Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/arin/xNAUrWh1DnXpEEzqXCmztxlY_do.cer
File: xNAUrWh1DnXpEEzqXCmztxlY_do.cer (raw, json)
Hash identifier: WOaGlxZ87D4XGBBreZNRP0TH9Cs6HE/9ohH3HKj3cBc=
Subject key identifier: C4:D0:14:AD:68:75:0E:75:E9:10:4C:EA:5C:29:B3:B7:19:58:FD:DA
Authority key identifier: B8:7C:5A:75:F3:D9:57:41:3A:B9:98:64:69:46:D4:54:1D:51:14:55
Certificate issuer: /CN=ARINTOAFRINIC/serialNumber=B87C5A75F3D957413AB998646946D4541D511455
Certificate serial: 16C9
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/4273E04E21F011EEA3A2BC0F4AD9E6FC/xNAUrWh1DnXpEEzqXCmztxlY_do.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/4273E04E21F011EEA3A2BC0F4AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:00:05 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 137.255.0.0/16
IP: 160.119.144.0/22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 14 Apr 2025 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5833 (0x16c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ARINTOAFRINIC
Validity
Not Before: Jan 1 01:00:05 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F367B8D1AR
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cd:2e:ca:3a:99:f8:24:a2:15:c7:2b:3d:d7:
c3:04:18:98:aa:2e:4e:b5:7d:8e:22:45:0b:23:51:
26:a9:c2:73:c2:c9:b9:6b:1d:89:3d:e4:6c:61:03:
c1:d4:bd:d3:07:dd:17:5a:00:28:b5:0a:03:8e:a4:
06:20:64:b8:19:4c:09:fc:00:f5:b2:3c:af:79:1e:
16:ed:fb:4e:41:ca:19:bc:9b:3d:14:fe:b3:b0:67:
92:a3:b6:97:23:41:57:5a:7d:03:ac:fd:cb:12:12:
cd:da:74:5c:00:1d:ce:f7:0c:0d:29:f0:00:e0:ed:
d9:0a:82:82:78:3e:24:c5:e7:85:1c:cd:da:ef:11:
91:16:af:2b:bf:03:ab:2c:a2:c5:97:42:6d:f4:ab:
81:a3:22:b7:be:45:18:7c:b7:c6:04:4b:ea:4f:4b:
67:b1:47:5d:a3:f4:f3:05:c0:b9:e9:c8:c9:46:d8:
e2:54:75:b9:39:33:86:8b:f2:94:ef:e8:9d:21:bd:
91:8a:bd:b6:84:b3:4e:26:cd:10:e3:60:db:f9:29:
5d:f0:5f:8b:f6:66:79:d2:a1:6b:10:ae:f9:05:a3:
8a:7a:8c:b6:92:3d:c6:dd:91:5f:4c:55:10:ce:5c:
d4:5a:c9:62:14:07:26:c1:2c:9b:fc:6d:5c:4e:c1:
68:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:D0:14:AD:68:75:0E:75:E9:10:4C:EA:5C:29:B3:B7:19:58:FD:DA
X509v3 Authority Key Identifier:
keyid:B8:7C:5A:75:F3:D9:57:41:3A:B9:98:64:69:46:D4:54:1D:51:14:55
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/4273E04E21F011EEA3A2BC0F4AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B8D1/4273E04E21F011EEA3A2BC0F4AD9E6FC/xNAUrWh1DnXpEEzqXCmztxlY_do.mft
sbgp-ipAddrBlock: critical
IPv4:
137.255.0.0/16
160.119.144.0/22
Signature Algorithm: sha256WithRSAEncryption
64:c4:65:ce:02:95:56:6b:91:25:58:cb:7b:e7:d4:09:d5:16:
f9:6b:25:1a:c9:af:22:eb:db:68:f3:5f:ad:b3:3d:24:a6:fc:
c8:73:eb:83:c3:50:30:00:51:03:1d:23:92:72:51:06:7c:17:
99:ea:23:30:cd:16:ae:31:75:bc:75:a6:bd:05:0f:7a:9b:66:
6b:f1:64:86:82:3b:be:ea:02:2a:2f:63:1e:5a:55:42:be:cd:
