Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/rDTyPLJrGR-mwlc2ZqQWPdmGg4k.cer
File: rDTyPLJrGR-mwlc2ZqQWPdmGg4k.cer (raw, json)
Hash identifier: Q2VY62yfvQyu9QiaIkDSnnF4zLTiwOOqva8p4ye0bvE=
Subject key identifier: AC:34:F2:3C:B2:6B:19:1F:A6:C2:57:36:66:A4:16:3D:D9:86:83:89
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 283D
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E4353/8AE09C2C19F611EC96E1D276D8A014CE/rDTyPLJrGR-mwlc2ZqQWPdmGg4k.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E4353/8AE09C2C19F611EC96E1D276D8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:20:04 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 102.135.224.0/20
IP: 2c0f:6c00::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10301 (0x283d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 04:20:04 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36E4353AF/serialNumber=AC34F23CB26B191FA6C2573666A4163DD9868389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:a0:7c:45:b9:45:27:26:bb:f6:e9:95:71:81:
1f:d2:25:66:13:63:1d:57:de:bb:b7:f1:59:f8:4a:
1f:0f:d4:ba:b7:b1:74:7d:42:15:06:fa:6a:3f:f2:
43:9b:47:b8:83:a8:4b:0c:ec:45:04:24:ce:79:a5:
64:cd:40:f4:d8:de:20:83:96:e2:a0:c1:d6:d5:ff:
1d:5e:c3:fb:49:83:38:1c:1f:77:92:f0:7b:58:b0:
49:74:a3:c1:dd:78:1b:26:56:e6:0d:3f:f4:ca:00:
85:aa:0f:db:b0:bb:26:af:62:73:fd:41:02:98:8d:
48:6f:b6:1f:46:c3:fd:7c:a3:9e:69:e0:bf:c9:cc:
a2:8b:25:8a:86:e1:f6:16:9c:11:8e:a2:10:e9:8f:
a3:89:09:8e:d5:0a:9d:4b:a9:3c:bf:d7:c3:67:64:
b5:2a:30:2f:ec:66:f8:a9:05:59:7c:d9:4f:6a:cc:
a4:1c:ab:80:b8:8c:7d:d7:7e:bd:ed:92:24:94:35:
cd:72:de:6a:50:a8:4f:7a:d6:62:56:2d:6d:c6:9f:
a1:6b:99:85:c2:85:ab:26:d7:f3:c1:30:f6:cf:e7:
fd:4c:1f:dc:a4:e5:c9:60:ee:0b:19:d8:74:1a:75:
f1:20:ff:64:ce:7a:83:7e:2b:21:c4:c3:b9:4d:4a:
f3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:34:F2:3C:B2:6B:19:1F:A6:C2:57:36:66:A4:16:3D:D9:86:83:89
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4353/8AE09C2C19F611EC96E1D276D8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E4353/8AE09C2C19F611EC96E1D276D8A014CE/rDTyPLJrGR-mwlc2ZqQWPdmGg4k.mft
sbgp-ipAddrBlock: critical
IPv4:
102.135.224.0/20
IPv6:
2c0f:6c00::/32
Signature Algorithm: sha256WithRSAEncryption
c3:6a:03:15:ec:49:fd:18:4b:ca:45:c1:4e:43:5d:5f:c9:50:
37:25:a0:1c:c1:51:37:e0:a9:13:fa:05:6c:52:63:24:6b:f1:
39:78:26:8c:d3:21:66:cf:41:d9:0b:92:3f:8b:2d:db:60:21:
7a:9d:09:e8:54:47:10:27:3d:1d:e1:aa:51:0d:6b:40:44:41:
04:41:a5:35:54:73:7b:5e:1f:b8:91:ea:d2:21:09:6e:33:c3:
fd:08:ec:f6:dc:9b:7e:0e:13:de:57:c4:3e:0c:d8:9b:1b:e1:
3c:6a:6d:ee:07:bf:c5:ad:f3:03:4e:36:3f:7c:1b:4c:d0:c7:
27:e6:98:ad:4c:38:07:a0:84:a8:ce:a6:c1:36:e1:8e:93:a2:
d6:f7:dd:38:ba:72:9c:e3:8d:97:76:b5:b8:e2:11:fe:89:3e:
d1:83:d9:c0:1a:be:67:1b:bf:14:f6:27:c5:bb:25:2a:44:a6:
61:73:68:11:e7:07:b9:02:24:a9:7e:cd:a8:aa:30:b8:f6:e5:
78:d5:51:41:15:ba:be:1e:6f:ed:ce:23:3e:c8:cf:c0:bf:9c:
e8:dd:17:c7:84:b9:4a:8e:31:47:99:29:4f:89:53:c9:51:69:
d6:71:b1:61:94:e7:31:58:ee:4f:1c:80:7c:cc:fd:b9:33:07:
85:7f:6e:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:32 2024 by rpki-client on console-fra.rpki-client.org