Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.cer
File: gNQ1u8dwlOhbe_MIJYDRJ7kQd54.cer (raw, json)
Hash identifier: iFLCJiNyUBG65w7hwc1t7uFe9MAa+nOT9U0Xu6uomf8=
Subject key identifier: 80:D4:35:BB:C7:70:94:E8:5B:7B:F3:08:25:80:D1:27:B9:10:77:9E
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2EDE
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:59:18 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328331
IP: 102.135.168.0/21
IP: 2c0f:eb78::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Apr 2025 00:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11998 (0x2ede)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:59:18 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3654AD1AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:df:4c:81:2c:00:5c:04:05:d7:d0:19:e2:9e:
25:da:86:f3:8e:70:5f:f6:32:21:2d:2e:ef:ab:7a:
d1:97:2c:11:c1:3d:17:2e:8a:eb:83:38:de:29:78:
e3:2f:6c:da:fd:42:ff:8b:19:07:59:58:ca:30:90:
ec:d9:36:f0:6b:0a:01:92:24:e5:33:ef:9b:f7:d4:
99:b4:6e:44:ae:6d:d6:23:e6:31:d2:96:f9:c7:bc:
d2:00:b9:6b:e3:20:97:57:3c:35:0a:cd:f8:4a:81:
78:e2:ab:47:21:0d:83:da:b8:9f:cc:0e:ed:73:90:
ca:71:3b:5e:55:96:6a:66:34:c7:21:97:b9:e2:6c:
94:98:d8:ac:ef:97:77:f1:86:28:94:cf:e0:fd:06:
53:bf:13:61:e6:c2:32:b3:9f:23:25:12:19:7f:5c:
98:ad:d4:85:ef:6f:cc:ae:79:c3:61:6a:7a:75:a1:
6f:b7:b7:0b:34:30:ad:fb:8e:1a:5e:a1:ab:4d:1e:
d4:72:2c:10:e9:4f:ea:e8:bc:15:77:82:91:ea:39:
e1:08:b2:aa:dc:a9:2a:9c:1b:d9:42:ea:0b:44:9f:
a4:cf:69:a0:ad:b5:c3:f8:06:19:de:50:38:de:09:
5c:a9:19:9e:72:e9:65:74:81:75:37:3b:84:5b:a1:
ce:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:D4:35:BB:C7:70:94:E8:5B:7B:F3:08:25:80:D1:27:B9:10:77:9E
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3654AD1/228F5B32CF0111EE94F586B9775412E6/gNQ1u8dwlOhbe_MIJYDRJ7kQd54.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328331
sbgp-ipAddrBlock: critical
IPv4:
102.135.168.0/21
IPv6:
2c0f:eb78::/32
Signature Algorithm: sha256WithRSAEncryption
4c:0c:0e:b9:65:87:d6:ff:51:01:8f:61:ee:dc:92:42:30:99:
86:d1:f6:db:07:c5:45:ec:1b:48:a6:35:72:fe:a8:6a:f6:f7:
d3:05:be:61:e2:83:32:71:0e:88:88:50:f9:b8:bc:9d:96:a7:
e1:1e:e9:32:5b:e0:7d:c6:b6:d3:c3:25:d0:b4:2f:b9:eb:44:
4e:7d:97:da:67:4f:13:ec:25:77:71:38:64:08:f0:00:bf:9d:
91:a3:ef:56:1e:8c:2c:d2:d3:59:19:a2:b1:ab:6d:1e:c7:bf:
dc:64:cc:e7:ee:fb:8f:d2:d5:64:f2:b4:41:ba:0b:25:cb:0f:
1f:6a:a3:ce:85:d5:4c:28:2e:8a:2d:ed:69:aa:cb:db:78:58:
de:59:f4:86:9c:01:d8:c7:a0:48:19:cc:3e:76:59:11:04:9e:
fb:8d:2e:21:cf:2d:f5:51:bd:98:ea:0c:18:2d:dd:ea:6e:14:
12:47:c0:7a:11:91:10:44:e6:c3:8c:6d:2b:23:51:da:ed:b4:
27:a1:9c:45:51:81:2c:5c:b3:2b:77:dd:e5:34:10:00:42:f3:
1d:42:34:fa:cc:6d:3f:e6:ba:83:1f:84:be:34:1c:e3:f0:5f:
2d:83:b9:68:70:48:6c:f2:ce:9b:c1:a4:69:82:08:f3:1b:80:
5f:10:e0:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:52:18 2025 by rpki-client