Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer
File: U3XPTKFkOwjDQb2nnYvhBb3DxIs.cer (raw, json)
Hash identifier: XzN6Wbf0H0sFr8MFtXURgH0rV3A3MVo8woKC/+pATqA=
Subject key identifier: 53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 269B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 03:16:11 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 25818
AS: 37072
IP: 41.202.32.0/19
IP: 102.64.96.0/20
IP: 102.177.112.0/20
IP: 196.1.144.0/20
IP: 196.32.8.0/21
IP: 197.231.160.0/21
IP: 2001:4210::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9883 (0x269b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 03:16:11 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F3696E5FAF/serialNumber=5375CF4CA1643B08C341BDA79D8BE105BDC3C48B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cc:04:05:94:70:26:00:51:ec:dc:f1:bb:35:
c7:20:ef:f0:75:9f:9d:6a:8c:6d:08:43:f0:51:46:
c1:f5:1b:59:3c:a1:f7:a3:53:be:d8:02:d9:03:ad:
96:34:27:67:05:34:1a:f7:27:07:8c:56:da:1c:00:
82:10:95:0f:d7:69:01:f7:9f:11:e1:1b:90:27:31:
b8:ec:e2:49:31:0c:f4:9c:55:c2:32:b5:a7:57:38:
9a:74:e4:cc:f9:8c:c4:dd:e2:b2:a7:66:e0:b0:28:
46:aa:30:d8:0a:b2:8b:fe:b1:2e:27:05:26:86:bb:
58:1f:7b:fc:3a:71:47:bc:4f:78:55:e0:94:c6:af:
b3:49:21:84:ff:7d:1c:f1:0b:d0:4d:5d:8e:97:91:
d2:7b:b6:e7:ec:88:06:3e:50:73:75:ae:c1:fa:b3:
33:96:a8:9c:82:2e:b8:5d:64:47:9b:f9:3d:84:5d:
6b:12:89:26:aa:a8:df:cc:c1:05:3c:c5:7d:db:fa:
79:1c:44:51:c3:10:4e:8a:98:f3:30:b6:61:53:88:
68:0c:15:f9:9e:89:8c:6f:2a:63:10:1c:f6:56:30:
08:47:70:c5:48:9d:c2:6a:7a:bc:6d:2f:12:13:02:
04:18:b5:6d:65:16:d7:ff:4d:87:1b:cd:7f:05:2c:
a5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:75:CF:4C:A1:64:3B:08:C3:41:BD:A7:9D:8B:E1:05:BD:C3:C4:8B
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3696E5F/3DA3D320189711ED8C936BD2F1222468/U3XPTKFkOwjDQb2nnYvhBb3DxIs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25818
37072
sbgp-ipAddrBlock: critical
IPv4:
41.202.32.0/19
102.64.96.0/20
102.177.112.0/20
196.1.144.0/20
196.32.8.0/21
197.231.160.0/21
IPv6:
2001:4210::/32
Signature Algorithm: sha256WithRSAEncryption
16:88:78:f0:47:68:3c:68:45:b0:06:ed:a5:c1:3d:ae:89:ff:
86:ae:f4:4b:65:ca:71:32:00:45:56:66:47:a7:43:b7:4a:f4:
dd:3c:96:b6:f9:b2:46:e3:d3:42:b3:c6:0a:8f:5c:15:61:0e:
75:f1:db:03:84:8b:a9:8c:b4:95:32:78:84:d5:b0:90:46:09:
65:2d:d2:b1:7e:37:4b:e4:4b:7f:cd:9b:12:c2:59:ad:fa:0b:
52:fd:77:22:f8:59:c9:37:7e:11:a7:4d:33:25:ca:4c:f6:ce:
77:a9:8a:53:64:68:21:c6:99:fc:5a:86:b1:b9:90:f7:c9:dc:
64:44:61:f9:88:f3:6e:20:4b:e8:bc:49:43:f6:8e:f9:76:bb:
27:1c:6b:bd:48:38:6d:94:66:c8:aa:b3:7b:63:9a:08:17:18:
e7:4e:4c:ae:f6:2b:29:17:96:e0:3e:c5:79:0e:46:7e:60:54:
2f:97:0c:99:aa:39:69:2d:6b:01:d0:1c:e8:13:28:0d:48:21:
9f:e8:64:ed:85:85:37:41:d6:6d:c2:43:db:97:0b:35:86:6b:
93:06:81:3c:1b:06:61:e7:98:0a:90:03:6d:ed:69:3c:2a:48:
57:00:03:b5:98:1b:6f:c3:d9:12:b2:b3:f6:1a:9f:49:c4:5e:
af:5a:47:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:22 2024 by rpki-client on console-ams.rpki-client.org