Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/XK2jLPsAGrpuTJ9SE9kodlsVozc.cer
File: XK2jLPsAGrpuTJ9SE9kodlsVozc.cer (raw, json)
Hash identifier: 1K2XmUHOXgbR65IxF8WZstVfh87Gj9bEu2jmMeDtopQ=
Subject key identifier: 5C:AD:A3:2C:FB:00:1A:BA:6E:4C:9F:52:13:D9:28:76:5B:15:A3:37
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2649
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 03:03:59 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 196.250.252.0/22
IP: 196.251.252.0/22
IP: 2001:43f8:e00::/40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Apr 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9801 (0x2649)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 03:03:59 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F368588EAF/serialNumber=5CADA32CFB001ABA6E4C9F5213D928765B15A337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8c:c9:eb:4b:cc:ae:52:e0:79:bd:c5:ac:dc:
d8:a0:e2:47:b7:b7:ff:cb:b4:e4:31:0f:56:07:ac:
92:44:6b:83:3b:d3:aa:7d:ea:06:8f:5f:7e:93:31:
9b:69:1a:2e:47:51:54:bf:09:06:6d:80:e0:ab:ab:
fa:8f:fb:8d:76:be:2e:10:44:9f:c1:e5:52:9e:8b:
f7:44:70:ad:4a:c0:78:e7:6f:c3:03:54:19:1b:91:
a2:53:84:5e:0c:90:14:10:a4:ba:d6:f1:00:92:fe:
e9:2c:85:57:09:05:35:03:87:ff:13:b0:dd:eb:7a:
be:a6:08:a1:be:00:cb:18:b0:88:80:36:24:5e:ac:
f6:e5:18:b1:53:68:5b:e4:30:94:cf:b7:6d:db:d8:
3a:e6:9d:94:b7:82:81:16:4d:f1:db:5d:e8:f8:2b:
b7:47:e6:da:66:13:e5:b1:fa:6f:3b:ab:54:38:fd:
0f:fd:fd:5c:c9:39:9b:ad:25:3c:67:b2:d0:db:10:
34:ed:0e:9d:35:b6:13:41:83:d0:e6:b1:51:c2:85:
8b:62:88:c2:3e:fb:8b:c1:cd:ff:b8:72:0c:39:15:
b8:7b:9a:bb:5e:f2:a8:92:be:4f:b8:a3:fd:0e:6a:
e8:b3:ff:c3:3b:af:49:0d:a1:75:f7:47:5e:76:49:
36:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:AD:A3:2C:FB:00:1A:BA:6E:4C:9F:52:13:D9:28:76:5B:15:A3:37
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/A3823956CB2F11E9890D1B27F8AEA228/XK2jLPsAGrpuTJ9SE9kodlsVozc.mft
sbgp-ipAddrBlock: critical
IPv4:
196.250.252.0/22
196.251.252.0/22
IPv6:
2001:43f8:e00::/40
Signature Algorithm: sha256WithRSAEncryption
60:47:42:58:b0:6d:43:66:64:ef:90:31:3f:45:29:21:90:0a:
f7:95:17:cd:27:fc:d7:85:1a:f1:4d:b4:b0:60:7c:8b:1e:df:
16:06:4b:03:f2:c9:e6:a9:31:0d:a1:a8:49:ce:6f:f6:99:87:
9f:6d:a4:06:db:f4:28:b5:cd:d0:38:57:7c:6f:86:23:b1:80:
bb:88:3e:3c:2a:af:13:ca:2f:e7:4e:30:ad:91:c4:89:f1:45:
4a:a0:c2:b5:43:b8:3d:e6:97:29:11:9b:a0:12:2b:11:13:36:
ae:0d:cd:81:62:b6:b3:b5:fa:45:55:4b:e3:d3:bc:26:8c:46:
11:92:c8:00:9f:5f:e9:b0:70:1d:58:8b:7c:73:3a:d1:17:74:
73:7e:7a:78:bd:da:e6:34:d8:b5:5d:11:ac:d5:f9:b5:d5:fc:
5c:7d:89:4b:0f:cb:ac:80:89:f7:c4:df:02:83:81:f7:b9:d9:
12:2e:db:69:5e:85:08:c1:74:9f:b0:0e:88:4a:06:d2:50:0d:
2b:aa:f6:45:ce:ae:5c:e5:31:f8:54:f2:54:77:0d:1f:f2:4d:
fd:de:18:58:a0:71:6a:69:dd:35:29:d6:50:8f:b7:95:80:c2:
36:a0:df:d0:86:8f:17:db:5f:65:2f:00:40:12:05:99:90:23:
f0:b0:c5:55
-----BEGIN CERTIFICATE-----
MIIGEDCCBPigAwIBAgICJkkwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNDAxMDEwMzAzNTlaFw0yNTAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjg1ODhFQUYxMTAvBgNVBAUTKDVDQURBMzJDRkIwMDFBQkE2RTRDOUY1
MjEzRDkyODc2NUIxNUEzMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDhjMnrS8yuUuB5vcWs3Nig4ke3t//LtOQxD1YHrJJEa4M706p96gaPX36TMZtp
Gi5HUVS/CQZtgOCrq/qP+412vi4QRJ/B5VKei/dEcK1KwHjnb8MDVBkbkaJThF4M
kBQQpLrW8QCS/ukshVcJBTUDh/8TsN3rer6mCKG+AMsYsIiANiRerPblGLFTaFvk
MJTPt23b2DrmnZS3goEWTfHbXej4K7dH5tpmE+Wx+m87q1Q4/Q/9/VzJOZutJTxn
stDbEDTtDp01thNBg9DmsVHChYtiiMI++4vBzf+4cgw5Fbh7mrte8qiSvk+4o/0O
auiz/8M7r0kNoXX3R152STYhAgMBAAGjggMFMIIDATAdBgNVHQ4EFgQUXK2jLPsA
GrpuTJ9SE9kodlsVozcwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY4NTg4RS9BMzgyMzk1NkNCMkYx
MUU5ODkwRDFCMjdGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2ODU4OEUvQTM4MjM5NTZDQjJGMTFFOTg5MEQxQjI3RjhBRUEyMjgvWEsyakxQ
c0FHcnB1VEo5U0U5a29kbHNWb3pjLm1mdDA1BggrBgEFBQcBBwEB/wQmMCQwEgQC
AAEwDAMEAsT6/AMEAsT7/DAOBAIAAjAIAwYAIAFD+A4wDQYJKoZIhvcNAQELBQAD
ggEBAGBHQliwbUNmZO+QMT9FKSGQCveVF80n/NeFGvFNtLBgfIse3xYGSwPyyeap
MQ2hqEnOb/aZh59tpAbb9Ci1zdA4V3xvhiOxgLuIPjwqrxPKL+dOMK2RxInxRUqg
wrVDuD3mlykRm6ASKxETNq4NzYFitrO1+kVVS+PTvCaMRhGSyACfX+mwcB1Yi3xz
OtEXdHN+eni92uY02LVdEazV+bXV/Fx9iUsPy6yAiffE3wKDgfe52RIu22lehQjB
dJ+wDohKBtJQDSuq9kXOrlzlMfhU8lR3DR/yTf3eGFigcWpp3TUp1lCPt5WAwjag
39CGjxfbX2UvAEASBZmQI/CwxVU=
-----END CERTIFICATE-----
Generated at Thu Apr 18 00:47:05 2024 by rpki-client on console-fra.rpki-client.org