Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/xel4rPl9qfSdxLKEr_AldPEDGH8.cer
File: xel4rPl9qfSdxLKEr_AldPEDGH8.cer (raw, json)
Hash identifier: feBoiSz9ljjX1JQIggc3PL/V+T+A+kLzIKYv1Fz9IbE=
Subject key identifier: C5:E9:78:AC:F9:7D:A9:F4:9D:C4:B2:84:AF:F0:25:74:F1:03:18:7F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2845
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/xel4rPl9qfSdxLKEr_AldPEDGH8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:21:25 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 102.222.200.0/22
IP: 2c0f:e890::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 08:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10309 (0x2845)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Validity
Not Before: Jan 1 04:21:25 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36E6AB8AF/serialNumber=C5E978ACF97DA9F49DC4B284AFF02574F103187F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:16:cf:8e:c1:75:16:12:74:37:7f:62:59:68:
13:95:ae:ca:96:f8:8c:aa:67:cf:74:83:01:b2:bc:
41:bf:de:cc:36:c2:db:5f:78:2b:f3:85:1d:43:3f:
73:14:60:c4:22:6f:df:98:99:22:18:90:a7:a5:5b:
b6:32:b0:3b:8d:36:85:e5:2c:ce:c8:e5:4b:ce:f7:
eb:e5:cd:82:47:b1:a9:0e:37:a8:49:63:96:fc:87:
4f:f0:49:c5:3e:10:07:ce:4d:89:d6:8f:7a:2e:af:
60:2e:3f:e6:05:9b:3c:15:d7:cf:32:55:4f:5a:ab:
07:68:5d:71:d1:fa:62:b2:cf:53:bb:c2:26:33:4f:
5b:12:d9:d8:c2:aa:e2:70:f3:db:c3:56:95:5b:96:
8e:b3:ef:a8:11:e7:21:e8:09:24:60:f3:09:c6:d3:
17:25:a2:e7:fb:a8:7c:27:a6:68:b8:bb:93:c2:92:
8c:a0:b8:ab:29:45:41:be:f6:c3:f8:cd:da:a0:4a:
e0:49:be:77:78:f7:12:1e:fa:21:bd:e2:1f:8a:69:
e1:67:fb:61:ae:0d:c8:24:c9:a5:eb:a6:da:26:86:
51:21:39:ed:7e:fb:9b:af:8d:e7:42:5e:d6:21:ee:
d5:72:6b:6b:2f:71:4f:d9:0b:a5:fc:20:58:75:94:
49:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E9:78:AC:F9:7D:A9:F4:9D:C4:B2:84:AF:F0:25:74:F1:03:18:7F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6AB8/D8FE28F61BDC11ECB169A467D8A014CE/xel4rPl9qfSdxLKEr_AldPEDGH8.mft
sbgp-ipAddrBlock: critical
IPv4:
102.222.200.0/22
IPv6:
2c0f:e890::/32
Signature Algorithm: sha256WithRSAEncryption
96:4e:55:f7:37:ec:62:70:50:aa:70:10:f4:03:0e:d9:1f:80:
18:ae:ae:19:94:64:96:62:97:87:a8:ac:05:51:94:c0:b8:4c:
85:41:a9:1f:8a:83:14:18:78:67:06:eb:a3:0b:b4:cc:10:a5:
cf:4d:c0:6c:09:64:20:c9:39:46:ad:e9:03:ba:32:55:4a:36:
88:01:96:14:31:0f:34:6f:f7:ba:00:9d:35:50:0e:63:8b:42:
dd:e9:10:12:10:ec:d1:5d:35:13:3d:af:b1:93:fb:7f:b3:7a:
c4:43:92:bb:40:03:60:2a:f5:64:cb:1f:eb:f2:df:ab:2b:cc:
23:3b:b3:dd:68:b8:f2:04:c0:b5:1a:51:41:30:6e:a0:d7:61:
c4:a7:c4:f4:60:29:5f:a0:7c:0d:aa:f7:23:15:4b:23:b3:e7:
f4:15:20:8d:5c:08:51:f0:6c:1e:25:bc:c3:e6:8c:91:db:2c:
bc:60:d5:d2:ff:70:74:aa:81:16:d5:a1:88:e4:f7:85:78:29:
0a:7a:ff:90:86:50:18:a0:fb:02:f1:7d:3b:d1:95:1b:4e:79:
f2:a9:da:38:9d:2e:6a:8b:1c:4d:10:83:7f:84:c8:e3:bb:0e:
3c:ea:02:d7:68:2e:5b:4c:da:bf:df:8d:7e:76:18:a7:99:2f:
f2:4e:a3:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:09:23 2024 by rpki-client on console-ams.rpki-client.org