Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.cer
File: 4vtkN7TJTV9RIhsWUFY6SP9Uvgk.cer (raw, json)
Hash identifier: XMvo/gsbESLjsfIgwlU3v6Pk1L+YtL6KSoILZUH4rWk=
Subject key identifier: E2:FB:64:37:B4:C9:4D:5F:51:22:1B:16:50:56:3A:48:FF:54:BE:09
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3262
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:05:44 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 25543
IP: 41.138.96.0/19
IP: 41.203.224.0/20
IP: 154.66.160.0/20
IP: 196.28.240.0/20
IP: 2c0f:fd80::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12898 (0x3262)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:05:44 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36C01B9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:54:e6:5d:d8:5d:7f:93:e6:9c:4f:5f:db:84:
05:64:ce:5e:1e:09:61:a8:b9:0b:eb:4f:8b:37:42:
ae:ff:2f:f0:4f:2f:24:8c:8f:7a:d0:1b:55:c2:7d:
ed:28:b9:f8:d6:82:d3:60:56:05:81:9a:fb:b3:d9:
ad:c4:f8:62:2e:b8:2e:e4:d4:7d:b4:7a:54:89:3a:
54:1f:fa:99:4b:96:16:c3:1e:17:d6:13:c2:0b:2c:
70:fc:ca:11:4a:e1:c5:80:7c:3a:54:50:d6:7c:4c:
10:86:e6:68:ff:f5:4d:e7:d5:e6:c1:ea:16:2d:27:
6d:64:98:1b:c9:e6:40:73:f4:09:6e:ac:63:e6:e1:
29:de:53:9a:58:b5:e3:d2:e5:4a:ce:51:97:d5:59:
2f:7f:96:0b:82:07:21:7f:db:56:7a:c9:f0:05:d2:
b9:c8:3e:25:af:18:ba:cb:6b:2d:3f:32:a0:09:3f:
0a:11:0e:b6:2c:29:b2:20:ca:bc:55:74:e2:46:a2:
ae:f6:9f:d0:af:e3:08:4c:de:56:b4:24:10:06:b6:
ab:49:90:d0:3c:df:92:f0:56:e2:49:9e:d1:57:fc:
2d:14:6f:fa:7e:84:5d:e4:8b:59:54:a3:2d:75:03:
90:73:09:71:3e:31:86:45:00:94:dd:2e:53:bd:48:
8b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:FB:64:37:B4:C9:4D:5F:51:22:1B:16:50:56:3A:48:FF:54:BE:09
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C01B9/895D9300DA2E11EEA0B0C4A6775412E6/4vtkN7TJTV9RIhsWUFY6SP9Uvgk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25543
sbgp-ipAddrBlock: critical
IPv4:
41.138.96.0/19
41.203.224.0/20
154.66.160.0/20
196.28.240.0/20
IPv6:
2c0f:fd80::/32
Signature Algorithm: sha256WithRSAEncryption
2f:aa:1b:15:a0:49:ea:f6:0c:4a:58:13:ef:9e:9c:5b:75:6e:
1b:4e:85:f2:e9:6d:64:b7:ee:be:ec:03:fb:3a:a5:27:26:6e:
35:62:03:00:ca:56:ce:c4:b5:be:0a:a2:a0:c5:36:13:c9:4b:
1a:58:52:96:73:f3:18:0f:24:2c:e2:41:6d:c2:6a:9f:ef:4a:
c8:b6:f4:c4:b5:0d:26:a8:74:44:8b:05:df:ef:0e:67:87:f7:
3f:63:b8:a2:5a:37:76:5c:8c:48:50:5c:db:41:d9:4f:fc:37:
ed:fd:9d:66:29:6a:7e:2a:7d:ad:7b:24:9f:05:84:09:b7:8b:
76:1a:0f:bd:94:72:65:0b:67:90:77:cb:34:08:00:b3:9d:f2:
d4:79:73:9b:da:58:33:d6:d3:a3:60:c0:5d:92:00:02:b0:5a:
b5:45:9f:c4:4b:25:be:c5:dd:fe:77:d8:f9:ce:66:dd:8f:af:
3b:5b:6c:f0:db:b2:2a:11:6f:17:f3:5e:fd:19:b3:3c:b7:6b:
d2:6e:a5:91:63:c5:85:28:cd:08:aa:10:dc:b1:ab:66:ae:94:
4e:f1:50:d3:80:65:c2:bc:aa:2a:15:fa:80:16:50:8c:51:96:
45:32:20:c8:85:53:8d:5e:bc:ea:30:2a:87:d1:4a:9b:22:48:
f6:e0:03:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:47:01 2025 by rpki-client