Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/ripe/lyz9rusSb2_NRpalkPcBiDeqX_I.cer
File: lyz9rusSb2_NRpalkPcBiDeqX_I.cer (raw, json)
Hash identifier: sJSmLsRGFbJeDHQIJQoGw4P9jyHZ7V5/0HnpUfFw6bU=
Subject key identifier: 97:2C:FD:AE:EB:12:6F:6F:CD:46:96:A5:90:F7:01:88:37:AA:5F:F2
Authority key identifier: 7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
Certificate issuer: /CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Certificate serial: 0D6A
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/67F004C6BE1D11EB8576B942F8AEA228/lyz9rusSb2_NRpalkPcBiDeqX_I.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/67F004C6BE1D11EB8576B942F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:36:01 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 217.29.128.0/20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3434 (0xd6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Validity
Not Before: Jan 1 00:36:01 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=F36EBDD7RI/serialNumber=972CFDAEEB126F6FCD4696A590F7018837AA5FF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f6:30:6d:26:87:52:81:c2:43:c3:b2:ae:e9:
5d:c3:cc:61:e5:61:a7:28:fa:f4:33:37:58:12:6d:
12:b8:53:59:50:16:bb:0f:08:13:54:c8:d8:b6:05:
93:f1:0b:4e:25:a4:1f:23:07:c2:15:98:c8:35:79:
5b:5d:9a:99:a5:3e:75:e1:3e:c5:5f:ab:eb:7e:74:
5d:92:35:9a:1f:39:00:dd:9f:67:43:da:e0:d7:49:
98:98:ab:77:0e:68:1b:8b:73:98:44:ba:8a:2f:50:
49:35:37:0b:00:35:4d:fa:f8:f9:fd:26:5d:2d:a2:
c6:fc:98:92:80:7e:0b:86:c2:3a:fa:de:cd:aa:fa:
ed:e9:f1:36:f5:f2:e1:32:9f:6c:8e:32:59:f2:91:
e5:36:67:71:77:78:64:99:f3:aa:ce:57:a7:34:a6:
0c:d4:e3:92:aa:5a:89:a9:f6:10:44:5f:6e:bd:0f:
0b:5e:d5:db:f2:27:16:5f:1f:b6:b2:72:b2:56:f2:
5e:31:e0:58:f0:38:c0:09:db:11:86:9c:20:0b:c1:
bd:5a:d0:c9:cc:43:5a:e3:88:cd:29:3c:0f:54:59:
b4:15:a9:98:1a:15:a5:53:6f:78:84:3c:11:61:6e:
a8:10:7b:58:92:f7:cc:90:63:bf:58:2a:a5:59:e9:
8d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:2C:FD:AE:EB:12:6F:6F:CD:46:96:A5:90:F7:01:88:37:AA:5F:F2
X509v3 Authority Key Identifier:
keyid:7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/67F004C6BE1D11EB8576B942F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/67F004C6BE1D11EB8576B942F8AEA228/lyz9rusSb2_NRpalkPcBiDeqX_I.mft
sbgp-ipAddrBlock: critical
IPv4:
217.29.128.0/20
Signature Algorithm: sha256WithRSAEncryption
9e:82:b4:8f:de:18:42:25:e6:44:a0:84:78:1f:9d:38:79:76:
73:95:1e:45:ee:15:2e:aa:21:c1:66:47:ea:72:3d:71:be:25:
89:78:b9:f9:b5:35:30:d5:f7:c0:97:7d:ea:4b:24:10:01:11:
30:41:9b:48:d0:85:76:80:f2:04:07:60:a7:ec:d2:66:f7:47:
79:57:25:8f:b1:cc:72:4c:14:b1:f5:93:56:2f:f9:3a:d5:3a:
c1:6e:23:2e:d1:13:44:d2:6c:68:6a:fc:91:20:e0:97:93:cd:
cd:ab:d6:84:21:03:5f:c3:70:21:a6:a0:3f:77:54:a4:e1:39:
51:7b:e2:ef:3e:01:50:06:c1:7f:53:a3:52:41:02:76:83:a1:
b4:91:a2:5c:4c:26:d1:1c:14:e1:13:14:1e:da:78:a2:d7:20:
41:4a:6a:6e:7f:3d:b0:3c:a7:a3:b1:81:de:e1:53:f5:25:df:
63:e6:db:1b:a9:a4:f0:93:c0:16:f4:af:16:b1:76:5b:2b:58:
e5:a1:57:44:a0:66:03:ad:99:15:80:40:1d:fb:96:8f:08:16:
30:c6:e3:44:d8:59:9a:a6:76:e7:bb:79:62:3d:7f:d4:8c:e6:
43:eb:ce:56:54:62:a8:36:5c:c7:ea:0d:23:e6:28:4a:1b:8f:
60:6c:d8:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 01:31:52 2024 by rpki-client on console-fra.rpki-client.org