Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/2KoAqxWVGabWVnDenlmLc99qssE.cer
File: 2KoAqxWVGabWVnDenlmLc99qssE.cer (raw, json)
Hash identifier: xiK4fcmrzqywtcBdGhJAd1cQHucTa286l/zwHkeLPyY=
Subject key identifier: D8:AA:00:AB:15:95:19:A6:D6:56:70:DE:9E:59:8B:73:DF:6A:B2:C1
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 337F
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36F273D/3E265EFEA8A911EFA5E2C2A0762E951A/2KoAqxWVGabWVnDenlmLc99qssE.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36F273D/3E265EFEA8A911EFA5E2C2A0762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 06:09:33 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328699
IP: 102.222.104.0/22
IP: 2c0f:e8f8::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13183 (0x337f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 06:09:33 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36F273DAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:71:d7:4a:6a:a3:10:e9:cf:13:c0:89:1a:67:
99:6d:8e:4e:2a:ed:82:25:17:3d:b0:88:15:e6:b7:
b7:a5:e6:8e:77:90:90:4e:8c:6d:36:51:18:52:35:
ac:0d:77:2f:1c:05:5e:2e:de:d4:ab:0e:5c:bb:33:
9c:30:29:17:9b:05:82:d4:77:05:56:55:61:6b:ca:
a8:8b:43:34:13:12:09:f5:87:f6:2b:fb:bc:a0:cf:
aa:ac:5f:8a:ec:e7:c8:d4:cf:32:0e:ec:f1:50:71:
9f:6e:26:15:60:60:56:b2:34:59:68:e2:93:8b:79:
bd:62:f1:c4:cc:0c:3a:07:12:3f:b4:b5:e8:0f:3c:
26:15:b3:1a:37:d6:b3:4c:6a:f2:a6:5c:c0:ce:88:
cf:2e:09:3d:0a:23:20:ee:8b:05:be:58:1c:30:dc:
49:bc:8a:f6:d7:51:dd:0d:e4:80:46:c1:47:06:fe:
bd:c3:61:60:7f:42:34:f0:3c:8b:82:97:98:84:dd:
f4:67:ae:32:00:f3:bf:58:dc:1c:63:ab:d5:85:78:
a5:a9:37:44:71:72:d9:37:ab:50:96:4b:a5:a2:7d:
53:0c:e8:13:0f:49:09:91:5f:60:84:79:38:33:35:
0f:3d:89:9c:fe:a2:bf:d2:8d:a6:c3:a1:2c:73:b5:
9d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:AA:00:AB:15:95:19:A6:D6:56:70:DE:9E:59:8B:73:DF:6A:B2:C1
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F273D/3E265EFEA8A911EFA5E2C2A0762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F273D/3E265EFEA8A911EFA5E2C2A0762E951A/2KoAqxWVGabWVnDenlmLc99qssE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328699
sbgp-ipAddrBlock: critical
IPv4:
102.222.104.0/22
IPv6:
2c0f:e8f8::/32
Signature Algorithm: sha256WithRSAEncryption
06:31:94:e8:13:24:f6:d6:75:c0:17:8d:a6:11:a6:45:40:29:
65:d3:9f:e8:fe:0d:c0:24:91:a3:fc:32:24:fa:07:66:23:6d:
42:6e:b6:55:f4:9e:86:53:9c:8e:2d:0f:17:d9:47:9e:1c:12:
32:19:fe:85:e9:f1:bc:52:c5:f0:56:0b:21:da:a8:11:ff:36:
28:86:bf:ac:b4:96:7c:54:a5:a3:43:a0:91:41:64:d5:10:24:
21:a0:c1:de:40:76:b6:52:7a:6c:3d:39:93:a4:10:e5:a7:c9:
7a:a8:ed:1f:80:14:75:02:25:24:e6:58:e8:0f:f6:96:f7:08:
aa:93:ff:f8:f4:bd:76:3b:fd:31:cc:1e:16:f2:2e:7b:7f:51:
4c:db:ce:5a:14:46:33:ce:81:f4:15:8a:95:1f:61:f1:cc:f1:
e1:f1:fc:49:0b:c0:3b:3a:c8:09:86:ab:d3:cc:94:43:4c:51:
c1:90:03:01:f7:50:82:83:1d:43:e9:05:c5:e3:4a:17:1c:91:
0e:48:85:28:36:a6:37:44:e0:8e:09:22:04:48:82:cf:a0:63:
20:0b:ac:7b:50:3f:d6:77:cb:f9:cb:0b:05:54:34:2a:42:da:
bf:dd:cc:69:52:35:b1:d0:d1:a9:8f:54:2b:66:f7:35:76:75:
ce:60:67:8d
-----BEGIN CERTIFICATE-----
MIIGJTCCBQ2gAwIBAgICM38wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwNjA5MzNaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkYyNzNEQUYxMTAvBgNVBAUTKEQ4QUEwMEFCMTU5NTE5QTZENjU2NzBE
RTlFNTk4QjczREY2QUIyQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDKcddKaqMQ6c8TwIkaZ5ltjk4q7YIlFz2wiBXmt7el5o53kJBOjG02URhSNawN
dy8cBV4u3tSrDly7M5wwKRebBYLUdwVWVWFryqiLQzQTEgn1h/Yr+7ygz6qsX4rs
58jUzzIO7PFQcZ9uJhVgYFayNFlo4pOLeb1i8cTMDDoHEj+0tegPPCYVsxo31rNM
avKmXMDOiM8uCT0KIyDuiwW+WBww3Em8ivbXUd0N5IBGwUcG/r3DYWB/QjTwPIuC
l5iE3fRnrjIA879Y3Bxjq9WFeKWpN0Rxctk3q1CWS6WifVMM6BMPSQmRX2CEeTgz
NQ89iZz+or/SjabDoSxztZ03AgMBAAGjggMaMIIDFjAdBgNVHQ4EFgQU2KoAqxWV
GabWVnDenlmLc99qssEwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZGMjczRC8zRTI2NUVGRUE4QTkx
MUVGQTVFMkMyQTA3NjJFOTUxQS8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RjI3M0QvM0UyNjVFRkVBOEE5MTFFRkE1RTJDMkEwNzYyRTk1MUEvMktvQXF4
V1ZHYWJXVm5EZW5sbUxjOTlxc3NFLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFA/swLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJm3mgwDQQCAAIwBwMF
ACwP6PgwDQYJKoZIhvcNAQELBQADggEBAAYxlOgTJPbWdcAXjaYRpkVAKWXTn+j+
DcAkkaP8MiT6B2YjbUJutlX0noZTnI4tDxfZR54cEjIZ/oXp8bxSxfBWCyHaqBH/
NiiGv6y0lnxUpaNDoJFBZNUQJCGgwd5AdrZSemw9OZOkEOWnyXqo7R+AFHUCJSTm
WOgP9pb3CKqT//j0vXY7/THMHhbyLnt/UUzbzloURjPOgfQVipUfYfHM8eHx/EkL
wDs6yAmGq9PMlENMUcGQAwH3UIKDHUPpBcXjShcckQ5IhSg2pjdE4I4JIgRIgs+g
YyALrHtQP9Z3y/nLCwVUNCpC2r/dzGlSNbHQ0amPVCtm9zV2dc5gZ40=
-----END CERTIFICATE-----
Generated at Wed Feb 5 09:57:40 2025 by rpki-client