Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Poh-hWgUgzFB-ND2ZKyvbEowXUM.cer
File: Poh-hWgUgzFB-ND2ZKyvbEowXUM.cer (raw, json)
Hash identifier: E21Rr6iCOvukW+gJdihpKtdzWJRQNqrLaSbZsSnnN54=
Subject key identifier: 3E:88:7E:85:68:14:83:31:41:F8:D0:F6:64:AC:AF:6C:4A:30:5D:43
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 337B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/Poh-hWgUgzFB-ND2ZKyvbEowXUM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 06:08:35 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328242
IP: 102.23.168.0/21
IP: 154.115.156.0/22
IP: 2c0f:f1f0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13179 (0x337b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 06:08:35 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36F18B8AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:1e:e4:6f:9e:3d:d3:fc:d0:a7:33:32:77:74:
08:2b:8d:ea:21:a1:15:ee:85:a2:9d:ef:db:a3:64:
1d:ee:c3:3b:e6:c0:cd:1d:ff:65:75:45:84:a4:27:
d5:a1:c6:cf:b1:9b:95:6d:77:12:63:7e:ec:da:02:
9a:43:ef:2a:b2:9c:d1:f2:6b:e3:b4:24:8b:6e:c0:
59:cf:e6:5d:be:76:62:23:1e:21:e5:c3:f8:45:90:
17:93:6e:ca:e8:bf:6e:48:c0:b9:86:17:75:72:a8:
5c:aa:d0:e6:b6:0f:a7:28:2b:9c:57:89:b8:50:cb:
ed:d2:9c:3d:39:3e:7b:e7:c8:ba:2a:38:f9:a2:d5:
a3:b1:5e:a7:b4:23:4d:49:cc:0d:41:95:8e:19:ea:
75:90:a5:06:28:40:a9:23:bf:3c:38:75:f9:9f:0a:
0b:63:f5:c4:ae:f3:ef:c9:cd:db:cc:f0:4b:c9:c5:
80:47:23:ea:b4:06:04:ff:ea:30:b8:0a:6c:cc:bc:
37:a7:55:0f:a1:c1:5b:85:0c:d8:af:7e:43:0e:38:
f0:9e:c0:a7:a2:df:9b:a8:06:1d:d1:76:cd:7c:ae:
4b:5a:58:fb:12:55:65:86:c4:0d:5c:7d:da:f3:86:
6b:46:88:19:6d:d8:c8:d3:de:42:23:01:ed:4e:2f:
09:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:88:7E:85:68:14:83:31:41:F8:D0:F6:64:AC:AF:6C:4A:30:5D:43
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F18B8/E21BF354498411EAAC42AA52F8AEA228/Poh-hWgUgzFB-ND2ZKyvbEowXUM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328242
sbgp-ipAddrBlock: critical
IPv4:
102.23.168.0/21
154.115.156.0/22
IPv6:
2c0f:f1f0::/32
Signature Algorithm: sha256WithRSAEncryption
2d:6b:64:55:f8:7c:24:ec:6b:e1:a9:d2:93:b8:ee:5f:0d:65:
40:07:77:05:54:94:ed:52:07:55:05:57:79:30:2a:01:70:02:
fa:5f:51:8a:11:d3:ba:fe:15:13:f1:5b:17:40:b0:c1:cb:fa:
8b:d9:bc:5c:3d:7a:b3:21:d7:12:6b:46:8a:65:3a:9f:f2:fd:
df:29:4b:cd:17:40:5b:dc:c3:8f:5e:d0:d3:81:fc:a8:0f:be:
f4:9f:3f:5c:ab:82:14:40:e4:8d:13:60:f8:25:76:61:39:ac:
8c:f1:ae:54:9d:b4:3b:b8:c0:24:ed:33:fb:51:40:b3:d1:7a:
b0:8b:ce:64:65:78:0b:5d:07:fe:47:e9:19:5d:c3:f2:df:c6:
e6:b0:2f:34:cd:24:15:4c:9d:02:62:09:12:53:02:dd:fc:8c:
34:b8:7c:5b:22:1c:ec:8d:e6:2c:4e:b6:24:17:21:6a:fe:71:
0d:f5:28:85:eb:11:08:76:8c:da:23:06:78:96:c9:ed:9c:4e:
b8:6d:dc:bd:f6:a1:da:bc:e9:c5:46:b2:91:7e:6d:3e:5f:fd:
6f:17:01:b2:df:84:38:c5:1f:52:e0:0a:1b:ae:65:5c:37:4d:
0e:f0:d6:dc:9c:74:f9:88:3a:b8:2d:7c:9e:2f:af:37:bd:2f:
95:bf:87:b8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:33:29 2025 by rpki-client