Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/ripe/8ZI823Vz-wlzku4GArwdsbV78OM.cer
File: 8ZI823Vz-wlzku4GArwdsbV78OM.cer (raw, json)
Hash identifier: U7InKx3r8SOSHwydL2tnMNRqWOF5jd6GUX3nsnoGm60=
Subject key identifier: F1:92:3C:DB:75:73:FB:09:73:92:EE:06:02:BC:1D:B1:B5:7B:F0:E3
Authority key identifier: 7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
Certificate issuer: /CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Certificate serial: 0D6C
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/B1CAE0D4379711EE8ED7D9314AD9E6FC/8ZI823Vz-wlzku4GArwdsbV78OM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/B1CAE0D4379711EE8ED7D9314AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:36:50 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 213.136.96.0/19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3436 (0xd6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Validity
Not Before: Jan 1 00:36:50 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36F731FRI/serialNumber=F1923CDB7573FB097392EE0602BC1DB1B57BF0E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:91:c8:c8:34:4b:85:44:24:52:a1:1b:e8:c3:
24:06:0a:0d:06:de:93:fb:59:88:de:7c:e9:9f:bc:
75:47:b8:2b:70:c1:73:16:6f:fa:c0:f1:e2:43:57:
17:52:83:e9:1e:83:55:6d:40:25:df:6a:c6:87:cc:
43:4e:b8:d8:61:f2:aa:6f:bf:c8:8b:ba:37:64:f5:
46:29:c9:5f:38:5e:28:f8:f0:b4:71:d0:63:09:33:
84:fe:43:cb:c5:d4:19:c5:4c:82:46:0c:4e:bb:83:
28:1c:c6:7e:5c:c3:fb:92:81:4d:fa:08:f7:11:c2:
f4:6f:7a:e1:86:b1:0a:b1:83:04:fc:42:d4:c3:7e:
db:e7:c0:9c:3c:26:17:f0:fc:f9:d0:08:32:60:6a:
0d:f3:15:2f:ac:94:6e:00:71:db:1a:f0:17:47:0e:
ec:10:5e:a3:c5:f3:a3:76:85:50:2a:c5:91:9c:01:
7c:86:03:04:18:87:ed:0e:da:6b:c3:02:89:fd:03:
64:78:73:20:a3:57:dc:dd:9d:0e:e0:b7:1d:48:b0:
1e:d5:1e:c8:1f:1d:7c:e1:4e:a5:0e:8f:91:66:fe:
cd:42:71:88:f6:8a:2e:1f:47:a7:3b:c0:e3:be:5d:
a9:cf:68:96:92:0b:32:b9:d8:d5:10:38:9b:1a:7a:
9d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:92:3C:DB:75:73:FB:09:73:92:EE:06:02:BC:1D:B1:B5:7B:F0:E3
X509v3 Authority Key Identifier:
keyid:7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/B1CAE0D4379711EE8ED7D9314AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/B1CAE0D4379711EE8ED7D9314AD9E6FC/8ZI823Vz-wlzku4GArwdsbV78OM.mft
sbgp-ipAddrBlock: critical
IPv4:
213.136.96.0/19
Signature Algorithm: sha256WithRSAEncryption
7c:f2:78:94:f1:fc:3a:11:ff:dd:7a:5f:6c:6d:51:d3:6e:36:
ed:62:16:0a:1e:b1:82:56:3f:d7:b8:d8:36:73:66:85:77:39:
87:10:12:ec:17:58:24:71:6f:2e:ec:3d:8c:85:1c:79:08:c7:
00:ad:f1:cc:12:41:46:97:aa:21:3f:95:de:15:be:d3:b2:f5:
8d:10:7f:3a:f8:d2:48:82:a4:00:53:e9:52:35:8e:9d:29:58:
e5:52:d7:dc:19:2f:13:bd:7d:80:52:53:28:16:18:a6:3c:d0:
7d:51:52:e5:36:b0:ff:19:a9:1a:ab:ee:fc:fb:00:48:a4:96:
dd:b9:2b:b5:65:19:60:4f:42:14:a2:82:ae:e6:4e:49:7d:c5:
69:30:b4:51:a6:9a:58:fa:02:c5:12:d1:63:50:3f:0e:12:4d:
32:80:4c:e9:9b:a7:88:fb:1e:0b:a3:2e:8e:dd:d6:e3:89:41:
15:6a:27:82:78:dd:5e:cd:6e:37:e7:70:a9:8e:4a:0f:f6:ee:
e3:67:13:b4:63:da:55:0c:80:4e:75:1d:0c:c1:34:fc:ad:90:
d9:7f:b0:6b:36:d7:8e:74:b5:e2:fe:8b:50:b8:21:d5:0c:e2:
74:08:29:63:96:1e:0b:c3:f3:87:87:dd:f2:53:c9:77:05:61:
69:51:cd:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 01:31:52 2024 by rpki-client on console-fra.rpki-client.org