Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/ripe/OWSdY4-MUgk4TWK4gN9_jH5G4fs.cer
File: OWSdY4-MUgk4TWK4gN9_jH5G4fs.cer (raw, json)
Hash identifier: 4raQJCa2aKda/tV+ZysLKqtV5yLvZcd44lum2w2gWDM=
Subject key identifier: 39:64:9D:63:8F:8C:52:09:38:4D:62:B8:80:DF:7F:8C:7E:46:E1:FB
Authority key identifier: 7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
Certificate issuer: /CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Certificate serial: 0DB3
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/OWSdY4-MUgk4TWK4gN9_jH5G4fs.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 04 Mar 2024 13:54:22 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 212.52.128.0/19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3507 (0xdb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Validity
Not Before: Mar 4 13:54:22 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36C01B9RI/serialNumber=39649D638F8C5209384D62B880DF7F8C7E46E1FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b6:74:fa:4c:97:5b:23:3a:e5:82:15:57:51:
0d:f8:c6:f5:60:42:1f:37:13:73:fe:a0:c9:c4:02:
71:7b:1b:5a:e5:4b:36:be:2f:0a:19:41:db:00:18:
cc:84:cf:23:d8:5a:cd:a2:3a:a0:3e:8c:32:94:82:
2d:6a:4a:d7:99:3d:3b:ce:ad:e4:ed:ee:1f:62:21:
ec:e9:b4:89:b4:4d:c4:67:42:86:f6:bb:78:72:af:
d1:40:0e:bb:38:da:11:45:3f:3a:09:36:67:c6:e7:
14:20:6a:ae:90:0b:a9:80:4a:28:63:9a:2d:8d:cf:
e6:4b:57:f0:b5:f3:14:2e:e7:ab:d1:bd:ac:57:5f:
c9:fe:a4:a9:14:0b:14:7a:3c:61:bf:d9:8d:6b:c8:
d2:98:73:fe:bf:f6:ee:59:fb:19:93:7a:aa:a2:c2:
0c:b1:41:29:98:9b:e2:cd:18:ad:49:80:b9:39:03:
d8:39:47:98:f6:5d:98:d3:73:e1:97:1e:77:f6:57:
36:a0:2e:11:ee:79:07:a2:51:31:49:b9:73:a0:4f:
12:9b:7e:c8:55:e7:89:d0:9a:d0:2a:eb:00:a7:0a:
cf:92:f2:27:1c:be:0d:a9:40:e5:b4:72:94:16:b3:
51:a3:34:fd:ad:70:9d:0d:85:3e:35:c9:12:eb:ea:
d5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:64:9D:63:8F:8C:52:09:38:4D:62:B8:80:DF:7F:8C:7E:46:E1:FB
X509v3 Authority Key Identifier:
keyid:7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/OWSdY4-MUgk4TWK4gN9_jH5G4fs.mft
sbgp-ipAddrBlock: critical
IPv4:
212.52.128.0/19
Signature Algorithm: sha256WithRSAEncryption
36:84:44:2e:c2:4a:81:32:eb:4f:ca:eb:5f:28:32:29:33:0d:
41:d4:d3:be:fd:99:2c:d0:64:80:90:f7:a3:97:1f:d0:70:8d:
7d:04:e9:4f:0c:ee:1a:0e:90:77:3b:b9:cd:11:5e:1c:b3:64:
aa:07:59:94:fe:59:a2:ad:6d:f9:5e:4d:d7:bf:78:ca:f0:0c:
ae:13:c5:27:f7:63:b6:90:be:47:c1:45:e0:44:f7:21:a1:22:
ae:42:8f:84:08:af:85:1e:67:81:b5:b3:23:d7:00:92:d9:00:
c1:36:c6:f7:8c:52:c6:6b:f6:14:88:dc:c6:b1:08:97:fc:b5:
ea:44:62:86:10:1f:5e:61:cb:6d:ef:51:3e:7b:e1:08:6e:53:
c5:d0:1f:f9:2e:72:a6:e9:34:0b:fc:d2:38:7f:d4:0a:75:ee:
53:b0:89:28:3f:94:0a:fd:f8:5a:a0:f5:d2:b1:a5:68:8d:82:
00:76:77:98:df:e8:00:58:3b:48:f7:dd:43:d3:90:bd:6b:1b:
d6:00:ad:8b:5e:17:b4:6a:6f:bf:7d:ef:bd:7a:47:b9:be:42:
09:3b:ff:e6:23:6a:44:61:55:d6:f9:63:9c:e5:4a:8b:95:d6:
95:70:f4:60:a6:6d:c5:38:88:a2:dc:94:b9:86:f6:dc:b4:58:
d1:c5:c0:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 01:25:54 2024 by rpki-client on console-ams.rpki-client.org