Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/_VmsIHc1mw1yPSCqmZqOFqhLQZM.cer
File: _VmsIHc1mw1yPSCqmZqOFqhLQZM.cer (raw, json)
Hash identifier: YhxfrgGfcbs3uPsxk6i0IHEGuJR7nBbVodL94ITow0Q=
Subject key identifier: FD:59:AC:20:77:35:9B:0D:72:3D:20:AA:99:9A:8E:16:A8:4B:41:93
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2749
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36B49FA/A255919C1C1C11E6BA1E5C0CF8AEA228/_VmsIHc1mw1yPSCqmZqOFqhLQZM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36B49FA/A255919C1C1C11E6BA1E5C0CF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 03:42:43 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 37728
AS: 329003
IP: 41.32.0.0/12
IP: 41.232.0.0/13
IP: 102.40.0.0/13
IP: 154.176.0.0/12
IP: 196.49.86.0/24
IP: 196.60.86.0/24
IP: 196.202.0.0/17
IP: 196.218.0.0/15
IP: 197.32.0.0/11
IP: 2001:4388::/32
IP: 2001:43f8:40::/47
IP: 2c0f:7b00::/28
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10057 (0x2749)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 03:42:43 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36B49FAAF/serialNumber=FD59AC2077359B0D723D20AA999A8E16A84B4193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f3:53:28:ee:6a:fe:ca:cb:3a:44:20:3e:42:
cf:21:eb:a5:17:f3:16:84:31:e2:77:79:dd:50:bf:
cb:f9:df:42:1f:61:3f:bc:8d:a5:f6:d1:c7:87:cf:
a9:85:a8:a9:ce:f7:d2:19:b8:c4:79:50:44:68:f0:
4b:98:79:9f:e1:1e:2f:8b:c7:50:a1:4a:e0:fd:7a:
aa:fa:af:a3:e1:4c:08:6c:a4:24:74:3b:99:12:ff:
bb:81:c0:bb:61:85:b8:b2:75:cb:8e:74:ea:e8:66:
01:d1:14:2f:5e:77:22:b6:84:8c:62:c1:2b:b4:f3:
c7:6c:6e:b9:ee:d9:a0:3b:ab:d3:ae:95:3d:c4:fb:
82:59:64:d4:bd:a9:8a:d3:4c:db:e8:26:bf:ba:dd:
92:21:06:54:7c:83:63:58:6d:5b:1b:34:5a:ed:3f:
c7:f9:08:2b:8c:53:61:4a:93:f0:9a:3e:dc:aa:10:
bb:b7:4f:12:e2:04:13:2b:be:a3:ac:12:6d:7d:9c:
7c:7a:52:89:be:fe:95:b8:d9:e3:0b:9a:f6:f3:83:
da:eb:cc:b2:60:d2:3b:7b:56:46:24:4c:e4:33:4d:
49:dc:54:77:1b:fb:2e:eb:f3:62:0c:95:e7:0d:5f:
8c:23:d1:36:16:ec:ef:3e:2c:89:41:42:da:75:c5:
06:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:59:AC:20:77:35:9B:0D:72:3D:20:AA:99:9A:8E:16:A8:4B:41:93
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B49FA/A255919C1C1C11E6BA1E5C0CF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B49FA/A255919C1C1C11E6BA1E5C0CF8AEA228/_VmsIHc1mw1yPSCqmZqOFqhLQZM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37728
329003
sbgp-ipAddrBlock: critical
IPv4:
41.32.0.0/12
41.232.0.0/13
102.40.0.0/13
154.176.0.0/12
196.49.86.0/24
196.60.86.0/24
196.202.0.0/17
196.218.0.0/15
197.32.0.0/11
IPv6:
2001:4388::/32
2001:43f8:40::/47
2c0f:7b00::/28
Signature Algorithm: sha256WithRSAEncryption
a0:8d:8b:c0:85:23:5d:3a:59:b5:92:21:3f:ed:20:a5:73:b5:
a1:be:ff:b9:8d:1b:e6:79:7c:5d:c6:ff:4a:5a:c7:c0:5f:b8:
86:7c:19:09:0b:7e:69:bc:71:b5:f6:63:31:52:33:96:e3:2a:
ca:9d:56:a9:e5:99:78:ac:39:e7:36:04:77:32:8a:2f:19:13:
75:55:1d:da:6e:6b:f9:0b:6a:18:97:89:73:18:0e:aa:e0:bb:
17:61:8b:15:2b:8c:2f:bc:9f:ec:1a:b4:cc:64:b8:f2:dc:18:
a6:61:af:2a:06:25:07:89:e6:49:8b:ba:14:7c:93:b8:a0:41:
12:5a:52:8c:29:8f:8a:62:ca:4c:97:2b:79:35:bc:0f:60:8e:
eb:90:a1:67:a1:ec:cc:d5:20:92:07:d5:57:ae:fe:c0:65:24:
b0:5b:f9:13:5d:c8:ec:74:96:26:2c:b6:a3:58:9e:6e:fc:8c:
cd:04:7a:44:11:97:4a:f4:01:07:03:a0:7a:bd:53:26:60:eb:
b6:ea:bd:56:56:a8:49:62:87:f2:50:b9:20:3b:54:57:4f:97:
59:52:58:33:70:11:09:ff:b6:89:54:12:7b:13:9c:1c:e4:b8:
72:d7:96:4f:2e:e1:77:3c:5a:94:d5:0e:92:13:0e:b1:d9:3f:
5f:5a:6f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:22 2024 by rpki-client on console-ams.rpki-client.org