Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/lHgxWh5cVhWpIou-ykijlocLhH4.cer
File: lHgxWh5cVhWpIou-ykijlocLhH4.cer (raw, json)
Hash identifier: SuRLH76FcSSuhNaj90VcVKOcc8qXm4eXylnb5gTiSNY=
Subject key identifier: 94:78:31:5A:1E:5C:56:15:A9:22:8B:BE:CA:48:A3:96:87:0B:84:7E
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 26D7
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F369F2FA/69B05CBABB0C11ECA7DC65BB5A40D577/lHgxWh5cVhWpIou-ykijlocLhH4.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F369F2FA/69B05CBABB0C11ECA7DC65BB5A40D577/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 03:25:09 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 22750
AS: 37310
IP: 41.66.64.0/18
IP: 196.1.101.0 -- 196.1.102.255
IP: 196.44.64.0/19
IP: 196.44.224.0/20
IP: 197.211.128.0/18
IP: 2c0f:fc68::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9943 (0x26d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 03:25:09 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F369F2FAAF/serialNumber=9478315A1E5C5615A9228BBECA48A396870B847E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:46:ac:3f:c8:99:08:16:f1:0b:2a:70:dd:8a:
a2:e9:a3:a2:33:72:b7:02:79:7b:48:3f:71:35:b1:
72:4b:03:a5:1b:6e:8d:33:7e:5c:fc:22:fb:44:b3:
59:ce:3b:9a:50:f2:31:b9:5d:37:08:8c:28:4d:82:
c2:8e:fa:30:5b:c3:52:1d:50:a9:ef:0e:ce:b8:90:
45:5e:9a:2f:9b:00:b7:7f:6a:4c:cf:b4:c0:3c:a7:
ad:d9:e4:dd:18:8c:bf:34:65:8e:d4:cb:d8:96:3a:
c2:db:c3:c0:4a:88:fa:de:4c:96:53:c6:09:4b:92:
38:70:24:e1:d5:f8:59:6d:bb:79:3a:fa:1f:39:93:
66:61:a6:d7:4a:1c:8d:08:f6:4c:77:b3:0e:a1:9c:
94:87:cc:f4:77:ed:9d:0d:96:5e:f8:7d:e2:48:b8:
24:8f:44:db:72:7b:f2:bb:25:d3:63:eb:dd:a9:50:
12:53:cb:c7:c7:68:2c:8d:57:61:b7:66:3a:a1:8d:
32:6f:00:ab:3c:a9:32:ea:db:40:fc:84:95:a5:8c:
91:36:c3:01:e1:d5:f9:fa:be:6d:71:e8:a5:38:4b:
43:fd:0d:14:6d:03:9c:d5:99:20:e9:7d:a6:fc:4e:
5b:73:cd:e7:a0:89:06:6a:61:fd:e0:88:db:69:03:
27:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:78:31:5A:1E:5C:56:15:A9:22:8B:BE:CA:48:A3:96:87:0B:84:7E
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F369F2FA/69B05CBABB0C11ECA7DC65BB5A40D577/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F369F2FA/69B05CBABB0C11ECA7DC65BB5A40D577/lHgxWh5cVhWpIou-ykijlocLhH4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
22750
37310
sbgp-ipAddrBlock: critical
IPv4:
41.66.64.0/18
196.1.101.0-196.1.102.255
196.44.64.0/19
196.44.224.0/20
197.211.128.0/18
IPv6:
2c0f:fc68::/32
Signature Algorithm: sha256WithRSAEncryption
34:e1:93:21:a8:1f:c8:31:20:cd:3d:65:c9:0d:81:2a:25:b3:
70:f6:9c:aa:86:32:19:fd:5c:de:5d:43:b1:7a:00:5a:ee:a7:
b3:95:77:6d:a9:0d:d1:f8:0a:07:5b:43:07:ff:a4:f9:cb:b8:
ac:a8:42:c3:f4:92:94:ad:c0:31:8e:26:50:59:6b:37:69:eb:
16:d6:d8:f2:7f:ca:5d:50:91:28:ea:b1:1c:71:fc:d3:8f:2b:
27:75:90:81:ac:88:fd:4e:71:f1:7b:6f:df:4e:46:27:82:a4:
fd:59:2e:5d:f1:8f:f1:1c:dd:d9:f5:92:8a:08:de:46:85:b7:
23:7e:18:3d:a3:93:9e:af:09:dc:bd:49:1c:3f:68:17:6a:20:
1e:96:be:de:b5:55:f8:ae:3f:d6:ab:c7:ee:05:f3:12:d2:73:
25:51:c6:24:f8:32:68:c9:32:42:52:f9:30:8d:94:25:e3:6d:
b0:7d:62:fd:43:71:c1:51:56:b3:b4:63:9a:0f:3f:67:19:a9:
53:7e:54:50:13:69:d0:02:88:83:c8:f6:f4:41:dd:c9:04:0e:
04:41:c0:42:e5:77:4d:0c:41:c8:48:37:79:b8:e8:d1:89:b4:
75:83:e2:da:6d:be:0f:96:a4:0d:88:57:38:15:7e:ea:3f:a3:
0a:6c:cc:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:32 2024 by rpki-client on console-fra.rpki-client.org