Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/_Y4EWISxZp69QwrlZnIdl0BKbOg.cer
File: _Y4EWISxZp69QwrlZnIdl0BKbOg.cer (raw, json)
Hash identifier: D/ibAYyOtfEG+Y3otFh9PDAsqwhdioy2edfc/jCK7Yg=
Subject key identifier: FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2833
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:18:31 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 327733
IP: 102.23.92.0/22
IP: 102.212.48.0/22
IP: 102.216.160.0/22
IP: 154.72.8.0/22
IP: 2c0f:ea00::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10291 (0x2833)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 04:18:31 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36E373DAF/serialNumber=FD8E045884B1669EBD430AE566721D97404A6CE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6a:b2:22:0e:71:c0:08:d5:59:04:e7:a4:45:
4a:e5:bd:de:f6:75:b1:ea:55:c5:a7:08:54:e6:bb:
c7:98:0d:33:fa:75:89:36:3f:df:86:fc:c5:71:1f:
0f:71:fb:8b:e6:67:bf:c9:e0:d7:cd:99:e8:f7:02:
51:3f:97:5b:23:90:f7:69:52:f6:30:8d:ac:88:1f:
fc:3b:64:77:5c:0b:97:2f:2e:aa:8a:3e:37:82:bc:
f6:0c:98:68:c8:98:43:31:ac:b1:30:d1:e0:87:e7:
8c:48:77:25:33:df:0c:39:13:fa:94:bc:d7:46:06:
3e:5c:af:3a:2f:9d:39:38:f6:82:96:10:2e:b0:82:
72:6f:14:70:55:95:af:3a:20:72:27:30:d7:f0:78:
a5:4e:e2:75:e8:7f:29:94:ba:b9:e5:5a:5b:16:ef:
1a:75:e4:70:62:ab:f2:86:fe:c4:b1:c9:ca:7c:27:
67:4d:b4:fb:43:b6:a0:15:e5:6f:4d:44:d2:ba:da:
e5:82:f4:49:c7:2c:51:fa:a3:d3:ed:1a:11:1e:00:
10:1d:61:b2:f8:48:13:2b:9b:4c:21:2d:58:0a:82:
d3:0d:f5:4f:ad:62:b5:c8:97:13:95:82:a4:fc:18:
a4:fe:38:1e:d4:19:e3:fe:4c:d8:7b:44:de:e4:08:
8a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8E:04:58:84:B1:66:9E:BD:43:0A:E5:66:72:1D:97:40:4A:6C:E8
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/4D22ACD68B7311E9A49A4368F8AEA228/_Y4EWISxZp69QwrlZnIdl0BKbOg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327733
sbgp-ipAddrBlock: critical
IPv4:
102.23.92.0/22
102.212.48.0/22
102.216.160.0/22
154.72.8.0/22
IPv6:
2c0f:ea00::/32
Signature Algorithm: sha256WithRSAEncryption
8d:a8:c7:f3:10:f5:1e:e7:99:38:5f:49:51:8b:c8:c7:5e:3c:
e3:5b:56:c1:5c:36:a9:29:8b:ce:f1:f5:48:a7:d9:7d:2f:3f:
58:d3:cc:7d:1c:c5:1e:f4:a7:8d:9e:38:98:3c:31:f3:28:73:
c3:ad:02:13:ce:bf:95:35:a2:b9:d0:b2:f9:cf:75:ea:73:9b:
68:d6:b3:82:aa:f6:15:14:10:4f:87:08:d5:c7:1d:77:cd:36:
ce:e7:07:97:77:d9:6e:ca:a4:00:aa:31:0b:34:b0:9b:69:49:
44:90:cc:08:05:c1:34:cf:a1:a7:8e:9f:ad:68:ea:d6:be:8a:
7d:5b:49:fe:80:b2:1b:3c:f4:08:fe:79:7f:ff:7c:c2:15:5f:
c5:0e:5d:10:4b:32:ea:1f:62:a6:1c:d8:2c:06:47:a9:e0:51:
c2:4f:3f:35:1b:30:3a:e9:a2:a1:a3:06:65:e0:1e:66:da:56:
41:5a:ed:14:fb:a1:1f:c4:3b:f4:14:cb:f7:bd:d2:78:d4:e9:
e8:79:d3:cb:e5:15:22:1b:50:45:11:34:24:80:87:35:f9:37:
31:a1:eb:01:0b:3b:88:40:3a:f1:84:48:21:52:4b:0e:85:72:
96:46:dc:7b:82:5d:ae:dc:e3:c4:bf:9a:aa:cd:20:10:ff:50:
f4:33:58:81
-----BEGIN CERTIFICATE-----
MIIGNzCCBR+gAwIBAgICKDMwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNDAxMDEwNDE4MzFaFw0yNTAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkUzNzNEQUYxMTAvBgNVBAUTKEZEOEUwNDU4ODRCMTY2OUVCRDQzMEFF
NTY2NzIxRDk3NDA0QTZDRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCearIiDnHACNVZBOekRUrlvd72dbHqVcWnCFTmu8eYDTP6dYk2P9+G/MVxHw9x
+4vmZ7/J4NfNmej3AlE/l1sjkPdpUvYwjayIH/w7ZHdcC5cvLqqKPjeCvPYMmGjI
mEMxrLEw0eCH54xIdyUz3ww5E/qUvNdGBj5crzovnTk49oKWEC6wgnJvFHBVla86
IHInMNfweKVO4nXofymUurnlWlsW7xp15HBiq/KG/sSxycp8J2dNtPtDtqAV5W9N
RNK62uWC9EnHLFH6o9PtGhEeABAdYbL4SBMrm0whLVgKgtMN9U+tYrXIlxOVgqT8
GKT+OB7UGeP+TNh7RN7kCIqtAgMBAAGjggMsMIIDKDAdBgNVHQ4EFgQU/Y4EWISx
Zp69QwrlZnIdl0BKbOgwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZFMzczRC80RDIyQUNENjhCNzMx
MUU5QTQ5QTQzNjhGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RTM3M0QvNEQyMkFDRDY4QjczMTFFOUE0OUE0MzY4RjhBRUEyMjgvX1k0RVdJ
U3hacDY5UXdybFpuSWRsMEJLYk9nLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFADUwQAYIKwYBBQUHAQcBAf8EMTAvMB4EAgABMBgDBAJmF1wDBAJm1DADBAJm
2KADBAKaSAgwDQQCAAIwBwMFACwP6gAwDQYJKoZIhvcNAQELBQADggEBAI2ox/MQ
9R7nmThfSVGLyMdePONbVsFcNqkpi87x9Uin2X0vP1jTzH0cxR70p42eOJg8MfMo
c8OtAhPOv5U1ornQsvnPdepzm2jWs4Kq9hUUEE+HCNXHHXfNNs7nB5d32W7KpACq
MQs0sJtpSUSQzAgFwTTPoaeOn61o6ta+in1bSf6Ashs89Aj+eX//fMIVX8UOXRBL
MuofYqYc2CwGR6ngUcJPPzUbMDrpoqGjBmXgHmbaVkFa7RT7oR/EO/QUy/e90njU
6eh508vlFSIbUEURNCSAhzX5NzGh6wELO4hAOvGESCFSSw6FcpZG3HuCXa7c48S/
mqrNIBD/UPQzWIE=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:32 2024 by rpki-client on console-fra.rpki-client.org