Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/2_aMnFwB1o68DJDe5MB0naI6L9Y.cer
File: 2_aMnFwB1o68DJDe5MB0naI6L9Y.cer (raw, json)
Hash identifier: CcyL3GGytw6fHimjzPxRMvrlIf/Y+KckorBH9nfHAtU=
Subject key identifier: DB:F6:8C:9C:5C:01:D6:8E:BC:0C:90:DE:E4:C0:74:9D:A2:3A:2F:D6
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2EFC
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36576E8/C3808986FC6111ECB17E22ABF1222468/2_aMnFwB1o68DJDe5MB0naI6L9Y.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36576E8/C3808986FC6111ECB17E22ABF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:05:19 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 327991
IP: 102.64.32.0/20
IP: 102.129.48.0/20
IP: 102.211.188.0/22
IP: 2c0f:ec48::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12028 (0x2efc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:05:19 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36576E8AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c1:fe:c4:6d:ff:df:54:c4:ba:61:7c:78:a6:
a9:62:c4:40:c7:cf:cb:8c:f4:1d:d4:69:18:ce:1e:
80:dd:bc:dd:d0:c8:fc:ac:3e:52:3f:f0:1d:31:d3:
1d:39:26:a6:83:67:60:aa:0f:8e:79:f6:27:6c:3f:
2a:db:c2:b9:ff:85:54:af:ca:08:1f:2e:2f:86:e4:
4b:28:08:f8:08:eb:b4:51:03:49:69:ac:88:c0:9e:
be:2c:d7:9b:fd:6e:e3:c4:bd:9a:94:3b:30:48:a0:
13:a8:51:bf:f7:5f:63:58:04:4d:b6:ef:f1:10:c1:
a8:12:7f:3c:15:71:fe:a7:d2:dc:13:8a:b4:c2:82:
41:63:a1:ce:5e:5a:66:8d:41:3c:09:c6:45:86:6c:
fb:57:20:7b:61:f9:09:d6:eb:ae:72:f6:b5:35:36:
b3:f3:be:e2:ef:6a:35:17:81:50:5e:ae:96:74:ef:
34:b5:21:33:68:23:e5:30:94:c0:81:48:65:3b:ed:
fc:a6:29:62:25:28:c4:13:ac:63:41:a6:68:3f:66:
9d:5c:e0:09:1a:f8:ba:20:60:fa:4c:69:41:dc:b5:
07:13:f0:6e:f6:6a:dc:25:f1:73:39:44:a3:6a:82:
68:83:df:31:57:77:3c:57:8a:89:55:c3:b7:98:19:
f7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:F6:8C:9C:5C:01:D6:8E:BC:0C:90:DE:E4:C0:74:9D:A2:3A:2F:D6
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36576E8/C3808986FC6111ECB17E22ABF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36576E8/C3808986FC6111ECB17E22ABF1222468/2_aMnFwB1o68DJDe5MB0naI6L9Y.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327991
sbgp-ipAddrBlock: critical
IPv4:
102.64.32.0/20
102.129.48.0/20
102.211.188.0/22
IPv6:
2c0f:ec48::/32
Signature Algorithm: sha256WithRSAEncryption
31:ba:71:86:fe:d1:e8:ba:64:96:b2:e0:2a:5e:9b:32:76:97:
b5:1f:55:f3:57:65:3f:7e:a8:ff:17:0b:5c:a2:aa:5e:6e:55:
11:0f:22:ae:42:6f:09:e9:f8:9b:a7:02:12:b2:14:09:b1:34:
64:a5:da:2b:ee:42:80:7b:d7:87:01:87:8e:fc:32:56:06:13:
a5:19:48:eb:dd:53:15:97:e2:d1:37:e9:f7:65:10:03:08:eb:
a7:4b:58:26:18:b1:db:83:f2:0a:79:46:71:45:cc:0d:b9:e2:
94:d7:ff:87:e0:e5:7e:71:10:11:b4:33:cb:cc:a7:c9:4e:43:
70:40:bf:bc:98:66:ea:f3:ed:aa:38:be:a8:b6:bb:8f:54:cd:
84:c7:46:c2:bf:2e:8b:ab:c6:eb:3b:a9:91:18:63:d5:2a:ab:
63:46:60:6b:1f:b1:34:f0:e0:d8:30:7e:34:cd:e8:8b:54:05:
c4:cf:7b:0e:3c:a6:93:be:5f:02:33:1b:4d:6b:2a:d8:bd:24:
64:0c:9a:7f:e9:44:c7:55:41:38:00:6d:82:ce:86:22:0d:73:
ca:76:c3:9c:e4:3d:8e:55:f5:ed:86:d5:99:a6:03:f9:ea:26:
23:3b:b3:4b:5a:84:77:87:ed:22:fe:53:41:09:8f:b8:5e:11:
a0:f8:90:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:57:26 2025 by rpki-client