Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/ripe/YiXGU2dIRI8cYBvpr6uCfJptjJg.cer
File: YiXGU2dIRI8cYBvpr6uCfJptjJg.cer (raw, json)
Hash identifier: wf3fHDtmVrJO/Awquj0XhDxAaP2+eES0nJEYhrYrpM4=
Subject key identifier: 62:25:C6:53:67:48:44:8F:1C:60:1B:E9:AF:AB:82:7C:9A:6D:8C:98
Authority key identifier: 7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
Certificate issuer: /CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Certificate serial: 0D66
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/YiXGU2dIRI8cYBvpr6uCfJptjJg.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:35:11 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 80.250.32.0/20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3430 (0xd66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Validity
Not Before: Jan 1 00:35:11 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36E1028RI/serialNumber=6225C6536748448F1C601BE9AFAB827C9A6D8C98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9b:c4:25:c0:5f:b9:97:54:2c:44:9a:5c:a2:
62:63:02:90:c3:ca:a8:86:b9:31:13:d5:d0:af:5c:
b6:78:76:d0:56:30:00:c6:d9:ce:c1:2c:e0:58:04:
8b:c3:14:5d:d3:e1:ed:bd:64:e8:7f:7f:33:cb:3a:
12:b6:fa:6c:fe:21:65:41:1e:ed:7f:c0:e0:28:ab:
0f:63:d3:9c:97:4c:45:11:05:53:93:15:94:97:81:
39:55:fc:7c:92:1b:d0:89:8f:6a:0b:a0:84:a9:76:
54:af:81:92:3c:91:ae:a4:8f:ca:3d:dc:5d:07:b2:
82:ec:36:c2:26:40:e5:78:81:25:0f:87:a9:f2:24:
3c:8d:1e:ba:4e:d2:db:b7:b8:64:b5:b1:c8:eb:6d:
0d:ba:b7:3a:12:93:eb:81:b5:3f:62:92:cd:9b:e6:
93:51:ff:0f:af:59:46:f2:6b:52:b9:65:c6:13:1c:
9a:6d:00:10:01:fe:42:00:bb:38:b1:44:fe:9d:36:
8a:77:9b:bf:41:88:e7:33:ac:0d:72:0b:8d:14:8d:
b5:11:39:75:9e:7a:97:af:f0:4f:01:23:7e:dd:be:
18:42:cf:49:ec:8d:d0:df:73:83:b8:17:39:49:7c:
a9:46:70:58:e1:1d:0b:0e:52:62:eb:56:c8:be:8d:
68:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:25:C6:53:67:48:44:8F:1C:60:1B:E9:AF:AB:82:7C:9A:6D:8C:98
X509v3 Authority Key Identifier:
keyid:7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/YiXGU2dIRI8cYBvpr6uCfJptjJg.mft
sbgp-ipAddrBlock: critical
IPv4:
80.250.32.0/20
Signature Algorithm: sha256WithRSAEncryption
38:87:6a:1d:ee:2f:77:de:02:06:e4:57:c3:8e:1f:02:fd:49:
ff:d3:d2:c4:f8:dd:f9:29:38:0a:97:c6:0a:57:28:22:c6:10:
a4:ac:fc:09:8f:12:33:80:91:53:ab:f4:d1:53:ce:4e:26:50:
b7:08:e5:92:28:c9:3f:00:81:d8:e0:b2:cb:fd:64:bd:6a:e8:
2d:84:5e:33:4f:aa:b8:a5:74:00:6a:3a:43:86:1f:4c:22:8c:
f5:39:71:2f:d0:09:52:63:f1:12:33:9d:99:55:bd:e9:5c:e2:
0a:23:ac:c1:3d:8d:57:8d:2c:0b:88:71:e1:8c:86:14:af:f0:
13:55:92:50:15:93:81:ad:a7:ff:75:f8:56:a7:52:72:70:0e:
99:f6:a2:0a:16:fd:d1:db:0b:cd:a8:a4:be:ed:8b:04:12:34:
cc:e1:b3:77:7a:92:f1:22:4b:0f:6b:7a:5d:d3:84:8b:cb:da:
c2:74:83:85:40:4e:01:2a:74:4b:b9:76:0c:d1:86:8c:25:43:
a3:ef:d2:dd:d8:9d:72:b1:16:26:a7:15:62:ac:0b:4d:d8:bc:
07:d9:ec:18:fc:e0:11:ce:d9:fd:94:ec:4f:e3:04:00:42:65:
17:d0:af:a1:48:d1:db:c1:30:bf:76:78:71:01:fe:42:9e:08:
99:8f:e0:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 01:31:52 2024 by rpki-client on console-fra.rpki-client.org