Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Poh-hWgUgzFB-ND2ZKyvbEowXUM.cer
File: Poh-hWgUgzFB-ND2ZKyvbEowXUM.cer (raw, json)
Hash identifier: no1WsfqTCV21w7dYaWVGcov3Wrxpqx7VRnvcFlkGijE=
Subject key identifier: 3E:88:7E:85:68:14:83:31:41:F8:D0:F6:64:AC:AF:6C:4A:30:5D:43
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2882
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/Poh-hWgUgzFB-ND2ZKyvbEowXUM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:30:21 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328242
IP: 102.23.168.0/21
IP: 154.115.156.0/22
IP: 2c0f:f1f0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10370 (0x2882)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 04:30:21 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36F18B8AF/serialNumber=3E887E856814833141F8D0F664ACAF6C4A305D43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:1e:e4:6f:9e:3d:d3:fc:d0:a7:33:32:77:74:
08:2b:8d:ea:21:a1:15:ee:85:a2:9d:ef:db:a3:64:
1d:ee:c3:3b:e6:c0:cd:1d:ff:65:75:45:84:a4:27:
d5:a1:c6:cf:b1:9b:95:6d:77:12:63:7e:ec:da:02:
9a:43:ef:2a:b2:9c:d1:f2:6b:e3:b4:24:8b:6e:c0:
59:cf:e6:5d:be:76:62:23:1e:21:e5:c3:f8:45:90:
17:93:6e:ca:e8:bf:6e:48:c0:b9:86:17:75:72:a8:
5c:aa:d0:e6:b6:0f:a7:28:2b:9c:57:89:b8:50:cb:
ed:d2:9c:3d:39:3e:7b:e7:c8:ba:2a:38:f9:a2:d5:
a3:b1:5e:a7:b4:23:4d:49:cc:0d:41:95:8e:19:ea:
75:90:a5:06:28:40:a9:23:bf:3c:38:75:f9:9f:0a:
0b:63:f5:c4:ae:f3:ef:c9:cd:db:cc:f0:4b:c9:c5:
80:47:23:ea:b4:06:04:ff:ea:30:b8:0a:6c:cc:bc:
37:a7:55:0f:a1:c1:5b:85:0c:d8:af:7e:43:0e:38:
f0:9e:c0:a7:a2:df:9b:a8:06:1d:d1:76:cd:7c:ae:
4b:5a:58:fb:12:55:65:86:c4:0d:5c:7d:da:f3:86:
6b:46:88:19:6d:d8:c8:d3:de:42:23:01:ed:4e:2f:
09:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:88:7E:85:68:14:83:31:41:F8:D0:F6:64:AC:AF:6C:4A:30:5D:43
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/Poh-hWgUgzFB-ND2ZKyvbEowXUM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328242
sbgp-ipAddrBlock: critical
IPv4:
102.23.168.0/21
154.115.156.0/22
IPv6:
2c0f:f1f0::/32
Signature Algorithm: sha256WithRSAEncryption
82:8e:01:fa:65:50:57:58:e3:2d:83:15:70:1a:05:31:81:e9:
a3:13:4a:da:01:75:00:e2:1e:18:8a:14:f8:eb:9e:1b:71:f7:
51:c7:85:b9:17:06:08:a0:b4:83:62:37:4a:3f:72:e5:99:9e:
e0:52:1c:13:d0:d7:05:bc:e5:1f:fd:70:c5:ed:8d:2f:e1:f9:
1a:5a:02:3a:aa:2f:60:f3:12:3e:90:af:aa:4b:2d:ff:30:d4:
ac:51:70:dd:9f:1c:13:e5:6a:9e:7e:fe:2b:c7:47:2a:f0:62:
5f:9a:0b:d7:4c:ca:4f:fe:91:7c:89:a6:96:55:17:b4:18:b4:
af:b2:14:f5:05:dc:fa:ee:cd:1c:7e:59:2c:28:db:63:9e:0f:
73:56:7b:24:e0:b8:6f:50:83:a8:3a:5f:67:ae:e6:38:4c:34:
3f:2e:77:68:42:37:f1:af:07:fe:b8:8e:64:43:02:54:90:c7:
d6:bf:ba:09:ef:1e:c3:e8:6c:97:59:0a:a7:29:7e:b0:95:9e:
c7:0e:8a:88:23:49:09:80:e7:2d:92:bd:4f:c4:95:c7:21:33:
79:1e:73:93:c8:af:67:ce:12:39:da:68:cd:2b:f3:cb:77:ad:
25:2a:a8:e0:4c:f6:7d:90:05:3e:55:b0:5f:50:13:8b:03:fb:
b7:8d:d1:d5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:22 2024 by rpki-client on console-ams.rpki-client.org