Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/7XZlKQ0TEj69LBHPCH2D_1DLck8.cer
File: 7XZlKQ0TEj69LBHPCH2D_1DLck8.cer (raw, json)
Hash identifier: A8IVQVGYhyPmqsFb9DMInz+wMGIYUq43d44RNT3NAwE=
Subject key identifier: ED:76:65:29:0D:13:12:3E:BD:2C:11:CF:08:7D:83:FF:50:CB:72:4F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2EA2
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364C329/E383A4E0048D11EEA39B4C6A4AD9E6FC/7XZlKQ0TEj69LBHPCH2D_1DLck8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364C329/E383A4E0048D11EEA39B4C6A4AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:47:15 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328858
IP: 102.210.220.0/22
IP: 102.220.12.0/22
IP: 2c0f:b40::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11938 (0x2ea2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:47:15 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F364C329AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:39:4b:57:85:aa:9b:cc:49:fc:50:c0:59:93:
42:26:9f:53:4d:5f:8d:73:b3:88:5d:c3:52:2a:8c:
d4:97:8f:7f:40:cf:a9:1d:2d:cb:3c:c0:c6:1b:21:
56:18:a2:02:da:f4:c4:99:13:2a:2a:f3:7a:fb:8b:
77:0e:0f:a5:81:52:4c:fb:e1:08:05:d5:3b:c8:cf:
60:5a:9e:e8:e8:04:05:35:d3:3d:bb:c2:bc:0f:79:
0d:80:18:20:77:9f:3c:2f:b3:8d:ed:c9:89:f7:5b:
e8:35:05:4a:9d:b5:df:e1:31:82:9c:d8:7c:58:0e:
23:30:79:aa:40:b4:46:56:64:3e:d8:02:a4:b0:83:
66:c2:4c:3c:7a:18:81:a3:b1:16:1f:e3:5e:b6:a8:
7e:96:b2:87:ad:8e:07:10:23:61:19:9f:e1:26:c2:
e3:15:12:2e:de:ed:dc:11:e8:bb:29:08:9b:ea:55:
dd:d2:c4:1f:aa:4d:50:12:88:1b:eb:ed:73:90:ec:
c1:b9:48:fb:cd:bd:46:19:db:7c:bd:c0:b8:d3:91:
19:16:73:e2:19:2a:61:b6:d2:44:86:43:79:b2:b7:
ba:95:16:02:4f:ee:6b:16:7d:4d:a4:6f:6f:f4:61:
f1:11:28:16:51:80:70:7f:c4:70:5a:c1:42:d3:6a:
fd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:76:65:29:0D:13:12:3E:BD:2C:11:CF:08:7D:83:FF:50:CB:72:4F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364C329/E383A4E0048D11EEA39B4C6A4AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364C329/E383A4E0048D11EEA39B4C6A4AD9E6FC/7XZlKQ0TEj69LBHPCH2D_1DLck8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328858
sbgp-ipAddrBlock: critical
IPv4:
102.210.220.0/22
102.220.12.0/22
IPv6:
2c0f:b40::/32
Signature Algorithm: sha256WithRSAEncryption
35:f5:ed:01:dd:58:5c:3a:ef:d6:8d:44:32:e8:56:4f:9d:8e:
19:45:05:2a:43:4a:70:c9:d7:3c:ff:05:b9:88:14:94:41:4f:
60:3a:a1:55:21:7a:1c:a0:4f:63:ba:d7:1f:60:1a:de:e6:d9:
68:fb:f4:71:d5:36:74:b9:db:75:93:b1:64:58:d5:af:73:b1:
ab:29:39:01:cb:fb:de:8c:d9:7d:bb:0c:07:36:37:1a:65:e8:
dd:83:09:da:72:88:7b:a8:8b:d4:91:86:55:02:7d:ac:79:ba:
e3:cd:02:2e:04:34:70:1b:5d:61:c8:cc:30:ff:a1:99:5c:8e:
2d:7b:ee:cf:b7:bd:51:8d:e1:99:bb:c8:7c:4f:b3:cb:86:1b:
2a:c4:b4:9a:ac:7f:49:c3:a3:47:e8:ab:c8:8d:06:e0:d4:09:
ba:3e:09:2e:3d:ed:3a:d9:f3:b8:fe:fc:dd:94:4e:d8:ca:d5:
19:a2:dd:38:fb:1c:2b:47:42:e0:bb:56:5f:6e:e7:af:53:c3:
77:62:8a:e3:22:1f:b0:a6:a2:e7:4c:d9:c3:3e:1f:d0:07:4a:
04:00:88:a2:a0:2d:4a:5d:90:b5:71:1b:9f:21:65:e8:f9:1e:
b4:8b:70:ee:01:79:25:d6:93:15:61:f5:c6:8e:aa:93:70:c6:
27:42:25:a4
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgICLqIwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMTQ3MTVaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjRDMzI5QUYxMTAvBgNVBAUTKEVENzY2NTI5MEQxMzEyM0VCRDJDMTFD
RjA4N0Q4M0ZGNTBDQjcyNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDYOUtXhaqbzEn8UMBZk0Imn1NNX41zs4hdw1IqjNSXj39Az6kdLcs8wMYbIVYY
ogLa9MSZEyoq83r7i3cOD6WBUkz74QgF1TvIz2BanujoBAU10z27wrwPeQ2AGCB3
nzwvs43tyYn3W+g1BUqdtd/hMYKc2HxYDiMweapAtEZWZD7YAqSwg2bCTDx6GIGj
sRYf4162qH6WsoetjgcQI2EZn+EmwuMVEi7e7dwR6LspCJvqVd3SxB+qTVASiBvr
7XOQ7MG5SPvNvUYZ23y9wLjTkRkWc+IZKmG20kSGQ3myt7qVFgJP7msWfU2kb2/0
YfERKBZRgHB/xHBawULTav3xAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU7XZlKQ0T
Ej69LBHPCH2D/1DLck8wHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY0QzMyOS9FMzgzQTRFMDA0OEQx
MUVFQTM5QjRDNkE0QUQ5RTZGQy8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NEMzMjkvRTM4M0E0RTAwNDhEMTFFRUEzOUI0QzZBNEFEOUU2RkMvN1habEtR
MFRFajY5TEJIUENIMkRfMURMY2s4Lm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFBJowNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAJm0twDBAJm3AwwDQQC
AAIwBwMFACwPC0AwDQYJKoZIhvcNAQELBQADggEBADX17QHdWFw679aNRDLoVk+d
jhlFBSpDSnDJ1zz/BbmIFJRBT2A6oVUhehygT2O61x9gGt7m2Wj79HHVNnS523WT
sWRY1a9zsaspOQHL+96M2X27DAc2Nxpl6N2DCdpyiHuoi9SRhlUCfax5uuPNAi4E
NHAbXWHIzDD/oZlcji177s+3vVGN4Zm7yHxPs8uGGyrEtJqsf0nDo0foq8iNBuDU
Cbo+CS497TrZ87j+/N2UTtjK1Rmi3Tj7HCtHQuC7Vl9u569Tw3diiuMiH7CmoudM
2cM+H9AHSgQAiKKgLUpdkLVxG58hZej5HrSLcO4BeSXWkxVh9caOqpNwxidCJaQ=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:52:19 2025 by rpki-client