Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/nqwIPfzNKV1WFgVVs-q-bRV3CyA.cer
File: nqwIPfzNKV1WFgVVs-q-bRV3CyA.cer (raw, json)
Hash identifier: hKgYDEdvMOWOhWF7vzuG4wYgZK7pkCJJoo4cKzzzoMs=
Subject key identifier: 9E:AC:08:3D:FC:CD:29:5D:56:16:05:55:B3:EA:BE:6D:15:77:0B:20
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2C83
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3623AE4/C4005E32B27011EF82361D42762E951A/nqwIPfzNKV1WFgVVs-q-bRV3CyA.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3623AE4/C4005E32B27011EF82361D42762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 04 Dec 2024 18:51:36 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328237
IP: 2c0f:f1a8::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 31 Dec 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11395 (0x2c83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Dec 4 18:51:36 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F3623AE4AF/serialNumber=9EAC083DFCCD295D56160555B3EABE6D15770B20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9b:fa:f6:7a:31:6b:0e:65:e3:5e:94:81:ce:
78:37:69:4c:60:86:20:16:b1:49:c9:c2:fd:cb:a8:
4d:97:e0:81:90:c0:14:2c:ac:aa:11:91:01:44:06:
b5:b7:f6:ae:0a:39:fd:45:6c:41:12:7e:2e:a1:0b:
27:e9:40:d1:b1:19:5b:bf:d5:2d:5e:77:07:62:0b:
6b:68:ed:97:50:94:24:87:fa:df:b3:7c:af:fe:48:
b6:26:b2:b1:0b:12:ac:e4:f4:94:36:41:ff:9d:13:
09:17:91:3e:23:48:d0:a8:0c:f1:1c:11:fa:03:aa:
fa:0f:56:66:a7:2c:99:87:5e:5f:3a:71:27:68:62:
cc:86:2a:48:5b:8e:39:7a:e8:cf:3d:3f:2e:fd:dc:
a6:01:0a:f4:c5:a9:d6:42:9a:7a:13:34:b1:a6:e9:
3c:52:a3:81:be:6a:ce:42:6f:2f:6d:78:33:6b:e3:
52:84:ff:e7:15:41:28:bc:85:62:b1:71:c5:4b:7c:
81:eb:0e:3f:5a:36:81:7f:12:f2:18:1b:4d:cd:24:
b7:dd:0f:2b:e8:35:ff:69:27:8a:c8:e4:a6:7a:cd:
1b:d8:de:9c:2e:f0:25:04:63:e2:e5:6a:6d:4e:4b:
65:09:cb:d4:22:e2:45:90:be:f4:09:9d:ad:43:f3:
21:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:AC:08:3D:FC:CD:29:5D:56:16:05:55:B3:EA:BE:6D:15:77:0B:20
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3623AE4/C4005E32B27011EF82361D42762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3623AE4/C4005E32B27011EF82361D42762E951A/nqwIPfzNKV1WFgVVs-q-bRV3CyA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328237
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f1a8::/32
Signature Algorithm: sha256WithRSAEncryption
0d:ed:9d:35:b6:88:a1:35:a5:4b:fb:88:17:e0:1f:10:fb:8b:
2c:ee:70:2e:29:d6:6e:da:13:8f:4d:da:a8:44:cc:d7:05:23:
b2:e0:c0:e3:af:02:81:bf:e7:fe:35:6c:a1:a8:0d:d0:45:49:
61:40:52:43:95:a7:d7:10:16:a7:8d:47:55:42:05:f4:1a:33:
e0:66:39:55:4b:50:1e:0f:bf:bd:13:78:16:0c:43:a8:5a:dc:
e9:c0:8e:43:3b:d6:aa:db:fa:e7:18:cc:bf:dd:b7:4d:9d:82:
7e:01:e2:e4:6a:e8:e4:22:a2:1b:4b:17:d1:81:5d:9d:26:ff:
dd:ca:d6:90:97:d2:a1:d3:9e:cd:42:49:f1:ff:91:da:0e:62:
b6:bb:0d:4b:a0:78:eb:1b:55:b2:3a:9c:63:3d:db:82:79:ac:
63:37:54:e7:27:01:ef:b0:c4:2e:5f:f0:61:76:d3:3e:35:4e:
ce:57:52:a6:eb:80:3c:19:3d:7f:e0:ad:36:24:e5:8b:f6:55:
d4:28:bf:a7:f2:8f:e9:18:22:3e:8b:2e:1e:e6:c8:27:46:8c:
dc:c8:b9:7e:d5:03:cd:7b:3c:4a:22:76:e4:c2:f6:6b:7f:be:
8b:df:f0:0c:8d:a3:00:1f:01:4c:c7:14:ad:c1:c2:a7:b2:5a:
7e:7d:67:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Dec 29 01:10:51 2024 by rpki-client on console-fra.rpki-client.org