Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
File: x4zcO11LE2dctIrTtjvgHsWoB_g.cer (raw, json)
Hash identifier: 70zZIMZlBA930zqNPBlqthtTQQbTt+7zwraDHJqLXJY=
Subject key identifier: C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2C4D
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Tue 19 Nov 2024 00:05:34 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 328977
IP: 102.207.160.0 -- 102.207.171.255
IP: 102.208.0.0/22
IP: 102.208.60.0/22
IP: 102.208.168.0/22
IP: 102.210.12.0/22
IP: 102.217.156.0/22
IP: 2c0f:6300::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11341 (0x2c4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Nov 19 00:05:34 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36FE19EAF/serialNumber=C78CDC3B5D4B13675CB48AD3B63BE01EC5A807F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:38:66:47:1b:f2:0a:a8:1d:0c:9a:96:d6:37:
3f:91:ac:69:a3:5e:d5:56:c2:b1:cf:98:72:49:58:
80:bf:79:50:da:07:48:1d:38:9e:f3:01:69:25:c3:
e5:3e:65:eb:7b:d0:8b:3d:73:0f:3c:b1:eb:16:f9:
eb:c0:c0:2a:23:3b:35:0e:7c:97:d5:78:87:35:fe:
cf:ed:9a:b7:4d:82:de:39:d3:20:90:36:e2:f9:30:
49:a3:de:fe:eb:30:94:8b:aa:05:82:fc:13:0c:25:
9c:52:a9:3a:c3:ba:f5:91:f9:05:07:0b:56:df:1b:
b3:ba:1c:5e:0d:35:a5:f2:6b:ae:35:c2:ad:8c:35:
06:98:e6:66:11:54:8e:da:bd:85:b6:bd:a3:5a:18:
77:f2:34:b2:8e:ee:45:b6:aa:e2:59:47:6c:18:be:
4c:82:d8:61:a9:a6:68:cb:d0:51:d5:0c:2d:47:fb:
7e:36:16:29:a8:d1:14:7b:8f:17:e9:96:b1:05:d2:
fa:31:9c:0b:7a:e5:f4:1b:fb:4b:a5:35:8a:0c:82:
c8:8e:84:f6:b3:64:ab:f1:fb:87:bd:97:b9:af:1a:
b8:e3:39:26:ec:c4:e4:88:fd:e6:ae:0f:90:05:cd:
86:3f:77:63:78:2f:74:00:03:1a:a2:c7:28:70:ff:
40:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328977
sbgp-ipAddrBlock: critical
IPv4:
102.207.160.0-102.207.171.255
102.208.0.0/22
102.208.60.0/22
102.208.168.0/22
102.210.12.0/22
102.217.156.0/22
IPv6:
2c0f:6300::/32
Signature Algorithm: sha256WithRSAEncryption
6b:ea:8f:cc:2e:75:fe:5c:f1:1e:45:1a:9e:bf:3a:4f:6d:e0:
70:41:50:97:d9:bd:41:fd:0d:24:71:45:3a:2e:18:90:80:b7:
1b:4c:60:af:9f:22:58:04:f1:a5:49:16:36:fb:1a:ed:a1:4b:
71:4b:ee:4d:11:4e:a7:0e:c0:52:f2:ae:76:7c:4a:78:84:bd:
73:54:2e:66:92:10:4a:ce:9b:a1:f2:2e:17:71:25:09:24:1a:
01:84:15:a2:eb:82:09:08:5c:e8:e7:cd:0b:80:56:0a:01:28:
be:20:ee:c9:62:36:9f:a3:45:2f:52:ef:94:f9:9b:c8:4d:45:
d9:2b:39:83:62:b6:78:95:ee:3f:9c:ce:b2:12:74:92:e0:f7:
ae:52:a0:93:60:ed:64:35:bf:37:1f:bf:fa:8b:60:89:fa:b2:
5c:f4:c7:c0:58:19:29:63:a1:05:c3:70:42:09:64:33:be:52:
31:61:0e:2a:9e:99:a2:dd:bf:87:cf:37:69:8d:0b:d7:8e:25:
19:50:58:81:11:98:fe:10:14:79:0b:46:38:5f:98:6d:49:72:
df:ce:25:da:6b:05:ab:ad:ff:03:01:74:7a:6c:68:d9:f7:dd:
56:6c:55:48:f5:52:71:c1:e3:97:e6:c3:4f:04:c6:b2:96:8d:
c8:f7:51:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:04:32 2024 by rpki-client on console-fra.rpki-client.org