Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/PUpO_QKaES64mqyOyp2RekfLbFw.cer
File: PUpO_QKaES64mqyOyp2RekfLbFw.cer (raw, json)
Hash identifier: GbMw0ARs8Dpgpioh9IR2JEzj567WMGPoL05qU1/wYaY=
Subject key identifier: 3D:4A:4E:FD:02:9A:11:2E:B8:9A:AC:8E:CA:9D:91:7A:47:CB:6C:5C
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 250B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/PUpO_QKaES64mqyOyp2RekfLbFw.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:11:53 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328820
IP: 102.220.104.0/22
IP: 2c0f:1200::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9483 (0x250b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 02:11:53 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36598F5AF/serialNumber=3D4A4EFD029A112EB89AAC8ECA9D917A47CB6C5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:11:b8:14:48:37:e5:21:16:d2:e1:f3:44:c3:
0a:48:72:73:f1:c4:62:ce:74:20:2b:e6:a0:79:cf:
84:aa:b8:ce:79:32:b6:42:86:a9:f7:d7:18:bd:ea:
88:a8:6d:89:ee:2f:2a:aa:e3:fb:e6:ea:23:b2:f0:
7c:b7:2f:91:5e:d5:52:11:08:8a:d3:a0:1b:b6:0f:
8b:e1:3c:70:d5:37:2e:cf:7a:c3:85:ff:4a:2e:47:
e1:e2:27:28:fa:dc:fb:e8:fc:62:b3:e8:e8:16:1e:
37:ac:3a:3a:50:51:01:6d:2e:70:cb:cb:ff:80:59:
27:6a:9e:72:8a:9d:96:16:f3:c6:bd:b0:a7:96:8f:
1d:a5:34:ad:18:c1:3e:61:7e:09:78:cb:77:ca:fc:
9f:4b:b4:a0:91:0a:91:0e:3e:6e:d3:7c:59:16:68:
f2:c5:1e:f2:85:9e:36:cb:b8:68:d1:d3:ee:e3:73:
cd:32:34:95:15:2d:18:de:ee:19:d9:51:f3:77:49:
d9:58:10:00:14:30:45:20:f8:f2:ea:6f:b9:10:65:
43:7f:09:6f:cd:80:e5:d6:67:0a:df:22:5c:9a:e3:
77:6d:1c:fc:11:04:99:40:87:48:dc:b8:e7:93:c3:
d3:cf:82:5a:d6:17:8e:24:3d:78:6d:f2:c5:19:f7:
af:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4A:4E:FD:02:9A:11:2E:B8:9A:AC:8E:CA:9D:91:7A:47:CB:6C:5C
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36598F5/A410D350DC0211EC99E36188F1222468/PUpO_QKaES64mqyOyp2RekfLbFw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328820
sbgp-ipAddrBlock: critical
IPv4:
102.220.104.0/22
IPv6:
2c0f:1200::/32
Signature Algorithm: sha256WithRSAEncryption
52:ce:18:ce:97:d4:9e:65:03:68:d6:08:2a:28:46:84:2d:fb:
87:01:5a:6a:3b:34:1a:bb:a1:43:8d:46:75:98:40:dd:a3:bb:
a6:2d:54:c0:94:cd:ec:3a:d8:a7:6d:16:cc:9e:9d:b5:41:34:
a8:10:04:47:0f:91:86:a9:f4:56:c7:ad:a6:86:e0:5d:ff:70:
52:4d:3e:80:8e:6c:14:fb:ba:65:93:01:5e:af:01:53:99:a8:
d4:1a:f5:54:b4:e9:47:f7:16:4c:cc:c4:c2:aa:a8:30:2a:14:
fe:e5:c7:e4:cb:3c:53:5d:6d:33:97:2a:ae:b0:a8:36:6f:fc:
51:52:44:d4:df:11:a7:b5:9a:a2:64:30:dd:03:17:52:a8:7e:
96:76:6c:de:10:a3:d7:e8:06:5c:8e:4e:9e:63:8d:da:21:a1:
3b:13:44:14:a3:87:1d:ee:e9:c5:f3:2f:e4:48:0d:40:b4:6b:
4d:da:1b:1a:14:7e:77:42:b0:74:96:6a:1d:0a:e5:5c:e1:be:
82:d0:e3:4b:e4:d9:aa:91:e0:92:2f:98:6d:d5:e3:2d:7e:6a:
b6:74:bc:33:c1:df:48:fa:e0:59:14:eb:36:34:30:b8:e0:af:
4d:ac:1c:04:3a:7c:54:db:47:47:1e:78:53:1e:55:e2:c3:4f:
e8:ca:82:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:22 2024 by rpki-client on console-ams.rpki-client.org