Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Po64WOYVOSGtsL9fC8lbTQbHw-8.cer
File: Po64WOYVOSGtsL9fC8lbTQbHw-8.cer (raw, json)
Hash identifier: 3Q5R9j5EHddTplxJvswQeFX/tOU6sT6idRpsRSKcMHs=
Subject key identifier: 3E:8E:B8:58:E6:15:39:21:AD:B0:BF:5F:0B:C9:5B:4D:06:C7:C3:EF
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 32B8
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/Po64WOYVOSGtsL9fC8lbTQbHw-8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:23:59 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328803
IP: 102.215.20.0/22
IP: 102.220.232.0/22
IP: 2c0f:1480::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12984 (0x32b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:23:59 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E8DA8AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:25:23:62:81:2e:1c:c5:09:81:82:f3:57:87:
77:cb:33:af:8c:24:b5:4e:c3:fb:1e:19:00:2f:cd:
ce:d4:b6:75:c1:2c:8a:bb:ec:23:7d:50:b0:2c:2f:
bd:d9:e6:dc:49:1a:34:6c:f4:2e:68:bb:bb:20:9f:
c9:e0:23:f8:46:c5:da:3f:aa:79:ec:84:3d:0f:68:
d2:71:38:02:13:a7:f1:e6:fb:6a:e3:58:aa:30:9d:
1b:b4:d0:9b:81:e6:82:61:e2:e4:2d:7d:9b:d1:3d:
41:72:30:f9:f1:ec:35:bd:2e:8c:16:b0:dd:5b:63:
d7:94:f6:48:02:1f:c3:fb:36:2f:d7:e3:85:68:d7:
b5:bf:29:5c:09:b6:05:39:c2:98:34:30:07:c3:a5:
cc:53:4f:15:a0:4b:bc:a6:59:70:e7:99:5a:51:0c:
13:4d:61:00:24:68:61:b4:98:64:e4:17:69:a4:f1:
9d:0c:d6:f8:62:99:c2:df:d8:95:39:b8:e8:bf:e3:
db:ab:61:5a:2d:b6:13:6c:29:91:90:14:c2:e8:3b:
7f:e4:b4:4b:ae:b1:d0:37:d3:49:37:00:1b:cb:fd:
a2:80:e8:4d:08:45:d8:35:70:77:8e:7e:fe:82:65:
13:10:60:f0:1f:85:42:58:78:87:85:37:f3:21:00:
d7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:8E:B8:58:E6:15:39:21:AD:B0:BF:5F:0B:C9:5B:4D:06:C7:C3:EF
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8DA8/4C970B5E495C11ED9E7604E8F1222468/Po64WOYVOSGtsL9fC8lbTQbHw-8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328803
sbgp-ipAddrBlock: critical
IPv4:
102.215.20.0/22
102.220.232.0/22
IPv6:
2c0f:1480::/32
Signature Algorithm: sha256WithRSAEncryption
26:21:03:05:18:73:6c:89:26:d7:e9:a9:3b:78:df:8f:80:bb:
c5:d4:e0:84:2e:55:87:86:08:59:4e:f7:a0:78:b4:80:70:c3:
39:cc:48:b7:0b:88:1c:35:39:9e:86:fe:6d:35:70:4d:c2:52:
d2:71:53:a0:08:97:a9:06:8b:40:9a:c5:8a:e9:8e:13:82:ff:
9b:d5:f0:f4:85:8d:cc:81:67:f4:9b:a9:b1:33:b2:92:89:f2:
35:52:7e:a8:e7:f2:cb:06:7b:dc:c8:5d:36:cb:54:60:63:df:
24:6b:da:6c:81:62:df:72:29:f2:ba:b0:76:ee:61:6d:9b:8a:
f4:fc:65:f0:be:ee:75:c8:93:b2:e1:d8:1d:15:fd:ec:91:c2:
b0:de:ee:24:c3:95:56:3e:21:de:ac:65:c9:57:0a:64:73:52:
c6:7b:4c:c0:1a:74:4c:28:84:72:7b:59:c6:d7:53:79:af:9b:
74:9e:7c:7b:19:5c:41:80:8b:b9:75:19:0a:ab:d3:aa:a2:10:
1c:50:08:89:d8:05:34:08:5a:51:e6:30:5c:54:72:f0:80:92:
96:9d:c8:cf:39:54:17:04:28:88:4e:0a:8c:e2:2c:40:f3:82:
0e:ce:a9:78:3b:f6:5b:03:48:47:02:83:fe:1b:5b:e6:93:cb:
54:a8:2a:54
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:34:27 2025 by rpki-client