Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
File: PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer (raw, json)
Hash identifier: gghxlDxGN6w5WOMaKLubc5jZ/ltlgpucJR7EemYF7Ps=
Subject key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 265F
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 03:07:01 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 33763
AS: 37096
IP: 41.218.64.0/18
IP: 196.1.28.0/22
IP: 196.216.32.0/19
IP: 197.234.64.0/18
IP: 2c0f:f980::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9823 (0x265f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 03:07:01 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1c:4d:2e:cd:23:8e:9d:79:53:30:73:21:82:
52:63:6d:9c:e2:92:02:26:f0:96:c5:47:d6:f4:9b:
83:21:61:d8:e8:d9:23:80:83:46:42:c6:55:48:7b:
28:12:bd:2c:65:ee:cb:3a:b5:3e:67:db:0f:e2:9c:
2f:47:63:a3:ca:6e:27:d5:60:be:2d:02:ee:00:e3:
9b:6c:f1:f1:3a:31:53:3b:12:f5:5f:31:d3:96:91:
a9:f0:0d:03:32:2b:cf:19:27:25:70:c0:3c:78:93:
d7:28:c7:ea:c0:d0:9f:f7:d0:3d:bc:bb:3d:fd:06:
8f:28:d8:02:1e:ce:3d:78:5a:4a:a7:9d:49:51:87:
76:e6:87:c5:90:fa:6c:9e:d5:5d:0c:17:6a:a1:bc:
4c:2d:7d:d2:fb:d9:b4:58:aa:8c:cf:91:e8:b1:8c:
13:c5:6c:fa:20:ae:0d:d9:ac:73:8e:93:36:57:4e:
f5:aa:9a:62:c0:30:94:62:71:8d:94:65:7a:ba:3d:
4c:60:e6:42:7b:94:f4:e2:54:6a:30:5f:fd:51:f7:
04:e7:8c:90:43:0a:d5:3f:0f:b9:bd:c0:3a:a3:7f:
22:33:1c:11:b3:7f:2e:d0:19:29:a4:a8:45:62:3f:
01:79:2d:60:54:47:98:30:da:cb:0a:f2:49:46:ee:
b8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
33763
37096
sbgp-ipAddrBlock: critical
IPv4:
41.218.64.0/18
196.1.28.0/22
196.216.32.0/19
197.234.64.0/18
IPv6:
2c0f:f980::/32
Signature Algorithm: sha256WithRSAEncryption
51:57:80:a9:68:34:a1:c2:05:04:61:aa:63:5b:be:0d:30:65:
9d:5d:f4:ca:bb:08:01:9d:b8:96:36:6e:7c:44:bf:fe:9a:ad:
11:61:bb:21:c0:47:8b:86:2b:61:0a:62:e1:f4:d7:b7:a9:4a:
c1:5f:5c:8e:96:16:2a:32:6f:36:20:65:d6:f0:74:04:61:71:
38:47:97:8e:ae:3d:a3:95:92:3b:f5:88:35:66:07:1b:b0:ce:
65:f4:9a:19:8e:2b:20:2d:e9:76:f6:3d:6c:b4:2d:64:b2:c6:
94:89:45:51:bc:3c:23:52:43:9d:9d:6e:af:b6:70:17:0e:35:
4c:ca:66:19:8b:fe:26:c6:0b:27:53:1c:a8:9d:df:a8:03:88:
f7:75:09:65:75:30:ea:80:48:a1:fd:03:52:6f:c8:33:01:8e:
22:31:fe:6b:14:b3:f2:30:f5:20:ba:c2:e4:aa:11:24:18:1b:
d8:1a:cc:c2:e1:52:2a:2d:e2:c1:3b:8d:d4:de:8d:29:cb:09:
4b:f7:26:3f:96:7b:f0:c8:f2:96:7a:f0:30:fe:67:33:35:60:
35:54:ec:29:05:5a:6c:cc:3c:b5:e5:8d:ca:66:1f:40:1d:21:
18:83:02:72:21:73:62:3b:39:bb:f7:c2:10:c8:a9:f9:de:41:
43:52:f3:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:31 2024 by rpki-client on console-fra.rpki-client.org