Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/EpiStZvukL-kaOVEXErR0BaeEdk.cer
File: EpiStZvukL-kaOVEXErR0BaeEdk.cer (raw, json)
Hash identifier: 2YSPf9ZCrF6lLTQWrCzni4WOHJvC8efRxejoIXvcWUI=
Subject key identifier: 12:98:92:B5:9B:EE:90:BF:A4:68:E5:44:5C:4A:D1:D0:16:9E:11:D9
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 30D2
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3689E12/6C60968A6A3811EBA7C88C32F8AEA228/EpiStZvukL-kaOVEXErR0BaeEdk.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3689E12/6C60968A6A3811EBA7C88C32F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:40:40 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328735
IP: 102.222.136.0/23
IP: 2c0f:e9b8::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12498 (0x30d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:40:40 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3689E12AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a9:f2:8a:26:6f:1a:e2:f0:91:c6:9a:3c:2e:
e7:be:10:72:bf:1b:72:0d:58:5c:6f:b5:13:2a:b2:
d6:ab:6e:61:da:8d:cc:ce:4d:58:f3:12:db:a6:20:
ea:62:c8:ec:98:3f:33:46:00:63:a8:9f:9c:44:4c:
1a:28:c4:c6:7c:63:d1:0c:72:8d:12:16:57:e7:51:
b0:cc:b9:90:93:8b:89:3f:b1:6b:48:76:8d:36:63:
3c:65:bc:cb:89:47:5f:71:be:ef:8b:63:54:38:86:
86:73:b9:80:1f:7d:50:20:d8:3d:8d:25:fa:72:97:
83:21:67:7c:cf:9b:95:a6:ea:92:3e:61:58:c8:98:
97:ec:9b:4e:77:f4:2e:fb:f6:7e:e6:45:e4:b6:a0:
a4:85:94:fd:26:61:2d:bd:33:67:59:ad:a7:95:9c:
d6:65:da:73:d9:cf:33:86:54:cc:6c:f7:18:19:3f:
bc:08:10:51:6d:72:57:5e:ec:5a:2c:00:ec:91:41:
f4:55:14:7b:3f:61:9d:6d:24:dd:4e:93:b2:40:9d:
3c:08:82:74:bb:fd:3d:e3:77:79:0f:e0:28:7f:2c:
f6:03:a2:01:29:cf:70:c4:b1:0a:38:8e:8f:0e:33:
15:39:6a:e7:4a:0b:bc:e1:9f:f8:6a:c1:1c:e3:fe:
4b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:98:92:B5:9B:EE:90:BF:A4:68:E5:44:5C:4A:D1:D0:16:9E:11:D9
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3689E12/6C60968A6A3811EBA7C88C32F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3689E12/6C60968A6A3811EBA7C88C32F8AEA228/EpiStZvukL-kaOVEXErR0BaeEdk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328735
sbgp-ipAddrBlock: critical
IPv4:
102.222.136.0/23
IPv6:
2c0f:e9b8::/32
Signature Algorithm: sha256WithRSAEncryption
c6:a7:9d:44:56:3b:39:b8:82:fd:87:54:d5:75:ad:7a:b2:71:
84:0a:8c:48:43:95:08:82:81:54:bf:71:81:66:33:b8:e6:1e:
8c:c8:e7:fd:3a:54:78:e8:e8:3c:e3:d5:74:b7:03:f6:0b:29:
58:8b:5a:dc:da:05:cc:c7:28:78:f2:0e:a7:59:bb:e8:cf:0c:
99:bd:76:ee:97:ba:79:a8:1c:9e:e9:9b:7c:6e:bd:28:44:23:
2f:b4:73:58:4a:85:e6:dc:ea:fe:1c:ad:7b:01:f4:40:76:4f:
9f:c9:4b:28:13:92:f1:0d:ed:5d:14:42:36:92:58:58:ba:bf:
04:f7:3e:e4:4f:83:50:64:7f:a1:75:d8:ed:c1:41:86:ba:82:
f8:67:a8:11:ff:ce:e7:83:c1:7c:ee:41:a4:89:3c:ed:c7:ea:
44:32:90:2a:f3:f6:6a:8a:ae:a6:5e:23:0c:6c:c6:78:2b:63:
00:33:e8:df:f9:a6:1d:d1:c6:2b:7e:d0:d8:92:c0:d0:fb:a2:
c9:dc:15:dd:a3:20:3c:52:e7:5f:b5:44:80:53:cc:44:39:19:
1f:00:d0:ac:82:5d:9f:ac:00:89:88:56:d6:7f:fe:85:a6:92:
ce:9a:55:bd:60:57:e5:7c:4b:3f:05:03:01:f5:65:ff:68:f2:
0b:a1:b7:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:35:28 2025 by rpki-client