Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Po64WOYVOSGtsL9fC8lbTQbHw-8.cer
File: Po64WOYVOSGtsL9fC8lbTQbHw-8.cer (raw, json)
Hash identifier: 2aXb7x+xUzd6uhm0+5ZNqqHI68jUZi/5PE5iv+Vqgd8=
Subject key identifier: 3E:8E:B8:58:E6:15:39:21:AD:B0:BF:5F:0B:C9:5B:4D:06:C7:C3:EF
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 284D
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/Po64WOYVOSGtsL9fC8lbTQbHw-8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:22:46 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328803
IP: 102.215.20.0/22
IP: 102.220.232.0/22
IP: 2c0f:1480::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Apr 2024 07:20:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10317 (0x284d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 04:22:46 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36E8DA8AF/serialNumber=3E8EB858E6153921ADB0BF5F0BC95B4D06C7C3EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:25:23:62:81:2e:1c:c5:09:81:82:f3:57:87:
77:cb:33:af:8c:24:b5:4e:c3:fb:1e:19:00:2f:cd:
ce:d4:b6:75:c1:2c:8a:bb:ec:23:7d:50:b0:2c:2f:
bd:d9:e6:dc:49:1a:34:6c:f4:2e:68:bb:bb:20:9f:
c9:e0:23:f8:46:c5:da:3f:aa:79:ec:84:3d:0f:68:
d2:71:38:02:13:a7:f1:e6:fb:6a:e3:58:aa:30:9d:
1b:b4:d0:9b:81:e6:82:61:e2:e4:2d:7d:9b:d1:3d:
41:72:30:f9:f1:ec:35:bd:2e:8c:16:b0:dd:5b:63:
d7:94:f6:48:02:1f:c3:fb:36:2f:d7:e3:85:68:d7:
b5:bf:29:5c:09:b6:05:39:c2:98:34:30:07:c3:a5:
cc:53:4f:15:a0:4b:bc:a6:59:70:e7:99:5a:51:0c:
13:4d:61:00:24:68:61:b4:98:64:e4:17:69:a4:f1:
9d:0c:d6:f8:62:99:c2:df:d8:95:39:b8:e8:bf:e3:
db:ab:61:5a:2d:b6:13:6c:29:91:90:14:c2:e8:3b:
7f:e4:b4:4b:ae:b1:d0:37:d3:49:37:00:1b:cb:fd:
a2:80:e8:4d:08:45:d8:35:70:77:8e:7e:fe:82:65:
13:10:60:f0:1f:85:42:58:78:87:85:37:f3:21:00:
d7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:8E:B8:58:E6:15:39:21:AD:B0:BF:5F:0B:C9:5B:4D:06:C7:C3:EF
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/Po64WOYVOSGtsL9fC8lbTQbHw-8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328803
sbgp-ipAddrBlock: critical
IPv4:
102.215.20.0/22
102.220.232.0/22
IPv6:
2c0f:1480::/32
Signature Algorithm: sha256WithRSAEncryption
6b:c6:4a:a5:29:c5:55:a7:68:18:e6:e9:19:5e:9e:b2:81:6d:
2d:86:03:fc:83:41:75:4a:01:62:70:66:a6:bb:5c:e5:c9:35:
ac:33:bf:d4:d0:9f:a5:46:6d:62:ca:49:8f:f2:88:cb:1b:72:
78:34:a0:81:d7:6a:02:c4:54:a8:67:bf:aa:d1:a0:15:d1:20:
2e:84:70:27:96:49:cc:c5:be:53:69:9c:21:7e:ed:f0:f2:3c:
09:23:86:f2:dd:30:d8:32:a4:18:4d:c2:14:a3:da:7f:d4:63:
12:22:8d:9d:78:70:ab:ea:48:ac:1a:1b:2d:bb:80:90:cb:c5:
c2:94:ed:d9:64:0b:b5:eb:af:4a:82:08:58:4b:db:0b:f6:07:
a0:78:00:f4:08:4d:dd:d0:6d:8e:c3:40:c2:d9:1a:aa:c2:ff:
a6:b5:f7:e1:f7:b7:5e:c7:b0:77:8a:2a:0f:3a:10:2c:90:e6:
11:0b:65:c3:51:cb:32:f8:50:41:b7:e1:04:35:0e:76:cb:e4:
f3:59:d1:8c:af:a2:84:02:d5:22:2c:20:75:f7:28:69:92:7a:
8e:8b:46:13:eb:9c:10:97:b8:01:c0:18:02:83:0d:4a:5e:02:
a1:34:f8:3e:92:df:db:fb:70:d9:cf:50:32:69:84:c8:21:da:
dc:a1:b7:3e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 20 08:13:12 2024 by rpki-client on console-fra.rpki-client.org