Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Peh56gnhe4ORxyjbem-nsnOQS3o.cer
File: Peh56gnhe4ORxyjbem-nsnOQS3o.cer (raw, json)
Hash identifier: 2FsO2+Qw1c+4xo6P6ri8rozSUw37xvELvy6fyX95Khw=
Subject key identifier: 3D:E8:79:EA:09:E1:7B:83:91:C7:28:DB:7A:6F:A7:B2:73:90:4B:7A
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 311A
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E6D28/0192A7F2EA1D11EBB8B69A0BD8A014CE/Peh56gnhe4ORxyjbem-nsnOQS3o.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E6D28/0192A7F2EA1D11EBB8B69A0BD8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:55:26 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328720
IP: 102.222.108.0/22
IP: 2c0f:7400::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12570 (0x311a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:55:26 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E6D28AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:aa:87:c4:e8:46:34:4f:2f:86:d8:ae:75:b4:
3a:b3:ce:71:83:00:d8:1e:c4:c1:3f:9b:e7:d8:c2:
fa:eb:88:7c:01:5a:6e:cf:28:6a:f8:29:0d:3a:66:
7a:15:38:eb:2b:ea:38:14:2b:b3:2a:a1:0c:6a:eb:
0f:e4:9a:47:5e:91:7b:39:83:28:65:1d:53:5f:ae:
52:04:85:6a:b4:0c:90:b8:fc:b2:d8:e7:da:fc:f2:
13:4f:3b:8d:72:1e:7f:0d:ce:80:a5:4b:0a:4a:fe:
89:05:80:03:11:7d:36:a8:03:9b:20:76:89:b1:f7:
3b:b4:17:33:aa:7e:cf:15:3f:6c:ab:f8:6d:18:9b:
da:0d:26:3e:2d:55:ce:93:0e:f0:37:d6:6c:c0:81:
f4:fa:f4:9a:42:f1:d5:a0:ed:ba:4b:af:f9:34:ea:
e6:a5:80:08:12:05:8a:82:9c:76:f3:6d:bd:2f:fb:
f9:82:87:c4:a7:1f:c6:36:30:9d:02:41:f4:da:8a:
bc:33:40:77:db:48:5e:fc:9d:3b:9a:82:ea:60:03:
17:7a:99:c9:f7:5c:54:10:1a:ea:52:ed:10:88:99:
cc:c6:0a:ef:f5:28:cb:98:f3:e3:75:0a:c5:6a:d2:
f5:c5:19:26:19:11:3f:32:93:87:ac:b6:cb:b5:a4:
ae:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E8:79:EA:09:E1:7B:83:91:C7:28:DB:7A:6F:A7:B2:73:90:4B:7A
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6D28/0192A7F2EA1D11EBB8B69A0BD8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E6D28/0192A7F2EA1D11EBB8B69A0BD8A014CE/Peh56gnhe4ORxyjbem-nsnOQS3o.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328720
sbgp-ipAddrBlock: critical
IPv4:
102.222.108.0/22
IPv6:
2c0f:7400::/32
Signature Algorithm: sha256WithRSAEncryption
17:04:0c:4a:cf:eb:91:3c:c3:61:61:11:b4:84:7b:bd:18:7e:
48:ed:98:d1:fe:b5:8d:1a:58:49:d5:38:cb:fc:df:46:7e:94:
b1:32:94:c0:aa:00:b8:0e:6c:76:83:ab:fb:c3:d9:d8:b1:8c:
5b:f7:67:f0:4b:4c:86:18:bf:dc:f2:2c:4c:61:59:7a:2b:18:
a9:f7:20:1b:14:ed:85:a9:18:96:9f:95:a8:fd:a5:f6:74:d7:
6f:43:da:6e:e9:91:83:74:23:c5:a8:5b:0c:9f:8c:83:6e:9b:
8e:84:e8:20:13:85:a7:5f:c6:0a:33:b9:2e:21:02:87:b2:f7:
13:7f:3c:6a:49:d2:c4:0d:0a:f8:66:bf:f0:01:1d:af:6f:d4:
27:dc:45:5c:92:2f:2f:f0:df:d8:79:1c:ea:b3:ff:78:79:58:
83:b4:7d:17:c6:82:b0:0b:41:a1:a9:6b:e1:7c:0b:b8:1f:54:
18:08:1e:7e:e5:c1:05:78:06:28:3c:7d:7d:3e:11:22:00:1b:
a6:77:e9:50:61:79:d2:99:37:83:a4:3f:ef:de:cf:9a:92:e0:
20:39:5f:1a:6a:2b:7f:4c:68:04:fb:87:f5:80:a9:02:1d:14:
41:94:38:17:b1:39:f5:03:c4:4a:9a:e9:88:38:46:90:9c:23:
7d:a2:b1:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:55:22 2025 by rpki-client