Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/ripe/OWSdY4-MUgk4TWK4gN9_jH5G4fs.cer
File: OWSdY4-MUgk4TWK4gN9_jH5G4fs.cer (raw, json)
Hash identifier: rOTGOTt3lhWZ9SfTS235YkHvYjCeNdAkZtvftw0cvF4=
Subject key identifier: 39:64:9D:63:8F:8C:52:09:38:4D:62:B8:80:DF:7F:8C:7E:46:E1:FB
Authority key identifier: 7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
Certificate issuer: /CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Certificate serial: 0F1C
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/OWSdY4-MUgk4TWK4gN9_jH5G4fs.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:52:56 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 212.52.128.0/19
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:45:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3868 (0xf1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=RIPETOAFRINIC
Validity
Not Before: Jan 1 00:52:56 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36C01B9RI
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b6:74:fa:4c:97:5b:23:3a:e5:82:15:57:51:
0d:f8:c6:f5:60:42:1f:37:13:73:fe:a0:c9:c4:02:
71:7b:1b:5a:e5:4b:36:be:2f:0a:19:41:db:00:18:
cc:84:cf:23:d8:5a:cd:a2:3a:a0:3e:8c:32:94:82:
2d:6a:4a:d7:99:3d:3b:ce:ad:e4:ed:ee:1f:62:21:
ec:e9:b4:89:b4:4d:c4:67:42:86:f6:bb:78:72:af:
d1:40:0e:bb:38:da:11:45:3f:3a:09:36:67:c6:e7:
14:20:6a:ae:90:0b:a9:80:4a:28:63:9a:2d:8d:cf:
e6:4b:57:f0:b5:f3:14:2e:e7:ab:d1:bd:ac:57:5f:
c9:fe:a4:a9:14:0b:14:7a:3c:61:bf:d9:8d:6b:c8:
d2:98:73:fe:bf:f6:ee:59:fb:19:93:7a:aa:a2:c2:
0c:b1:41:29:98:9b:e2:cd:18:ad:49:80:b9:39:03:
d8:39:47:98:f6:5d:98:d3:73:e1:97:1e:77:f6:57:
36:a0:2e:11:ee:79:07:a2:51:31:49:b9:73:a0:4f:
12:9b:7e:c8:55:e7:89:d0:9a:d0:2a:eb:00:a7:0a:
cf:92:f2:27:1c:be:0d:a9:40:e5:b4:72:94:16:b3:
51:a3:34:fd:ad:70:9d:0d:85:3e:35:c9:12:eb:ea:
d5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:64:9D:63:8F:8C:52:09:38:4D:62:B8:80:DF:7F:8C:7E:46:E1:FB
X509v3 Authority Key Identifier:
keyid:7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/AFDA9FDCDA2E11EEA6D125A7775412E6/OWSdY4-MUgk4TWK4gN9_jH5G4fs.mft
sbgp-ipAddrBlock: critical
IPv4:
212.52.128.0/19
Signature Algorithm: sha256WithRSAEncryption
18:f4:6e:65:55:4d:52:ec:8a:64:8e:52:02:50:3c:e8:4d:bd:
8e:21:06:fb:93:e4:46:0c:a7:d4:4e:9c:db:e5:60:59:35:31:
b1:ad:0b:30:50:4c:5d:85:b3:43:90:86:2a:3f:a6:41:05:d2:
d5:0e:ad:d1:7e:ce:51:d9:17:05:06:ce:af:ec:c2:f3:ff:94:
c0:47:6d:57:25:b2:40:50:d3:4b:79:c4:e4:31:c4:9b:09:7c:
e8:51:ee:28:a8:76:e1:c0:dc:26:e4:79:43:bb:5d:6f:7e:2a:
63:fb:d9:ff:cc:1f:c4:67:df:a6:10:2d:5e:26:ed:f2:7e:f5:
d7:85:b4:a4:c6:a6:ab:cf:6c:72:df:71:81:51:d5:20:1f:6e:
46:36:3e:49:3b:db:43:b5:6d:2b:17:60:1f:99:90:bd:43:f0:
78:ce:5f:41:e5:0c:8c:50:4e:fb:66:7c:d0:b7:2b:61:08:8a:
12:78:79:bd:8b:01:dc:77:58:bd:90:a5:d8:12:a9:c9:3b:c8:
f1:7b:60:64:26:55:25:81:d4:56:66:ad:d7:d9:26:48:65:2a:
2d:0c:8c:f7:91:4c:6a:97:bf:cf:75:46:7c:45:fa:15:44:c8:
03:98:f7:75:25:fc:b3:ba:4e:24:6e:9e:14:de:1f:23:86:50:
1c:70:95:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:21:33 2025 by rpki-client