Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/0CXaySkNvUCEbGSPrcyfxnGGtjI.cer
File: 0CXaySkNvUCEbGSPrcyfxnGGtjI.cer (raw, json)
Hash identifier: fMV0G5a1BkXpYY79lPx6CBHzFODt/uBySILEF/67Q7s=
Subject key identifier: D0:25:DA:C9:29:0D:BD:40:84:6C:64:8F:AD:CC:9F:C6:71:86:B6:32
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 304E
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F367B3F2/04BA50F009CE11EA8313CC5AF8AEA228/0CXaySkNvUCEbGSPrcyfxnGGtjI.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F367B3F2/04BA50F009CE11EA8313CC5AF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:13:22 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328206
IP: 2001:43f8:360::/48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12366 (0x304e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:13:22 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F367B3F2AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:21:2b:44:38:ca:77:9f:65:6f:b1:99:7e:5c:
19:15:56:1c:64:9f:be:13:16:f9:5b:5b:66:35:21:
4a:76:fe:8f:32:c9:72:f5:ca:49:ca:d8:17:9f:4c:
b9:ad:b0:8c:73:f7:b6:51:8c:28:fb:25:e4:fe:f9:
60:cd:fc:5a:5a:ba:07:fe:be:11:d9:b3:7f:5e:c3:
79:8c:6a:ea:c6:9a:a5:4b:79:70:57:96:12:b4:57:
ea:96:e5:db:5d:c6:ba:d3:0f:79:c7:02:5f:10:7e:
f6:a5:56:4b:26:f5:08:43:b7:c1:cf:d7:2d:d1:67:
29:78:65:73:41:22:ad:e1:f8:ac:e8:03:6b:62:6f:
a6:5f:6e:91:6a:b8:1f:be:0e:df:e2:bd:f5:f8:27:
3d:0b:6e:73:c5:35:e9:89:82:fb:8a:9f:c6:50:44:
c6:ac:55:05:43:1f:5d:96:fa:c7:6c:1a:b8:c2:a2:
33:e8:6f:25:b8:31:19:ce:3f:7a:25:e9:cd:a1:af:
34:fd:6f:ad:fa:22:74:d8:40:07:ec:37:b3:92:e7:
7f:bf:36:3e:5a:06:ea:01:8a:f6:b6:51:44:b5:8e:
45:4e:59:dc:07:72:22:eb:c8:a0:d8:65:78:23:86:
37:3a:a2:d2:e8:56:54:47:71:d5:d4:af:01:6f:35:
57:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:25:DA:C9:29:0D:BD:40:84:6C:64:8F:AD:CC:9F:C6:71:86:B6:32
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B3F2/04BA50F009CE11EA8313CC5AF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B3F2/04BA50F009CE11EA8313CC5AF8AEA228/0CXaySkNvUCEbGSPrcyfxnGGtjI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328206
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:360::/48
Signature Algorithm: sha256WithRSAEncryption
b8:2b:ca:10:bc:93:b1:09:b2:39:f6:a6:8f:b0:57:1a:13:4d:
32:9d:41:10:c0:3b:15:4b:4b:77:98:df:f6:1c:b0:3d:05:72:
bf:95:02:24:31:8a:6b:55:38:0f:4b:b5:f1:f2:fa:03:9c:d7:
99:39:3e:a5:a1:60:e6:87:1a:8b:d1:8d:e7:4c:c2:1c:5a:df:
9d:b2:b5:6e:60:db:0d:8b:43:7d:fc:a4:f6:c2:36:82:c9:dc:
a3:28:f3:e2:37:fb:c6:36:d7:1f:f7:5e:07:21:ff:ec:8b:19:
b3:75:64:f7:dc:9d:1d:7e:0f:ca:8b:71:26:a4:d9:34:c9:7d:
5b:5e:fd:b6:7a:a0:b4:80:6e:2f:70:d5:0c:19:71:4d:43:2b:
7e:56:49:15:d8:a7:13:05:33:f4:e9:5f:fe:4f:ca:11:76:27:
31:be:f8:5d:9a:ad:e5:57:0c:75:17:57:b7:eb:e0:af:b7:1b:
f2:b3:8d:e7:a5:f5:8f:27:20:d1:d3:bc:d7:5d:cd:ce:3f:d3:
41:a8:9c:ad:8f:b5:cb:00:d0:6d:b9:79:75:4b:34:fd:04:02:
2b:5a:d1:79:b4:cf:52:0d:fc:c2:6b:6b:f1:0c:87:de:16:5e:
59:92:41:97:ff:6f:06:2b:bf:c5:46:71:df:2e:20:64:0c:7e:
aa:4f:d1:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:51:19 2025 by rpki-client