC:95:EC:B8:CC:61:0B
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2C3C
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/I78EX4uOm-g4553TEsyV7LjMYQs.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Thu 14 Nov 2024 07:23:21 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 37172
IP: 41.76.112.0/21
IP: 102.207.64.0/22
IP: 102.213.72.0/22
IP: 196.250.240.0/21
IP: 197.231.144.0/21
IP: 2c0f:ee28::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11324 (0x2c3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Nov 14 07:23:21 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F369671EAF/serialNumber=23BF045F8B8E9BE838E79DD312CC95ECB8CC610B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fb:a6:89:ed:08:51:71:be:a3:d2:42:58:75:
35:e0:6d:fe:ea:27:45:f9:f0:79:df:5a:70:ce:dd:
be:4a:dd:f1:63:8d:31:79:fd:e8:2e:38:e1:7c:99:
15:50:05:42:1a:3a:ed:91:98:96:5c:ce:65:bc:be:
10:23:e3:79:34:d8:dc:95:7e:7b:f7:0f:ee:aa:60:
e2:38:fb:f1:9a:8b:fc:d5:32:6c:4c:e7:c7:72:cb:
44:34:27:1a:ff:34:1d:12:8c:76:83:9a:ba:82:96:
ae:8a:a6:b2:7f:a5:0a:09:12:bc:9a:f2:59:81:b2:
95:d1:ca:91:0f:00:f0:b3:47:89:55:f8:eb:45:7a:
bb:17:77:44:97:59:8c:b8:7f:da:95:59:fc:d7:5c:
a5:a5:2f:9e:17:1a:c7:dc:1b:b0:37:20:81:88:7e:
27:9c:22:86:45:79:0b:f7:7a:2e:6c:8e:4a:de:f1:
58:10:d9:3f:8a:90:b3:b9:7b:1f:f0:7c:82:03:ec:
57:7e:3f:d4:c1:6f:79:e5:c6:93:49:96:b7:e2:4b:
a2:8e:68:d3:cb:9a:0b:e5:52:c3:83:a3:de:d2:bc:
a2:69:f6:73:d4:4f:08:f1:84:5a:5f:c1:20:30:03:
c5:7c:d5:b3:ee:87:4e:4d:78:bf:fc:b2:d8:95:e1:
31:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:BF:04:5F:8B:8E:9B:E8:38:E7:9D:D3:12:CC:95:EC:B8:CC:61:0B
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/I78EX4uOm-g4553TEsyV7LjMYQs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37172
sbgp-ipAddrBlock: critical
IPv4:
41.76.112.0/21
102.207.64.0/22
102.213.72.0/22
196.250.240.0/21
197.231.144.0/21
IPv6:
2c0f:ee28::/32
Signature Algorithm: sha256WithRSAEncryption
93:d0:6c:ed:d9:4d:1b:ad:31:5f:25:87:97:06:cf:28:26:79:
4f:a9:c3:24:2d:d3:c4:eb:5e:c6:54:34:b1:5d:72:2e:a5:1e:
99:32:5e:fe:ce:c5:a6:f1:97:92:39:0f:e3:2d:f0:88:2a:a7:
62:3b:be:35:d0:de:fa:ba:14:c2:34:53:37:13:49:03:d6:1a:
ea:e4:60:1d:43:13:1e:bb:ae:00:9f:f9:49:31:66:13:ca:41:
40:ee:67:7b:74:49:d4:4f:a3:93:ed:71:49:77:cc:12:cc:b1:
54:9c:39:63:9e:35:73:45:8f:af:6e:45:e7:4c:01:b3:8b:64:
b7:29:5f:74:ef:fe:71:f0:33:f9:13:5e:e4:6c:16:67:90:c2:
fb:de:d1:01:12:98:10:cd:d5:ce:19:f9:20:e1:13:b2:d6:9b:
b5:26:cf:45:a3:91:ad:ce:d7:35:4f:8b:7c:97:93:72:11:76:
35:e6:00:59:f9:f9:eb:31:42:24:bd:02:e4:83:5d:7a:ea:40:
13:4e:21:33:56:e9:b2:65:40:73:44:2f:f3:d1:24:2f:19:54:
48:48:1e:f1:33:42:95:cf:13:01:56:1b:4d:7c:74:c9:dc:11:
00:c8:5a:07:8b:bd:d2:84:8b:b9:5d:57:00:34:01:ae:0d:75:
71:ce:72:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:31 2024 by rpki-client on console-fra.rpki-client.org