Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.cer
File: 83fU1Cj5RlsVRJxq_UUyxCJEaWQ.cer (raw, json)
Hash identifier: O4ugI8aKttXb7wwpW/fsI2lkU3HCAe/kivRnFyDeStI=
Subject key identifier: F3:77:D4:D4:28:F9:46:5B:15:44:9C:6A:FD:45:32:C4:22:44:69:64
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3445
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 19 Feb 2025 11:13:21 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328611
IP: 102.23.220.0/22
IP: 102.207.52.0 -- 102.207.59.255
IP: 102.207.132.0/22
IP: 102.208.56.0/22
IP: 102.211.4.0/22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13381 (0x3445)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Feb 19 11:13:21 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36EF186AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:43:c0:06:12:dd:76:8a:e4:bd:e0:a6:29:cf:
2c:99:6e:dc:69:cd:5e:5f:6a:a0:d7:07:f4:e7:07:
5f:ad:64:72:3c:b9:da:de:76:06:6c:cd:aa:8e:1f:
4d:da:25:68:96:bc:6b:fc:e3:cd:0c:a6:c1:13:f6:
f9:2f:cc:b9:c0:75:b8:99:c0:e8:a0:1c:2c:72:a2:
89:3d:dc:6e:12:d8:5a:25:25:bd:19:b5:2b:b4:44:
ad:a3:58:19:dc:6c:5b:2a:5a:67:ed:7f:40:c0:c9:
23:e0:50:69:92:84:9c:b6:d5:56:4a:6f:9e:2f:19:
3e:d6:4e:00:c5:f3:5f:08:ea:6d:ad:a9:76:10:7e:
20:7a:7f:cc:0a:63:fd:55:0e:7c:eb:d9:60:92:59:
38:6d:e6:c1:0a:03:d8:74:2b:06:98:bc:f3:83:18:
a6:d3:f4:74:63:6a:c0:c0:77:78:5b:bc:dc:ac:04:
6e:78:64:5a:b7:cc:29:6d:56:11:a6:35:45:a2:f1:
91:e8:83:01:54:5b:ec:06:c9:7b:0b:77:6d:71:07:
4a:19:94:fe:1b:da:43:63:66:9b:80:0f:91:3b:79:
8c:82:77:86:7f:f1:1b:f1:f1:59:67:0c:02:20:76:
09:9f:9c:0a:17:35:1f:c2:8a:9f:59:33:39:88:e7:
d7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:77:D4:D4:28:F9:46:5B:15:44:9C:6A:FD:45:32:C4:22:44:69:64
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF186/095B7A2A548011EE8C8F332D4AD9E6FC/83fU1Cj5RlsVRJxq_UUyxCJEaWQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328611
sbgp-ipAddrBlock: critical
IPv4:
102.23.220.0/22
102.207.52.0-102.207.59.255
102.207.132.0/22
102.208.56.0/22
102.211.4.0/22
Signature Algorithm: sha256WithRSAEncryption
99:ec:85:06:2e:a2:01:69:c1:c8:49:00:51:e0:42:9c:65:6f:
33:d0:24:cc:76:1d:87:24:f4:8c:51:ec:77:17:a4:26:e6:69:
1f:de:a7:f7:d4:2e:d5:6e:7f:be:43:ef:fa:0f:da:3c:d5:40:
92:12:3a:92:09:bd:0a:79:a9:18:56:2f:20:b3:dd:ed:d0:70:
6a:b8:97:62:3b:17:ac:5a:5f:04:46:3d:dd:74:0f:a2:48:7d:
94:e9:52:87:6d:1c:5a:35:ca:81:74:4f:d8:f9:b8:95:db:85:
7f:fd:d2:58:c9:0a:93:6d:7d:64:d4:41:2f:c3:3a:f2:ae:e2:
0b:a4:22:ab:7e:ff:81:35:22:93:ce:39:26:16:46:eb:5b:61:
6b:e4:95:03:95:2a:79:a3:bb:7b:2e:ad:13:e9:de:5a:9d:d7:
1e:5f:9c:e7:f9:77:d0:cd:56:5c:3a:44:4a:9b:cd:0a:f7:ec:
75:35:2d:19:bc:c2:6b:63:29:7a:39:cb:8a:c7:ab:b3:5d:26:
84:a5:4e:67:87:2c:a2:a0:36:23:6b:6c:20:5e:43:63:ab:6a:
58:25:79:03:90:9b:66:77:6e:d0:b1:7b:e9:99:fd:dc:c1:da:
e0:c3:bb:b6:41:83:2e:f0:6a:fb:b7:c0:92:10:81:e5:b8:32:
0b:84:dd:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:52:20 2025 by rpki-client