Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/KSWEoez-KvMJMi1y5i2NXGpe968.cer
File: KSWEoez-KvMJMi1y5i2NXGpe968.cer (raw, json)
Hash identifier: q5bt9ZOTe9gTK+qvkox6TYrkLcBCzGJjMmFzLEpKAAQ=
Subject key identifier: 29:25:84:A1:EC:FE:2A:F3:09:32:2D:72:E6:2D:8D:5C:6A:5E:F7:AF
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E72
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/KSWEoez-KvMJMi1y5i2NXGpe968.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:37:18 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329206
IP: 102.209.20.0/22
IP: 102.213.4.0/22
IP: 2c0f:7580::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11890 (0x2e72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:37:18 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F364791EAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a0:47:bb:ff:b3:91:b7:e6:49:81:2e:e1:35:
34:71:1c:80:9f:f8:0d:79:49:8b:59:6b:75:4b:6d:
bd:e9:e3:bb:f8:f0:49:4b:4b:cc:02:91:4d:05:06:
bb:43:e5:5e:14:ca:98:39:13:c3:74:0e:49:15:c6:
e0:58:7f:50:48:0d:66:da:58:85:11:a0:f4:0d:86:
9e:2b:28:e3:d0:cd:b9:91:b4:6c:a0:fd:47:f9:21:
39:d1:7e:16:89:00:b0:6a:ad:2c:81:bf:12:78:c0:
e3:08:e1:aa:be:ef:b4:53:c2:e2:ee:39:e4:e4:34:
c6:67:06:ae:43:28:a5:ac:fd:a4:b2:06:80:88:91:
24:bf:72:8d:ac:8c:1e:9f:4d:4f:e3:04:88:c8:69:
18:e0:03:45:a3:c0:56:0b:27:58:0b:7f:26:51:44:
e4:91:2f:62:a7:c7:23:c7:b7:b4:6a:03:50:e6:03:
e2:14:6b:ad:97:19:78:af:16:36:d2:97:5d:58:48:
38:43:e6:74:55:58:28:a9:ed:31:f4:7d:b8:e7:9e:
a3:29:de:f8:1e:8f:7e:c9:a0:dd:f5:07:fa:12:2d:
46:ab:8a:01:75:0b:6e:72:61:6f:34:42:fa:85:1b:
b3:eb:24:6c:b9:32:85:92:87:af:1c:82:4f:59:48:
ff:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:25:84:A1:EC:FE:2A:F3:09:32:2D:72:E6:2D:8D:5C:6A:5E:F7:AF
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/KSWEoez-KvMJMi1y5i2NXGpe968.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329206
sbgp-ipAddrBlock: critical
IPv4:
102.209.20.0/22
102.213.4.0/22
IPv6:
2c0f:7580::/32
Signature Algorithm: sha256WithRSAEncryption
97:4c:60:2d:46:33:98:35:89:5c:2d:36:07:4f:db:8c:c8:7c:
75:20:3a:10:ce:e8:f9:e6:50:5c:20:13:6a:d0:5d:94:a2:50:
0e:ef:46:e6:02:d9:c1:6e:d2:69:bd:45:0d:9c:9e:e0:d1:81:
76:b8:0b:f5:88:f5:5c:7b:b1:da:c8:c4:a9:db:12:ca:3f:8e:
f8:34:8d:5f:d6:34:3b:81:4a:a2:5d:3d:b1:7d:70:21:3b:18:
19:f0:9a:b3:a1:73:66:9c:e3:fa:6d:af:2b:8f:fd:72:47:a4:
31:b2:80:85:3f:3f:f6:8b:25:cd:ea:18:c8:ed:13:48:7a:a9:
c1:b7:fe:e8:0c:37:45:55:19:d0:59:db:72:ce:a7:95:e5:df:
be:65:ac:2d:68:21:b6:6c:80:a3:ae:87:d4:32:43:25:a3:d7:
0f:e4:a6:60:51:29:a5:65:6b:39:77:fb:6a:1e:cc:bf:d9:0b:
59:ca:d1:1e:2f:9e:2d:25:ee:d1:9f:2b:8c:8b:93:02:06:f3:
e0:0a:02:0d:a9:ad:30:4a:14:c0:f8:f1:5a:66:87:38:dd:fc:
9b:88:94:3a:c0:0f:56:62:bf:f3:82:63:83:a1:a9:fe:54:6f:
e4:f4:de:d8:8b:76:7a:94:40:74:39:40:cb:35:06:3c:c0:62:
ee:84:92:40
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:50:13 2025 by rpki-client