Certificate

$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/ZOSLdeIWdPhtTmtfQjaaenO-JUE.cer
File:                     ZOSLdeIWdPhtTmtfQjaaenO-JUE.cer (raw, json)
Hash identifier:          diAHRBzXCDjEeuHhhkJq/XFB4FFDO4jjBlpLS7kyHKA=
Subject key identifier:   64:E4:8B:75:E2:16:74:F8:6D:4E:6B:5F:42:36:9A:7A:73:BE:25:41
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer:       /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial:       29D9
Authority info access:    rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest:                 rsync://rpki.afrinic.net/repository/member_repository/F36E3530/64051F66FDAA11EEB8D47855017001B1/ZOSLdeIWdPhtTmtfQjaaenO-JUE.mft
caRepository:             rsync://rpki.afrinic.net/repository/member_repository/F36E3530/64051F66FDAA11EEB8D47855017001B1/
Notify URL:               https://rrdp.afrinic.net/notification.xml
Certificate not before:   Thu 18 Apr 2024 17:38:01 +0000
Certificate not after:    Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources:    AS: 328245
                          IP: 102.209.188.0/23
                          IP: 196.43.247.0/24
                          IP: 2001:43f8:3d0::/48

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Tue 26 Nov 2024 00:05:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10713 (0x29d9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
        Validity
            Not Before: Apr 18 17:38:01 2024 GMT
            Not After : Mar 31 00:00:00 2025 GMT
        Subject: CN=F36E3530AF/serialNumber=64E48B75E21674F86D4E6B5F42369A7A73BE2541
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:1c:10:3a:25:02:03:a0:4b:7a:1b:9c:79:17:
                    42:e2:d9:c2:c7:1c:4b:c1:a3:54:d9:2c:42:01:4b:
                    19:08:87:a8:90:40:40:14:c4:87:25:92:d7:05:37:
                    46:83:7b:94:ca:f4:2f:6a:78:4b:61:98:05:c1:a2:
                    6c:38:6d:c0:b5:7c:c5:3c:27:64:a3:ad:b7:3a:67:
                    17:99:16:85:79:67:5f:ad:3c:81:ea:8b:90:d4:f8:
                    d2:ed:2a:6c:bc:83:78:a3:49:c6:b4:8a:60:49:80:
                    d8:31:1f:cb:da:39:a8:c1:15:31:ea:f2:97:51:92:
                    ca:76:f6:82:ed:52:2e:2a:b6:8e:96:9c:97:38:39:
                    3f:13:87:c1:32:46:85:59:a4:df:bd:1f:81:11:cf:
                    8c:7e:51:79:bf:4b:56:24:c0:24:f3:50:f5:23:eb:
                    b8:c1:d3:0f:b2:79:7a:fc:51:14:64:7c:6b:6a:5e:
                    5c:fe:1d:90:cc:28:e9:8a:e7:1e:80:32:4c:09:4c:
                    e6:e9:9f:d5:11:35:86:24:7c:a2:07:88:e1:58:3b:
                    2c:a2:d5:14:0e:af:70:25:57:eb:9e:d5:ef:6d:18:
                    bc:1f:fb:af:48:0f:49:6e:b9:e4:74:eb:46:a0:1a:
                    7b:56:b5:9a:b9:85:82:c0:d9:54:d3:ac:4b:d8:c4:
                    5b:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:E4:8B:75:E2:16:74:F8:6D:4E:6B:5F:42:36:9A:7A:73:BE:25:41
            X509v3 Authority Key Identifier:
                keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3530/64051F66FDAA11EEB8D47855017001B1/
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
                RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E3530/64051F66FDAA11EEB8D47855017001B1/ZOSLdeIWdPhtTmtfQjaaenO-JUE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  328245

            sbgp-ipAddrBlock: critical
                IPv4:
                  102.209.188.0/23
                  196.43.247.0/24
                IPv6:
                  2001:43f8:3d0::/48

    Signature Algorithm: sha256WithRSAEncryption
         17:71:e2:88:07:02:e1:d0:96:b0:16:3c:61:c7:67:ed:88:6c:
         2f:a0:8b:4d:40:bb:f7:c7:54:9b:bc:87:bd:00:29:c2:bc:84:
         8c:d6:52:d0:5a:08:a6:0b:2b:79:31:97:bf:8b:de:32:2c:e2:
         1f:c4:c6:6d:04:09:a5:11:98:49:ee:1c:7d:db:28:60:ad:41:
         55:e8:0b:f3:cc:8c:bc:fe:98:07:f7:a3:25:38:ab:ad:96:de:
         33:cf:f6:c8:25:0a:b0:40:d7:12:8e:6c:7e:96:05:d1:22:46:
         8e:ee:6f:82:08:e3:73:65:85:bf:ea:09:2d:92:43:64:2f:8c:
         fe:16:81:ab:40:1f:9d:75:cb:1c:6f:b9:a4:10:75:a2:e5:3a:
         26:d3:26:bc:2a:af:b3:3c:4d:9b:1b:7d:28:31:cf:ef:59:7e:
         82:0c:37:7b:cd:2f:22:ee:aa:bf:48:65:88:1a:34:47:0c:8b:
         59:1b:05:0e:c5:49:df:84:ef:ca:d2:a3:39:98:c3:f0:a8:66:
         02:ad:67:7f:76:b2:02:f3:57:3c:dd:9f:7b:2b:a6:b5:09:4e:
         f4:21:a7:74:60:c3:80:2e:2d:24:c6:ca:77:c4:58:ef:ea:0f:
         28:eb:5b:52:65:54:af:62:48:69:36:48:b2:e1:cd:ef:1f:75:
         3d:47:bf:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 01:32:40 2024 by rpki-client on console-ams.rpki-client.org