Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/0JparVoXc9hrHSbdXRxET8ys9uQ.cer
File: 0JparVoXc9hrHSbdXRxET8ys9uQ.cer (raw, json)
Hash identifier: 2NejskFBZ67SzMaWiRRIa01hAsH7zcAYeHVilov/Q2w=
Subject key identifier: D0:9A:5A:AD:5A:17:73:D8:6B:1D:26:DD:5D:1C:44:4F:CC:AC:F6:E4
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2CFD
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/0JparVoXc9hrHSbdXRxET8ys9uQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:15:57 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37153
IP: 41.72.128.0/19
IP: 41.203.0.0/19
IP: 41.204.192.0/19
IP: 154.65.96.0/20
IP: 196.22.132.0 -- 196.22.143.255
IP: 196.40.96.0/20
IP: 197.189.192.0/18
IP: 197.221.0.0/18
IP: 197.242.64.0/19
IP: 2c0f:fce8::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11517 (0x2cfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:15:57 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36180A1AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:29:2a:50:1f:e9:4c:1d:c0:b8:2a:6c:3c:e1:
8b:47:86:61:18:57:e9:35:47:f9:38:4b:82:c1:8f:
86:fb:13:97:83:bf:ca:63:81:ca:f4:ca:f9:76:e2:
40:a9:00:57:45:78:a4:5f:b7:dd:4c:c3:1c:a7:e3:
aa:84:e8:dc:e6:37:76:67:2a:b9:bf:9a:60:8b:0d:
22:a8:e3:a2:75:07:87:c8:ed:42:0f:1a:3a:4d:64:
1d:f9:d1:3b:9a:be:0f:f4:f1:75:46:8b:10:31:6a:
d5:9b:57:a1:66:4d:15:04:6d:2b:2d:33:6e:7d:28:
28:7c:36:58:38:fc:44:72:44:d0:fc:b0:53:0f:ed:
fe:91:eb:88:05:86:e2:2a:52:82:22:16:2a:58:ff:
1e:7a:12:b1:c7:25:ee:7c:24:b0:e4:e9:0f:0f:27:
13:4c:f4:66:ae:7f:d7:98:91:08:34:90:ce:b0:9f:
2b:31:70:54:96:8f:7c:08:aa:18:b1:27:98:8e:d2:
1f:71:c6:f6:11:e9:f9:ce:cc:6a:f7:5a:47:bc:37:
77:c1:e7:74:0e:41:f2:e1:c5:4f:38:00:54:e7:ad:
a7:b3:84:17:d9:0b:34:de:cc:dd:56:6e:3d:dd:f3:
43:4c:e2:9c:38:09:dc:03:37:63:cf:aa:8c:18:c8:
ab:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:9A:5A:AD:5A:17:73:D8:6B:1D:26:DD:5D:1C:44:4F:CC:AC:F6:E4
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36180A1/4EB508143F5A11EFB5925070762E951A/0JparVoXc9hrHSbdXRxET8ys9uQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37153
sbgp-ipAddrBlock: critical
IPv4:
41.72.128.0/19
41.203.0.0/19
41.204.192.0/19
154.65.96.0/20
196.22.132.0-196.22.143.255
196.40.96.0/20
197.189.192.0/18
197.221.0.0/18
197.242.64.0/19
IPv6:
2c0f:fce8::/32
Signature Algorithm: sha256WithRSAEncryption
03:1f:be:b1:5d:7c:fb:a8:e0:3f:75:df:0d:ba:72:62:e7:1b:
85:d7:f7:80:3d:73:2b:f1:62:2d:0a:30:37:04:3a:2c:9c:c3:
c9:14:3e:24:31:a7:c5:c4:f0:9e:a7:2e:75:17:f9:6c:f8:26:
03:da:66:4e:86:2b:31:f9:81:7e:f6:97:3b:1c:40:73:02:3a:
58:a9:1b:8e:5f:e3:4e:c1:e7:a8:16:c9:af:08:8e:db:85:24:
18:ce:b3:78:03:99:86:43:ae:f7:a6:93:ba:1b:e0:61:72:02:
52:f3:a3:9a:b9:5c:05:0b:2c:e0:42:12:f5:67:85:c4:37:e1:
98:c6:a0:6f:ef:45:bc:a3:67:01:6e:ba:99:c0:43:dc:f6:82:
74:5a:11:4a:20:38:e1:54:76:af:c3:2e:94:b2:ac:d3:8e:97:
c3:71:57:86:e8:07:b2:db:39:e3:7f:0f:fc:86:0a:7d:8d:1d:
d7:8e:5d:23:e1:94:2d:90:1e:ee:7c:1f:8a:9a:30:07:18:d8:
dd:8d:5a:ee:cd:b7:57:cc:0d:23:df:8f:5a:0b:ed:ff:b6:f4:
66:2c:ff:11:2b:3b:07:4d:81:6a:db:8e:6b:a9:0f:10:fd:3d:
b8:32:f8:e9:e4:eb:8a:fd:ae:4b:4f:b4:7f:d9:bb:c6:9a:1d:
9e:74:e8:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:40:32 2025 by rpki-client