Certificate

$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/sbo9fH2OzVEf2kvw7Cn2qZssMbs.cer
File:                     sbo9fH2OzVEf2kvw7Cn2qZssMbs.cer (raw, json)
Hash identifier:          z6cNuFPYrX0+G6ulIQKXq+nEmGCAmTAmVixGYkJy9RI=
Subject key identifier:   B1:BA:3D:7C:7D:8E:CD:51:1F:DA:4B:F0:EC:29:F6:A9:9B:2C:31:BB
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer:       /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial:       2A2C
Authority info access:    rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest:                 rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/sbo9fH2OzVEf2kvw7Cn2qZssMbs.mft
caRepository:             rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/
Notify URL:               https://rrdp.afrinic.net/notification.xml
Certificate not before:   Thu 23 May 2024 17:24:17 +0000
Certificate not after:    Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources:    AS: 37381
                          IP: 102.223.28.0/22
                          IP: 197.159.192.0/19
                          IP: 2c0f:f5d8::/32

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Sat 23 Nov 2024 08:48:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10796 (0x2a2c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
        Validity
            Not Before: May 23 17:24:17 2024 GMT
            Not After : Mar 31 00:00:00 2025 GMT
        Subject: CN=F36F8F86AF/serialNumber=B1BA3D7C7D8ECD511FDA4BF0EC29F6A99B2C31BB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:70:c9:0e:d1:b6:7d:05:e8:0b:5c:e4:73:f6:
                    66:b1:8b:f8:2b:1f:a6:f4:df:92:4a:8d:76:b2:ae:
                    8f:9a:cf:36:9c:f5:a4:d1:b6:d2:89:71:32:21:6e:
                    c9:00:5a:f9:78:e6:0c:3e:8a:d8:ec:8d:9d:16:b7:
                    e3:5e:3c:fc:4a:48:6a:c2:bb:56:6b:ae:f4:ca:c7:
                    07:22:d6:2f:62:83:d3:cd:89:9b:73:70:3e:6f:62:
                    28:d1:95:35:ac:6d:ee:33:36:02:83:f9:52:52:bf:
                    10:b6:91:1f:59:d3:25:2d:99:3c:d1:26:62:3d:cb:
                    8f:1d:16:75:b0:bc:40:66:b8:39:dd:11:04:a1:06:
                    ce:05:d5:0d:4f:6d:5b:e1:e2:8a:ea:d6:83:2a:ea:
                    14:fd:a6:b4:87:a6:07:5d:45:54:d5:01:fb:b0:0a:
                    e3:8e:46:22:96:cc:81:9e:57:6f:65:cb:dd:3e:61:
                    b1:92:93:ff:0e:25:4b:91:76:fc:cb:01:01:e3:f8:
                    00:b2:c2:5a:94:18:41:21:71:c0:18:a3:c1:f8:95:
                    c7:5c:12:6d:60:2a:97:52:1a:89:aa:89:db:a7:f0:
                    d1:bc:a2:94:6d:e1:77:7d:81:c8:26:04:4e:cf:e0:
                    06:e1:dd:91:39:6b:cd:49:ee:b2:79:4c:50:d1:cb:
                    23:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:BA:3D:7C:7D:8E:CD:51:1F:DA:4B:F0:EC:29:F6:A9:9B:2C:31:BB
            X509v3 Authority Key Identifier:
                keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
                RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/sbo9fH2OzVEf2kvw7Cn2qZssMbs.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  37381

            sbgp-ipAddrBlock: critical
                IPv4:
                  102.223.28.0/22
                  197.159.192.0/19
                IPv6:
                  2c0f:f5d8::/32

    Signature Algorithm: sha256WithRSAEncryption
         b9:f2:0f:e8:ba:8e:60:e3:a7:f7:52:b2:18:a0:f7:85:4c:84:
         c2:9d:74:59:c3:3b:cb:ef:45:bc:be:86:63:74:7a:80:d2:87:
         0c:e7:8a:53:93:b1:dd:47:75:e7:38:0e:56:92:a3:37:e1:5f:
         ef:ed:f3:05:65:c4:99:0f:21:a6:f1:ae:2f:d3:ac:ce:70:06:
         22:11:3f:23:a0:db:21:cc:5e:ec:6f:64:16:ee:71:cf:21:c9:
         5f:b3:ee:08:a7:25:ad:a9:d2:4c:33:a5:a3:b5:69:da:97:44:
         49:54:08:d0:7f:20:5e:f8:5b:56:5f:42:2d:71:4c:5a:ab:12:
         f6:4b:6e:ad:c1:7c:d3:7c:f5:24:dd:59:28:b7:1c:12:87:f5:
         05:10:fb:63:d8:02:6b:b8:9f:b9:6c:ce:d0:58:45:ac:8c:47:
         05:71:88:c4:71:71:c3:84:e6:a1:e7:b0:6e:b8:b2:d5:cd:50:
         a0:72:11:0e:9e:ad:f5:93:bf:82:35:9e:49:60:8e:03:9d:57:
         57:d7:a2:36:61:63:5b:35:2a:cb:60:96:b9:d7:6d:31:e7:4a:
         10:4a:56:2b:06:79:0e:32:9d:e3:1a:6b:52:3c:b3:1d:a8:ef:
         3c:3b:a8:83:7f:cc:27:db:4d:77:f2:64:6b:15:77:8b:6f:a3:
         af:0c:58:0f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:32 2024 by rpki-client on console-fra.rpki-client.org