87:d3:08:e2:af:c9:b0:05:a0:b2:dc:b0:d5:a4:3c:39:ed:31:
3b:2f:90:29:06:45:e4:90:0b:80:03:39:a1:32:6a:4d:92:be:
ce:b1:c5:c1:c7:31:73:43:54:c5:59:91:ec:ee:dc:63:13:e5:
67:fb:a0:3e:53:49:b4:0c:2c:4b:02:a7:ed:23:09:a2:f8:72:
de:38:53:50:32:a2:db:48:1e:f3:5b:5f:b2:10:11:fd:79:25:
2c:91:a1:bf:09:42:d4:9c:30:51:ae:ae:5c:87:28:db:c1:d7:
9a:04:86:fc:8a:7c:99:3b:3e:76:22:74:0a:85:51:2c:87:e7:
bd:4d:34:fd:00:50:b9:dd:f9:aa:72:33:de:8f:42:8a:77:53:
b8:81:c5:bc:41:e1:15:31:2f:c5:20:db:8c:b0:dc:99:ce:1e:
b2:7f:0e:33
-----BEGIN CERTIFICATE-----
MIIGBzCCBO+gAwIBAgICFskwDQYJKoZIhvcNAQELBQAwSzEWMBQGA1UEAxMNQVJJ
TlRPQUZSSU5JQzExMC8GA1UEBRMoQjg3QzVBNzVGM0Q5NTc0MTNBQjk5ODY0Njk0
NkQ0NTQxRDUxMTQ1NTAeFw0yNTAxMDEwMTAwMDVaFw0yNjAzMzEwMDAwMDBaMEgx
EzARBgNVBAMTCkYzNjdCOEQxQVIxMTAvBgNVBAUTKEM0RDAxNEFENjg3NTBFNzVF
OTEwNENFQTVDMjlCM0I3MTk1OEZEREEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw
ggEKAoIBAQDMzS7KOpn4JKIVxys918MEGJiqLk61fY4iRQsjUSapwnPCyblrHYk9
5GxhA8HUvdMH3RdaACi1CgOOpAYgZLgZTAn8APWyPK95Hhbt+05Byhm8mz0U/rOw
Z5KjtpcjQVdafQOs/csSEs3adFwAHc73DA0p8ADg7dkKgoJ4PiTF54UczdrvEZEW
ryu/A6ssosWXQm30q4GjIre+RRh8t8YES+pPS2exR12j9PMFwLnpyMlG2OJUdbk5
M4aL8pTv6J0hvZGKvbaEs04mzRDjYNv5KV3wX4v2ZnnSoWsQrvkFo4p6jLaSPcbd
kV9MVRDOXNRayWIUBybBLJv8bVxOwWhRAgMBAAGjggL2MIIC8jAdBgNVHQ4EFgQU
xNAUrWh1DnXpEEzqXCmztxlY/dowHwYDVR0jBBgwFoAUuHxadfPZV0E6uZhkaUbU
VB1RFFUwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wWQYDVR0fBFIw
UDBOoEygSoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi91SHhhZGZQWlYwRTZ1WmhrYVViVVZCMVJGRlUuY3JsMHQGCCsGAQUFBwEBBGgw
ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRv
cnkvMDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYXJpbi10by1hZnJp
bmljLmNlcjBPBgNVHSABAf8ERTBDMEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEW
J2h0dHBzOi8vcnBraS5hZnJpbmljLm5ldC9wb2xpY3kvQ1BTLnBkZjCCAUUGCCsG
AQUFBwELBIIBNzCCATMwbAYIKwYBBQUHMAWGYHJzeW5jOi8vcnBraS5hZnJpbmlj
Lm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5L0YzNjdCOEQxLzQyNzNF
MDRFMjFGMDExRUVBM0EyQkMwRjRBRDlFNkZDLzA1BggrBgEFBQcwDYYpaHR0cHM6
Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgYsGCCsGAQUFBzAK
hn9yc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVw
b3NpdG9yeS9GMzY3QjhEMS80MjczRTA0RTIxRjAxMUVFQTNBMkJDMEY0QUQ5RTZG
Qy94TkFVcldoMURuWHBFRXpxWENtenR4bFlfZG8ubWZ0MCQGCCsGAQUFBwEHAQH/
BBUwEzARBAIAATALAwMAif8DBAKgd5AwDQYJKoZIhvcNAQELBQADggEBAGTEZc4C
lVZrkSVYy3vn1AnVFvlrJRrJryLr22jzX62zPSSm/Mhz64PDUDAAUQMdI5JyUQZ8
F5nqIzDNFq4xdbx1pr0FD3qbZmvxZIaCO77qAiovYx5aVUK+zYfTCOKvybAFoLLc
sNWkPDntMTsvkCkGReSQC4ADOaEyak2Svs6xxcHHMXNDVMVZkezu3GMT5Wf7oD5T
SbQMLEsCp+0jCaL4ct44U1AyottIHvNbX7IQEf15JSyRob8JQtScMFGurlyHKNvB
15oEhvyKfJk7PnYidAqFUSyH571NNP0AULnd+apyM96PQop3U7iBxbxB4RUxL8Ug
24yw3JnOHrJ/DjM=
-----END CERTIFICATE-----
Generated at Sat Apr 12 08:05:28 2025 by rpki-client