Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/5hfTT1TsLbm6WEBc2glDH9OB8xY.cer
File: 5hfTT1TsLbm6WEBc2glDH9OB8xY.cer (raw, json)
Hash identifier: P4hRMVxZGFyoKNyNrTR96Pw8Phi6iwOImu6e09A6BaU=
Subject key identifier: E6:17:D3:4F:54:EC:2D:B9:BA:58:40:5C:DA:09:43:1F:D3:81:F3:16
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F92
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3664674/657AADAE501D11EB849EAF47F8AEA228/5hfTT1TsLbm6WEBc2glDH9OB8xY.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3664674/657AADAE501D11EB849EAF47F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:35:14 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328386
IP: 102.130.72.0/21
IP: 2c0f:ece8::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12178 (0x2f92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:35:14 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3664674AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b5:33:54:4f:77:c0:9b:86:9c:a9:c5:56:43:
c8:d4:c3:6f:3b:35:0d:c5:20:2c:cc:70:85:48:1e:
54:34:61:cf:2e:4c:0e:b5:9e:42:7e:28:16:23:56:
d9:99:fa:0e:73:28:f8:40:b6:c2:c3:83:1b:78:52:
e9:a5:69:94:69:9f:29:54:f8:38:d5:f2:5b:7d:e5:
d1:f5:07:8d:11:8a:d0:6b:52:3b:81:7f:76:ab:3b:
84:b4:b3:ee:fc:db:7f:e1:46:89:b2:8f:c9:61:aa:
f1:f8:e9:ac:36:41:e1:2e:d4:1e:94:e6:da:6b:1b:
75:1e:b4:d3:0c:15:e9:a0:f4:36:8f:f9:ff:76:87:
58:de:3e:b4:7d:c6:48:73:09:5c:0c:1d:93:6f:de:
ba:32:b5:3f:37:63:dc:11:86:e4:b7:59:e8:a0:cc:
bd:ca:db:bd:fa:33:a9:59:17:d8:2a:8f:11:a8:60:
a3:f6:45:1e:0c:cf:51:b7:60:21:b0:6c:f5:e0:f9:
63:03:82:4a:fb:74:09:b0:f4:c4:bc:b5:77:a7:34:
32:ba:4e:69:55:3f:b8:80:c4:80:f6:98:cb:21:00:
62:1d:67:77:fd:10:ec:42:91:8d:e5:55:95:d0:69:
2f:bd:16:e1:13:38:d1:b9:22:e9:95:d1:b6:04:21:
fe:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:17:D3:4F:54:EC:2D:B9:BA:58:40:5C:DA:09:43:1F:D3:81:F3:16
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3664674/657AADAE501D11EB849EAF47F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3664674/657AADAE501D11EB849EAF47F8AEA228/5hfTT1TsLbm6WEBc2glDH9OB8xY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328386
sbgp-ipAddrBlock: critical
IPv4:
102.130.72.0/21
IPv6:
2c0f:ece8::/32
Signature Algorithm: sha256WithRSAEncryption
7b:22:d4:b6:7b:7a:69:37:3a:6d:dd:10:27:92:45:dd:81:e6:
be:b1:3f:01:61:54:3a:71:70:78:62:6a:ce:49:9b:1f:ef:f0:
55:18:a5:97:71:1a:63:ca:37:e3:55:ca:0d:d8:1b:46:7c:f9:
51:e5:38:fb:7a:fa:b2:de:e6:ed:fa:a7:23:72:72:fe:a4:0a:
fe:b5:c0:4f:4d:43:b7:0b:d5:c6:65:c0:b5:79:09:61:82:9c:
e6:87:8e:d2:41:37:25:7d:f9:f2:ae:ca:c8:a8:8f:af:5a:6d:
43:3c:80:ba:8d:85:b2:1a:ae:f6:c8:4b:d0:f3:b0:cf:8b:35:
53:87:83:c3:20:26:b8:f6:d9:ce:1d:30:1b:0c:f2:b4:23:2a:
be:52:87:25:23:dd:e4:4a:d3:67:b6:54:e2:80:ed:c6:8c:ca:
dd:bc:ec:e9:b2:61:23:54:af:a4:fb:ee:0a:64:7f:a3:21:57:
27:a9:a2:72:d8:4d:42:a3:6b:1d:29:05:7f:33:1e:2a:cd:25:
04:3a:fb:17:6e:dc:25:11:43:91:60:6a:0a:9c:de:12:0f:33:
98:3f:da:54:98:ae:37:62:8a:71:9e:1c:d1:d6:c7:e9:cd:98:
07:13:33:bc:83:9c:a7:41:bd:07:a9:84:b3:88:75:9e:77:82:
4f:f0:58:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:45:48 2025 by rpki-client