Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/KxftsiWoqa1OodSC-tfzt4JwvaQ.cer
File: KxftsiWoqa1OodSC-tfzt4JwvaQ.cer (raw, json)
Hash identifier: DNcn1n3F6u7PaSEDPF+SLO3Dxh5PLKOX0FvF/qqJ99s=
Subject key identifier: 2B:17:ED:B2:25:A8:A9:AD:4E:A1:D4:82:FA:D7:F3:B7:82:70:BD:A4
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3015
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36746EB/0C564C5E5E4711ECB9A1AED95A40D577/KxftsiWoqa1OodSC-tfzt4JwvaQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36746EB/0C564C5E5E4711ECB9A1AED95A40D577/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:01:39 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328978
IP: 102.219.23.0/24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12309 (0x3015)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:01:39 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36746EBAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ee:2c:ca:ab:d4:80:1e:2a:62:4e:af:42:b1:
75:25:5b:c6:23:d6:5a:04:59:cf:f5:5c:2c:c1:53:
f2:e0:5c:6d:10:b6:3b:1c:22:dc:5c:21:fc:02:66:
2b:c1:49:71:57:5b:36:64:17:da:01:06:c2:f9:70:
f3:c0:b1:95:d8:95:cd:d4:fd:d5:75:2b:a5:57:05:
55:90:b1:de:3a:e2:3b:c0:2a:3a:c1:73:b9:b8:fb:
2f:76:37:bf:f7:f3:f9:7a:a2:fe:de:6d:c7:b4:31:
d4:1a:60:51:6e:87:43:aa:58:32:d5:f9:a5:33:cc:
c9:94:16:de:c8:c1:33:e3:3e:3c:79:a0:ce:30:9c:
62:4d:9e:18:44:c4:11:6b:ce:a8:db:32:0b:d6:60:
b6:06:aa:e3:5e:32:e7:a8:4e:59:c1:00:ad:0d:af:
a9:6a:44:8a:51:30:55:99:64:15:26:9f:8b:37:0b:
e7:17:e9:08:76:e7:d8:e7:19:db:4e:40:c2:6e:9b:
8d:47:4a:72:ee:84:10:05:70:cb:04:c1:f1:8c:a9:
56:37:b5:7b:9a:3c:5d:98:5c:86:19:39:5b:e3:a2:
c4:df:a8:d8:30:8d:e2:c5:97:1d:4b:3b:62:0a:b9:
0c:50:b0:e1:16:6c:6e:7b:8a:7b:10:f2:cd:5a:0f:
6c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:17:ED:B2:25:A8:A9:AD:4E:A1:D4:82:FA:D7:F3:B7:82:70:BD:A4
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36746EB/0C564C5E5E4711ECB9A1AED95A40D577/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36746EB/0C564C5E5E4711ECB9A1AED95A40D577/KxftsiWoqa1OodSC-tfzt4JwvaQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328978
sbgp-ipAddrBlock: critical
IPv4:
102.219.23.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:b0:69:60:5b:16:68:e5:75:6b:05:63:a7:d6:1d:4d:c6:be:
41:1b:ed:a4:ec:0b:6b:94:e3:55:5d:44:7e:15:c7:58:4c:55:
75:47:8a:1c:f3:c2:5c:78:e9:d9:30:1b:cd:5d:61:23:2a:7e:
6a:ab:75:9e:de:21:8b:72:86:21:a6:be:ba:38:0f:60:72:b9:
23:b4:15:6d:2e:1a:fe:2a:a6:03:cd:22:56:e4:65:f4:72:c6:
b2:e5:fd:bc:52:5f:c7:f4:98:c9:5c:6d:21:a2:4a:46:68:76:
14:9f:04:0c:0c:0d:26:2a:7e:5b:68:32:85:8a:e9:42:52:c6:
78:f8:ea:ae:aa:e2:e9:70:68:8e:3a:f5:cc:20:54:42:20:1d:
52:d8:a5:5a:57:ce:ce:17:56:22:83:59:61:02:01:e9:49:b5:
25:14:60:89:12:ed:54:34:ed:b5:ed:92:68:f5:b2:fc:bf:a4:
e8:29:a0:f2:c7:59:59:02:3c:54:bf:9d:c7:ef:0d:4c:34:8f:
bd:52:b4:c5:28:1d:12:51:1b:be:0f:2d:48:ce:26:7f:87:d8:
90:4e:48:98:8c:77:24:e4:30:cf:ff:00:c4:41:ea:08:03:a2:
8a:47:8a:ed:f7:d8:21:75:8c:68:f1:9d:6b:c7:8d:64:ca:c1:
ba:81:9f:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:57:27 2025 by rpki-client