Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/kXMyk_xjUK7funWpFv_0G1Fez0w.cer
File: kXMyk_xjUK7funWpFv_0G1Fez0w.cer (raw, json)
Hash identifier: Rp0lHaUaeudbVcwHttEUSPhw1rvuiFYnTkawvNCD+3s=
Subject key identifier: 91:73:32:93:FC:63:50:AE:DF:BA:75:A9:16:FF:F4:1B:51:5E:CF:4C
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2641
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3683A54/5C3677F21F7811EC9A12311AD8A014CE/kXMyk_xjUK7funWpFv_0G1Fez0w.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3683A54/5C3677F21F7811EC9A12311AD8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 03:02:53 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 102.218.108.0/22
IP: 2c0f:3d00::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 05:23:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9793 (0x2641)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 03:02:53 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F3683A54AF/serialNumber=91733293FC6350AEDFBA75A916FFF41B515ECF4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c7:00:44:9f:f9:e1:11:f6:70:e8:06:df:58:
28:56:34:d6:a6:ac:7e:f7:6d:6a:c3:d3:b1:bb:d1:
ea:07:a9:e0:d4:f5:57:f3:1f:48:70:8d:60:d9:19:
c9:e0:81:47:bc:f6:d8:43:fb:7a:6e:c6:68:21:2e:
dc:3b:8f:21:b5:2e:b5:5a:81:71:58:0a:bb:39:9b:
ed:da:d3:52:4c:25:44:a7:70:b9:10:63:f1:3a:86:
1a:ff:6d:ac:09:85:da:52:39:ee:78:ce:90:6d:ae:
8f:6f:44:4f:f2:56:f1:f4:7c:4b:2c:13:8e:af:e6:
de:6d:fb:3e:a2:bc:5b:ea:63:75:3e:71:e0:6c:4f:
b4:13:22:2c:09:9c:d6:10:3c:3c:e9:79:87:7b:1a:
72:4f:83:fd:48:22:4a:19:23:ef:fc:79:2c:b9:93:
ea:00:38:46:06:4e:23:f6:65:2e:64:d3:b4:91:02:
95:58:f4:83:72:03:8b:1e:86:5c:08:e8:7d:e7:d5:
08:8d:5a:bf:89:c4:56:16:36:44:80:7e:6d:ff:23:
a7:d0:f1:e8:3a:d9:94:89:72:2c:92:f9:6e:6c:7c:
d7:e2:df:36:5c:72:11:a2:0c:5f:d5:4b:3a:ff:7b:
e5:c2:8c:ff:2c:fc:cc:31:cd:a8:a9:ce:b8:d2:d2:
1e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:73:32:93:FC:63:50:AE:DF:BA:75:A9:16:FF:F4:1B:51:5E:CF:4C
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3683A54/5C3677F21F7811EC9A12311AD8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3683A54/5C3677F21F7811EC9A12311AD8A014CE/kXMyk_xjUK7funWpFv_0G1Fez0w.mft
sbgp-ipAddrBlock: critical
IPv4:
102.218.108.0/22
IPv6:
2c0f:3d00::/32
Signature Algorithm: sha256WithRSAEncryption
09:73:3c:07:8d:64:c9:f9:ce:44:84:2a:40:23:2b:ae:35:58:
c4:27:2d:71:4e:40:28:ea:d1:a6:5d:ae:b9:ee:f6:af:2b:de:
e2:09:44:f9:6d:3e:c7:5d:94:19:ac:2e:b1:33:a3:18:55:ac:
b0:bb:10:e0:20:3b:98:c0:f7:c0:57:c2:13:d0:28:bf:e9:d8:
73:b7:3b:a0:e6:08:da:f7:a1:e9:e9:93:3a:8a:72:5a:4c:84:
0a:0f:78:73:83:52:ed:bb:4c:22:72:72:de:5c:ef:2c:be:9b:
71:f4:10:22:cc:29:1f:c8:a8:0a:11:32:4d:39:7e:e1:6f:32:
cf:c7:75:42:0a:5f:10:53:ce:b2:e4:ac:96:1b:d2:82:81:fc:
26:b6:12:4e:da:2c:08:25:e9:75:7f:8c:9e:5e:75:76:30:db:
e7:a0:6e:dd:c2:6a:f3:61:95:ea:0c:e0:ca:41:35:e4:74:a0:
32:a5:ff:89:7a:ff:4d:fd:38:19:29:fb:32:c1:ec:cc:a8:b0:
91:58:46:83:18:1f:c7:60:29:a2:ab:b2:34:44:d7:e5:73:fe:
b4:da:80:5e:d0:21:33:53:08:6f:10:77:54:dd:cf:49:84:c6:
58:69:48:1a:39:f8:8f:5b:6b:52:e6:2a:41:2e:7b:54:90:7e:
3e:ba:03:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 06:38:23 2024 by rpki-client on console-fra.rpki-client.org