Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/XKOJ-4BR0kErpd-AHYmyys5XJZw.cer
File: XKOJ-4BR0kErpd-AHYmyys5XJZw.cer (raw, json)
Hash identifier: 0w+vu65NCZcN49HulV2qx/nQX1TKmYZz54tVtdbLX+A=
Subject key identifier: 5C:A3:89:FB:80:51:D2:41:2B:A5:DF:80:1D:89:B2:CA:CE:57:25:9C
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F77
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/XKOJ-4BR0kErpd-AHYmyys5XJZw.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:30:00 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328073
IP: 102.218.196.0/22
IP: 2c0f:6d80::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12151 (0x2f77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:30:00 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3662DABAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:54:63:0c:f6:76:61:49:83:b4:6d:5c:cc:81:
2d:b3:0d:c6:54:d2:ad:5a:c3:ee:69:9e:0d:cc:26:
68:d7:a0:b3:71:48:ad:9b:d9:fb:a8:01:d5:5d:2d:
f1:41:47:46:d6:da:21:cd:ef:94:85:a5:2b:32:cf:
cf:12:2e:26:67:66:e5:90:b6:a6:6c:8d:47:17:45:
c5:3a:47:ad:5e:e1:34:24:61:81:7a:99:f7:55:a4:
12:5e:19:c3:5d:64:bb:6d:a8:d1:6f:90:db:0c:f0:
ba:00:57:af:4f:68:0a:8b:24:3e:09:3f:9d:fa:44:
3d:e4:7a:fc:e5:de:a9:ca:4c:72:d9:67:a7:f3:4c:
49:eb:96:06:2f:89:f6:c5:86:71:4e:46:e2:d4:a7:
a5:ca:e3:bd:0b:ec:04:2a:d7:f8:1d:6d:54:db:8e:
43:05:91:ad:70:d9:67:1c:be:7d:ce:69:67:18:13:
3f:b2:d7:01:0d:9b:5e:03:90:6b:6a:46:e4:b9:a3:
59:ae:fd:ac:9f:ae:3a:b1:29:68:39:22:a1:82:73:
84:f5:78:03:57:fb:02:72:9e:88:af:0a:d0:88:93:
18:29:e8:19:9c:f2:f2:18:5b:34:c7:58:30:33:bf:
75:68:d7:af:fb:9b:54:fd:ff:db:17:fd:f4:94:91:
fc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:A3:89:FB:80:51:D2:41:2B:A5:DF:80:1D:89:B2:CA:CE:57:25:9C
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662DAB/048F88108F3211EDB0EEF1B7F1222468/XKOJ-4BR0kErpd-AHYmyys5XJZw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328073
sbgp-ipAddrBlock: critical
IPv4:
102.218.196.0/22
IPv6:
2c0f:6d80::/32
Signature Algorithm: sha256WithRSAEncryption
81:52:f0:75:4e:e1:e1:66:4f:17:70:3e:dc:fd:71:65:6f:05:
fe:f2:14:0a:8d:6d:5d:24:f2:ec:c9:94:a1:5a:3d:cd:af:4b:
0b:f7:27:fa:b2:64:c1:da:f4:c9:c4:fe:66:5e:85:06:4a:52:
22:98:81:0c:62:24:a4:dc:5a:94:ff:0d:39:68:43:44:79:dd:
1c:78:1b:d2:f3:0c:ee:93:40:56:34:fb:76:b9:b6:43:8d:12:
1e:44:83:ba:a3:22:ef:4e:c0:12:a9:03:18:0f:fe:7a:2e:6a:
10:40:71:7b:39:87:83:96:55:d0:5b:9f:d9:af:e4:b3:2d:9b:
7a:fe:bc:6d:23:4d:8a:1c:36:22:e9:78:a6:38:d9:43:4a:fc:
8b:b4:d7:8e:0b:fb:03:ee:2e:ae:1d:4d:61:c5:cd:ab:81:f9:
f1:cf:69:d9:81:f8:fe:23:6a:d2:aa:d0:dc:2d:3f:ed:37:5a:
1c:c6:ea:a2:16:3e:f8:5f:5c:b0:2b:95:ac:25:b2:82:d8:dd:
25:e0:25:1e:5f:52:16:2d:e9:8c:6f:f8:45:00:b0:42:54:31:
ba:36:72:02:10:49:99:cd:15:11:9d:69:9c:96:2d:b4:25:ed:
1a:83:86:21:fd:23:67:17:8f:28:92:68:d5:a8:bf:1c:df:a6:
85:a2:0b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:20:59 2025 by rpki-client