Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.cer
File: Gy5x2gSuCRA5RRF_kHbH-OGZJDw.cer (raw, json)
Hash identifier: MLzwwyiFyLSBMAu0SrahTYl6O5F63B4QuQPnXoYfEmQ=
Subject key identifier: 1B:2E:71:DA:04:AE:09:10:39:45:11:7F:90:76:C7:F8:E1:99:24:3C
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 31EC
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:40:37 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328583
IP: 102.36.140.0/22
IP: 102.213.148.0/22
IP: 2c0f:6140::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12780 (0x31ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:40:37 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36AC9F1AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:aa:6f:fc:97:18:e1:13:ef:37:9e:75:36:1b:
65:90:f1:5f:99:6e:c1:60:5b:5a:44:86:24:dc:15:
3d:49:5d:ea:e6:f5:02:34:31:d2:0e:c5:06:4d:4a:
25:f7:5c:2b:7a:b1:84:db:3d:74:3b:36:8b:7a:7c:
ed:68:4c:15:58:70:da:07:88:b7:9e:a9:c2:d8:a4:
42:e5:11:16:ac:d9:85:65:20:0d:86:8d:4f:be:de:
81:3b:25:10:d6:6e:f3:d8:01:ec:90:2c:b9:94:62:
3d:00:59:92:15:32:5a:0f:2f:b8:e4:ba:d1:bf:69:
fc:71:76:f0:62:44:9c:3d:42:d9:6b:74:d5:66:c6:
72:d2:d5:b4:cf:39:23:7b:d8:b1:18:3d:be:3b:08:
f6:0b:f6:db:a7:7b:2c:c6:21:f1:d4:f2:b7:8a:74:
f9:d5:a0:fd:f2:19:03:7f:79:a7:eb:41:0a:be:f9:
75:1c:c3:b8:46:03:42:89:b4:18:bb:63:65:5b:6b:
6b:0d:b9:13:83:27:8a:d4:b3:ae:4f:b3:70:43:9e:
33:95:51:38:12:a4:dd:eb:ec:a0:de:a1:8a:7e:ec:
cb:97:3b:a2:1d:da:95:ff:5b:b6:b2:24:11:d9:00:
7f:bc:ba:ed:63:74:fa:01:6e:e7:e8:e6:f6:57:67:
fc:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2E:71:DA:04:AE:09:10:39:45:11:7F:90:76:C7:F8:E1:99:24:3C
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC9F1/91D240A6697311EFAFAC2778762E951A/Gy5x2gSuCRA5RRF_kHbH-OGZJDw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328583
sbgp-ipAddrBlock: critical
IPv4:
102.36.140.0/22
102.213.148.0/22
IPv6:
2c0f:6140::/32
Signature Algorithm: sha256WithRSAEncryption
85:59:76:84:48:53:13:14:43:dc:da:53:73:b1:b7:e3:40:99:
8d:72:b9:0c:12:7e:fa:6b:da:d0:f9:26:8b:e7:34:d7:eb:87:
0a:83:4e:61:a3:31:dc:63:c3:e0:3c:8b:19:54:0a:05:ce:5d:
da:3c:ad:6e:38:1e:63:f8:d7:53:0e:d2:02:67:02:90:87:37:
ff:d4:1e:b2:d9:0c:02:6a:1e:07:33:43:13:11:b0:d0:19:30:
5e:e9:94:07:f5:b2:df:8d:24:27:50:d3:0a:85:f9:06:7e:e8:
3c:1b:6a:49:08:23:c4:a8:cf:9c:aa:59:d5:b3:fe:85:a8:63:
8a:d4:25:c0:b8:3a:0c:74:f4:0e:71:a3:87:d8:9a:29:43:54:
47:46:7c:af:54:7c:b1:02:be:6b:c1:dd:5b:a0:09:d9:74:2d:
b2:44:3f:0c:3a:40:97:74:78:d0:54:0b:87:a0:e9:24:82:86:
95:f7:ef:9e:10:c4:9c:83:4b:2d:16:8d:e3:df:2a:1b:41:46:
c4:0e:82:a5:16:68:2f:a0:ce:58:60:68:77:be:47:f3:4e:92:
bf:2c:1d:cd:85:55:fa:60:80:7a:4d:6b:0a:a3:87:cb:78:b9:
db:18:e0:60:b8:4e:a2:e1:26:2d:a3:c7:cd:4a:d9:50:e3:11:
3a:53:ac:4e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:44:57 2025 by rpki-client