Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
File: x4zcO11LE2dctIrTtjvgHsWoB_g.cer (raw, json)
Hash identifier: dQI/5AZ0XZZNhSAwUzcLFBDhUyay5PxJaP89EwOjV8c=
Subject key identifier: C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 290B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 29 Jan 2024 00:04:13 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328977
IP: 102.210.12.0/22
IP: 102.217.156.0/22
IP: 2c0f:6300::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 16:25:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10507 (0x290b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 29 00:04:13 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36FE19EAF/serialNumber=C78CDC3B5D4B13675CB48AD3B63BE01EC5A807F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:38:66:47:1b:f2:0a:a8:1d:0c:9a:96:d6:37:
3f:91:ac:69:a3:5e:d5:56:c2:b1:cf:98:72:49:58:
80:bf:79:50:da:07:48:1d:38:9e:f3:01:69:25:c3:
e5:3e:65:eb:7b:d0:8b:3d:73:0f:3c:b1:eb:16:f9:
eb:c0:c0:2a:23:3b:35:0e:7c:97:d5:78:87:35:fe:
cf:ed:9a:b7:4d:82:de:39:d3:20:90:36:e2:f9:30:
49:a3:de:fe:eb:30:94:8b:aa:05:82:fc:13:0c:25:
9c:52:a9:3a:c3:ba:f5:91:f9:05:07:0b:56:df:1b:
b3:ba:1c:5e:0d:35:a5:f2:6b:ae:35:c2:ad:8c:35:
06:98:e6:66:11:54:8e:da:bd:85:b6:bd:a3:5a:18:
77:f2:34:b2:8e:ee:45:b6:aa:e2:59:47:6c:18:be:
4c:82:d8:61:a9:a6:68:cb:d0:51:d5:0c:2d:47:fb:
7e:36:16:29:a8:d1:14:7b:8f:17:e9:96:b1:05:d2:
fa:31:9c:0b:7a:e5:f4:1b:fb:4b:a5:35:8a:0c:82:
c8:8e:84:f6:b3:64:ab:f1:fb:87:bd:97:b9:af:1a:
b8:e3:39:26:ec:c4:e4:88:fd:e6:ae:0f:90:05:cd:
86:3f:77:63:78:2f:74:00:03:1a:a2:c7:28:70:ff:
40:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328977
sbgp-ipAddrBlock: critical
IPv4:
102.210.12.0/22
102.217.156.0/22
IPv6:
2c0f:6300::/32
Signature Algorithm: sha256WithRSAEncryption
b3:63:ab:c6:f5:6b:5d:f4:c0:ca:43:9f:7a:55:90:9a:8a:90:
35:04:40:cc:47:fb:a0:23:f2:ba:c7:40:1c:47:b5:9e:15:7d:
bf:79:88:c3:2c:eb:ce:80:b4:2a:99:21:68:68:10:85:6a:3c:
de:d8:45:c7:1a:8b:db:13:77:fc:6e:44:5e:a3:dc:69:d4:02:
40:96:e3:0b:2b:ba:a4:dc:9b:2d:58:6f:97:09:20:6b:85:66:
12:ca:8e:ca:13:54:6c:74:88:1b:e6:52:25:66:e8:68:d5:8f:
43:1b:95:a0:dd:66:ef:c7:d7:94:a4:11:b5:e1:e8:2c:c0:3a:
78:43:6d:8d:a2:3a:7c:6e:93:53:0f:e4:5f:77:83:a5:7c:f6:
1a:17:04:85:2d:7b:a8:71:1c:ac:92:79:82:e5:8e:a7:6a:dd:
5b:14:17:da:2e:95:17:b6:15:88:22:ed:e4:69:ed:6f:f2:7b:
13:2e:cf:a1:c4:a2:29:dd:79:2a:17:53:a9:18:7e:0d:50:46:
bd:05:7d:f7:44:68:d1:f3:c2:6a:0a:9e:7a:98:4b:b2:5e:f2:
a8:c4:54:72:81:61:06:16:08:5e:99:4e:80:ae:ea:d2:2c:1b:
84:ac:8b:b8:79:fb:b1:c4:72:91:55:15:b9:72:0e:16:3a:91:
f7:29:77:04
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 24 18:30:59 2024 by rpki-client on console-fra.rpki-client.org