Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/HD250CDCm_5JEPoUqlAU9gSkJn8.cer
File: HD250CDCm_5JEPoUqlAU9gSkJn8.cer (raw, json)
Hash identifier: gZAckfQONMIUAqmNiBUmj2jGsqV7Njj1frX7JrNBhQI=
Subject key identifier: 1C:3D:B9:D0:20:C2:9B:FE:49:10:FA:14:AA:50:14:F6:04:A4:26:7F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3183
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:17:34 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328622
IP: 102.223.232.0/22
IP: 2c0f:ebf0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12675 (0x3183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:17:34 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F369E2BDAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:aa:14:42:da:f8:6f:00:21:71:63:35:a4:b9:
3e:ef:68:5c:05:fc:3d:09:92:68:9a:a7:b3:ce:7d:
6d:28:e2:48:14:6c:43:40:a7:cd:02:cf:68:f7:34:
ff:ad:52:85:49:fe:c1:76:1b:aa:bf:c1:00:c9:63:
42:ea:6f:76:da:9c:11:e2:4d:db:c6:28:8e:30:0b:
cc:d3:0c:67:7b:1b:e8:5a:93:ef:a2:7f:60:ab:fb:
d1:7e:a5:82:b9:ca:a7:99:1b:e7:d3:53:03:8d:84:
6b:a4:ff:10:bd:81:e0:5d:cc:0f:99:ee:e7:4c:94:
1e:46:9b:a6:8b:05:fc:1b:9d:86:ec:82:9e:99:cd:
b9:70:b6:46:32:e5:31:72:30:00:5f:6d:14:51:da:
80:92:85:f0:e4:bd:eb:4a:13:e2:c0:a5:73:94:8b:
96:36:40:54:5e:05:24:8c:4d:0b:56:a9:da:89:82:
c5:42:75:93:ca:eb:94:02:c4:a8:e5:b3:24:d8:9c:
d0:f1:1e:d0:35:49:2c:3e:37:0d:1d:08:bc:b3:bd:
ce:de:c6:4c:34:47:81:44:22:65:6a:4a:d2:3b:3f:
9a:ae:b7:4b:08:6d:36:25:bc:de:94:05:88:4d:bd:
45:bf:5b:55:3f:f3:d0:b3:2e:a2:36:17:6d:af:5d:
c7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:3D:B9:D0:20:C2:9B:FE:49:10:FA:14:AA:50:14:F6:04:A4:26:7F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F369E2BD/00F29B8E594311EABDC6E160F8AEA228/HD250CDCm_5JEPoUqlAU9gSkJn8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328622
sbgp-ipAddrBlock: critical
IPv4:
102.223.232.0/22
IPv6:
2c0f:ebf0::/32
Signature Algorithm: sha256WithRSAEncryption
0a:c0:35:f1:f8:5a:b4:29:8e:88:29:67:6d:a4:61:78:b0:a3:
c8:4d:34:27:57:01:04:84:c5:7f:08:cd:a1:e6:20:8d:49:6a:
05:b0:2d:cc:ef:84:6a:66:7d:08:c0:93:76:66:58:12:3a:86:
e5:b3:86:90:5e:26:d1:83:52:34:56:f3:46:40:6a:b0:85:23:
17:55:5f:30:6d:cb:b6:08:ab:82:30:ee:ad:28:05:32:32:56:
c2:fd:f4:e7:11:cd:66:a6:34:1a:24:b5:e8:af:a9:9a:da:b8:
70:62:94:0f:cd:7d:f4:ca:11:06:e7:d4:46:a7:b3:a3:54:4f:
fa:cf:de:44:be:f8:34:be:0e:13:5f:80:98:a2:30:3c:85:ae:
b0:da:1b:92:c5:c3:1b:8c:27:a3:8c:a4:7a:10:92:4b:80:e2:
6d:94:91:8b:32:5b:25:87:c3:63:83:59:e5:0e:57:4f:3c:93:
0e:29:9b:d6:d9:98:49:07:f1:7e:69:55:a6:e6:d5:6a:ae:f3:
a5:58:75:75:22:ee:10:61:36:23:b7:27:e9:46:7d:12:c6:fe:
40:c6:b7:33:f3:ef:db:0b:66:a0:4b:31:57:d5:c8:74:53:3f:
66:1b:04:05:73:fc:24:89:fa:2d:88:b2:cf:7c:73:e4:94:02:
6e:b5:9f:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:34:28 2025 by rpki-client