Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/NwiffHLw58V4LX8rO9aPXYzsU5Y.cer
File: NwiffHLw58V4LX8rO9aPXYzsU5Y.cer (raw, json)
Hash identifier: Um8f8LIpKEBuAi+BIp6KW9LTXznc8rTxBZl+xhctlZg=
Subject key identifier: 37:08:9F:7C:72:F0:E7:C5:78:2D:7F:2B:3B:D6:8F:5D:8C:EC:53:96
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 24BC
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/NwiffHLw58V4LX8rO9aPXYzsU5Y.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 01:52:09 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 37002
IP: 41.213.128.0/17
IP: 102.35.0.0/16
IP: 102.213.8.0/22
IP: 2c0f:f918::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9404 (0x24bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 01:52:09 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F364E67CAF/serialNumber=37089F7C72F0E7C5782D7F2B3BD68F5D8CEC5396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:51:44:3d:e0:62:2b:bb:9a:08:fb:f1:0f:e5:
73:27:1d:bb:60:df:70:5a:d4:ff:96:c5:b0:3c:03:
0e:49:d9:0e:f7:34:f4:cd:1a:d1:0a:a4:f3:95:64:
33:8f:61:93:0a:f9:3a:ea:11:6a:fa:87:fe:5b:31:
c7:a5:1c:05:92:5f:ea:cd:50:9a:a2:b4:95:56:a6:
40:05:2f:90:09:8b:ff:6d:a5:d9:9d:59:39:73:35:
aa:1e:0d:d5:19:62:c5:31:6a:a5:d5:fd:96:00:ec:
6e:09:77:17:33:5f:bc:35:aa:d2:5c:ce:e1:b6:f9:
88:da:b5:d1:17:2d:be:d8:51:ee:22:ab:b3:08:74:
69:0f:2b:0a:49:d5:da:f0:82:76:38:e0:20:f6:6b:
9d:4b:9e:c4:11:9b:d6:02:21:e9:6a:85:5d:a4:f3:
a6:d4:59:f5:04:fc:92:34:5f:19:bd:a8:54:c7:61:
a2:94:b7:2a:d6:c4:81:f8:d3:99:24:ab:94:4b:18:
5f:a8:63:01:65:7c:43:42:19:9c:d6:4f:52:d0:e8:
67:5a:05:08:58:e6:fd:5f:e8:77:d7:d7:28:9c:8d:
d4:e2:a9:f5:a4:42:51:99:5a:8b:72:ba:5c:5f:8e:
04:1e:6f:f8:4a:5d:01:9c:1b:df:d8:6a:45:37:2d:
5e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:08:9F:7C:72:F0:E7:C5:78:2D:7F:2B:3B:D6:8F:5D:8C:EC:53:96
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364E67C/71DA5480291611E9A079C765F8AEA228/NwiffHLw58V4LX8rO9aPXYzsU5Y.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37002
sbgp-ipAddrBlock: critical
IPv4:
41.213.128.0/17
102.35.0.0/16
102.213.8.0/22
IPv6:
2c0f:f918::/32
Signature Algorithm: sha256WithRSAEncryption
b9:a9:f3:45:d2:2b:d4:3b:1f:89:d9:2b:d5:27:de:63:10:67:
87:2f:07:1a:16:ed:41:92:09:e9:db:81:8b:01:37:50:d5:93:
71:6a:ac:4c:33:8b:06:c6:1d:ba:9c:10:b7:d2:81:cb:b6:0e:
7b:21:8d:0c:ef:64:dd:cc:1e:5c:d6:3e:00:b3:f9:cc:51:35:
4f:2e:ae:4e:3e:f1:d2:9d:1f:dc:af:51:1a:59:bd:8a:4f:b1:
66:5e:c8:fa:9b:df:b0:e8:6b:83:b2:43:ff:1a:22:df:67:9c:
7c:69:77:97:94:97:79:8b:55:9e:b5:88:8e:9b:92:a0:a9:98:
04:bd:35:1f:15:01:1e:0f:06:11:7f:62:b1:3a:69:39:65:c0:
5a:9f:69:c7:33:f8:14:d2:dd:7f:00:b8:73:c1:7f:ce:8b:38:
44:68:ab:a4:0c:47:5a:63:b6:20:e1:dc:99:71:ed:85:f2:c7:
70:b4:4f:23:6b:59:2c:ad:58:d3:92:84:cd:72:8c:a7:5e:4c:
75:0d:ba:f0:99:ad:05:00:b8:61:cc:da:9f:bf:a9:cb:53:67:
9d:0d:21:5b:a7:e6:35:49:b5:40:2c:ed:ae:d7:ea:98:2a:38:
d6:6a:46:fb:23:a2:59:8f:f7:4f:06:d9:cf:e9:73:f4:68:c1:
3e:f8:99:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:31 2024 by rpki-client on console-fra.rpki-client.org