Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/4V9Q3dKOAv1uaWbVkY0bC79GhOg.cer
File: 4V9Q3dKOAv1uaWbVkY0bC79GhOg.cer (raw, json)
Hash identifier: T0IVIeLtWE57fUP9+eLA2DrmQ9QHSDFPCfUZ6UozOQw=
Subject key identifier: E1:5F:50:DD:D2:8E:02:FD:6E:69:66:D5:91:8D:1B:0B:BF:46:84:E8
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3287
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C3A58/1B78C60CA8BF11EEBB3CA855775412E6/4V9Q3dKOAv1uaWbVkY0bC79GhOg.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C3A58/1B78C60CA8BF11EEBB3CA855775412E6/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:13:45 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 327921
IP: 102.220.140.0/22
IP: 154.73.128.0/21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12935 (0x3287)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:13:45 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36C3A58AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0a:27:04:68:ea:58:f5:ff:3c:dd:f1:f9:33:
a1:4c:18:42:5a:22:e5:6b:4a:18:cc:70:29:94:0b:
d6:31:7e:5e:d3:67:63:0a:3a:ef:5d:63:7e:77:e4:
10:36:4d:a9:9b:5c:50:06:6e:dc:4e:b9:59:cf:71:
ff:17:aa:c9:58:22:1d:10:86:e7:c3:c8:e8:74:35:
0a:fe:69:13:7f:7c:83:18:da:c1:c6:a6:a7:21:72:
32:d1:69:7c:fb:a4:15:7b:17:7f:bc:ae:33:26:35:
be:aa:c7:00:3e:d8:00:da:1e:df:6f:f3:34:d4:32:
26:ec:66:fb:25:2b:d8:df:94:46:9a:05:c2:a7:b6:
7d:a0:df:03:5f:df:7f:8f:e6:d4:40:60:87:82:b2:
73:71:ac:45:dd:e1:b6:ee:b6:dd:ff:3d:66:1b:15:
04:50:a3:0d:07:14:71:e0:61:cf:e3:90:8f:6d:25:
2f:d8:37:13:8f:8b:0a:1e:38:15:ed:a6:e4:4a:a7:
f9:11:a9:52:8e:4f:b4:1d:cd:05:ec:68:b9:85:cc:
6c:ab:d4:e0:e0:b6:c5:f4:0b:8e:08:76:5f:20:85:
19:5b:49:ba:02:3a:41:b8:03:75:6a:06:db:36:48:
50:5a:ac:e2:ca:ac:0b:41:ce:f7:b2:30:69:24:0a:
c3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5F:50:DD:D2:8E:02:FD:6E:69:66:D5:91:8D:1B:0B:BF:46:84:E8
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3A58/1B78C60CA8BF11EEBB3CA855775412E6/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3A58/1B78C60CA8BF11EEBB3CA855775412E6/4V9Q3dKOAv1uaWbVkY0bC79GhOg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327921
sbgp-ipAddrBlock: critical
IPv4:
102.220.140.0/22
154.73.128.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:66:70:16:e4:91:a0:e7:b5:41:25:90:92:86:18:87:b1:27:
25:ef:6d:61:1d:8f:80:9b:97:3c:5e:fb:e2:83:7f:64:4a:da:
be:af:65:0d:6e:0f:0e:f5:47:54:53:00:23:cd:f1:cc:71:a1:
02:db:c7:49:1c:1c:d7:3f:e3:8b:c9:7e:77:d7:71:88:e9:2a:
bb:05:47:c4:6f:79:ca:21:4b:fd:24:08:9c:32:ba:07:fc:fb:
8e:96:b1:d7:58:e7:74:30:65:aa:f0:60:7e:b5:d3:11:28:df:
ba:4e:06:70:c6:68:de:d5:9f:6b:6f:70:7b:45:ba:6d:66:32:
7c:f7:45:9d:96:26:a2:17:55:d2:51:fd:72:b0:d6:0e:cc:11:
5a:2e:92:ef:f2:bd:40:aa:c0:7d:5c:4e:a5:90:3e:a9:4e:e8:
e4:1c:11:a3:f7:a3:91:43:0e:2c:51:be:96:8f:54:f7:3a:ab:
ce:a8:2a:c5:36:3c:a1:0f:fa:64:7c:b1:68:d4:1a:bc:60:81:
25:22:89:c0:a0:76:e6:d2:f2:69:0f:39:07:55:e8:96:d6:15:
7a:83:dd:d1:a1:ba:28:51:4a:1d:01:6f:c2:65:1c:7a:bd:27:
57:4e:fd:81:5c:5b:a2:ef:6e:9d:ce:b6:7d:7c:ff:42:a7:e5:
4b:39:69:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:51:20 2025 by rpki-client