Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/1DoqVLLNNnZCx2hmihOEa4nsje8.cer
File: 1DoqVLLNNnZCx2hmihOEa4nsje8.cer (raw, json)
Hash identifier: 3zEVvV9K2eWtbx9jnuye4NM4HlPooHlOgBnpg7gtfTs=
Subject key identifier: D4:3A:2A:54:B2:CD:36:76:42:C7:68:66:8A:13:84:6B:89:EC:8D:EF
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2EB2
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/1DoqVLLNNnZCx2hmihOEa4nsje8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:50:15 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 102.208.248.0/22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11954 (0x2eb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:50:15 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F364EAB0AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6c:0e:70:98:ba:5c:39:49:4d:b6:a9:ca:10:
cd:0c:26:8e:cc:aa:96:51:a7:a5:d3:c8:72:82:42:
5e:96:e0:eb:7f:47:52:d5:86:1b:be:07:e8:bb:c0:
1d:b3:cc:0a:df:b9:69:f9:32:97:84:2f:b5:e4:a9:
5d:e8:7a:df:bc:c4:b2:9e:2a:4a:9e:6f:81:3b:36:
55:88:92:a8:3c:a8:6a:33:99:1b:8b:73:33:c8:4b:
d8:85:78:a1:0e:73:57:7f:9b:50:3a:5d:3a:cd:c7:
b3:9b:ab:c3:fd:43:c4:27:c9:f7:c2:a8:fb:db:8f:
46:b5:71:d2:05:b4:8e:89:cb:f8:7b:1c:cf:51:46:
47:d1:69:7b:2e:f9:c6:f7:35:6c:bb:98:74:f0:a8:
a4:9c:9b:0f:c5:58:c5:67:ed:77:a5:43:28:66:51:
d0:1c:c0:3c:bd:dd:65:cd:bf:f2:52:11:01:ba:4a:
0f:32:1b:28:fc:4d:3e:2d:66:a6:0b:48:c6:ca:bb:
92:5d:ae:cd:29:49:3b:54:df:3f:2e:a6:62:df:a1:
4e:74:9f:b6:1e:a3:49:c9:b2:12:e8:70:a0:d2:b4:
6f:f7:a0:de:b8:88:5f:ef:27:b6:b6:f4:9e:40:37:
ad:dc:d5:16:be:6f:99:59:cc:1c:e8:0b:ec:25:75:
5e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:3A:2A:54:B2:CD:36:76:42:C7:68:66:8A:13:84:6B:89:EC:8D:EF
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364EAB0/3CAB40F448EA11EF885DEE9E762E951A/1DoqVLLNNnZCx2hmihOEa4nsje8.mft
sbgp-ipAddrBlock: critical
IPv4:
102.208.248.0/22
Signature Algorithm: sha256WithRSAEncryption
12:df:67:fe:2b:24:b5:88:6d:a9:4a:80:06:73:1c:67:14:5c:
e9:57:af:d2:a4:fc:c4:ca:52:47:9d:bd:b2:cc:45:ef:13:d1:
ec:b1:c2:08:f5:2f:a1:54:3d:64:97:53:fb:6b:ae:b4:a9:c4:
af:d6:b7:1e:5a:7f:46:91:0e:45:78:8d:75:27:a2:b9:c7:74:
bb:cc:c4:94:76:20:69:b5:8f:c9:77:2d:cc:49:60:5d:5f:0e:
15:b7:0b:0b:4f:00:80:ed:bc:f3:78:01:1b:51:f1:96:e3:d8:
83:63:28:a8:58:df:7b:40:da:7a:33:4e:30:e2:79:62:de:81:
76:10:b2:36:bb:1e:71:8f:ba:e8:b4:c2:20:62:7f:1a:b8:1a:
51:98:39:3a:d5:c3:fa:b6:10:f2:a8:a9:d2:c2:04:20:01:ad:
f5:86:da:c1:9b:a6:93:9c:cc:e5:d0:59:29:1d:05:02:b1:da:
83:a6:6a:73:72:bb:cf:c6:d3:72:f8:48:49:26:2b:0c:38:92:
10:cb:6a:c9:55:14:90:dc:fb:b9:37:0c:19:07:78:09:0c:2a:
3a:15:c0:38:38:19:ca:72:30:13:6f:c8:76:0e:10:9c:f4:32:
0f:b5:e0:00:91:1a:47:a1:55:34:0c:99:ab:c1:12:d9:9d:23:
02:c2:98:b1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:48:04 2025 by rpki-client