Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/8fHKBYLoJWPuJfCZF2si382cw2Q.cer
File: 8fHKBYLoJWPuJfCZF2si382cw2Q.cer (raw, json)
Hash identifier: T962HIvfa9JF/H9Kd6YqnfUaUtLiD0QwsOocbl0EVeQ=
Subject key identifier: F1:F1:CA:05:82:E8:25:63:EE:25:F0:99:17:6B:22:DF:CD:9C:C3:64
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 326B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C08D4/A98A9E5869A811EE98A484144AD9E6FC/8fHKBYLoJWPuJfCZF2si382cw2Q.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C08D4/A98A9E5869A811EE98A484144AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:07:34 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328895
IP: 102.218.244.0/22
IP: 2c0f:5500::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12907 (0x326b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:07:34 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36C08D4AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:eb:27:fe:b7:69:d9:33:d8:be:fe:ba:c0:9b:
f8:c4:98:62:2e:d0:c9:83:97:d3:be:7a:79:f3:20:
09:9c:fc:83:20:29:2e:48:0b:ab:17:20:99:c4:3b:
53:88:cc:e3:a4:ab:e7:46:a2:80:9c:ef:37:79:19:
61:63:29:f4:d6:92:2a:ec:64:67:8e:ac:30:7d:c1:
71:83:2d:13:30:31:8b:c4:08:ad:6c:4c:08:63:eb:
86:26:3d:53:47:1c:31:d8:75:f6:48:0f:79:54:62:
89:14:42:3a:0c:13:26:e6:d5:5b:7e:40:ba:34:90:
b2:d1:e7:e2:10:42:e4:c6:b9:b3:3d:21:16:fe:4a:
83:80:13:fb:76:0e:ae:03:f0:e3:8b:a0:b1:d5:c0:
51:73:69:0a:37:34:fe:5d:34:bb:20:82:7e:b4:da:
f1:d1:b0:b5:ef:db:b6:96:f0:88:5f:bf:ee:df:94:
19:b5:f3:01:e5:99:06:1a:5f:5d:65:2a:e7:10:2e:
30:03:53:da:6c:34:ff:0e:41:55:2c:9f:1a:0d:8b:
77:31:89:cf:b7:cf:d7:05:0a:91:02:e6:ae:66:b0:
7d:5b:20:ce:db:ae:e8:88:94:ca:e3:22:ba:05:eb:
79:96:4a:cc:6f:92:39:f0:47:eb:52:54:1b:92:5c:
c9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F1:CA:05:82:E8:25:63:EE:25:F0:99:17:6B:22:DF:CD:9C:C3:64
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C08D4/A98A9E5869A811EE98A484144AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C08D4/A98A9E5869A811EE98A484144AD9E6FC/8fHKBYLoJWPuJfCZF2si382cw2Q.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328895
sbgp-ipAddrBlock: critical
IPv4:
102.218.244.0/22
IPv6:
2c0f:5500::/32
Signature Algorithm: sha256WithRSAEncryption
45:60:3c:41:89:69:fc:93:8b:08:18:b2:c7:0b:d1:d6:80:a6:
c7:73:f5:f0:36:ae:4c:cf:3e:b1:e5:2e:96:20:70:de:a9:2f:
a1:4c:ce:80:67:9e:59:86:6b:83:a3:12:36:51:70:9b:3b:b8:
f1:42:be:49:dc:1c:88:01:27:ff:5f:78:45:cc:ad:6e:cc:a3:
c1:5d:fb:ed:c6:f9:bb:f6:6e:03:aa:b1:90:4a:38:43:ca:29:
59:6d:e8:e9:f1:5f:aa:db:a0:9f:3f:f5:c5:4f:71:84:b0:ea:
49:ad:1c:4f:a9:c3:dd:6c:a5:6c:87:ab:c0:13:80:c3:6c:ad:
6e:1f:64:6d:4b:74:db:2d:42:f3:8b:3f:c5:43:89:be:dd:ad:
86:8d:ff:f2:e6:98:9a:34:39:69:b8:f9:1f:84:91:5e:ac:bc:
86:f5:5c:c3:90:07:1c:96:0e:50:ef:12:b9:72:88:7c:f3:d9:
f1:0f:b5:a7:a9:9b:38:ce:88:12:86:26:da:36:ab:85:f5:91:
ce:67:25:c1:0b:47:10:c4:7c:32:09:c0:66:bd:b5:d6:fc:8d:
b0:44:81:f7:65:73:bb:90:4e:8a:52:d6:6a:26:be:4c:57:5b:
cb:01:c6:0e:19:13:89:3f:e3:99:0d:ae:38:bd:08:93:4c:03:
30:f9:db:cb
-----BEGIN CERTIFICATE-----
MIIGJTCCBQ2gAwIBAgICMmswDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwNTA3MzRaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkMwOEQ0QUYxMTAvBgNVBAUTKEYxRjFDQTA1ODJFODI1NjNFRTI1RjA5
OTE3NkIyMkRGQ0Q5Q0MzNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDH6yf+t2nZM9i+/rrAm/jEmGIu0MmDl9O+ennzIAmc/IMgKS5IC6sXIJnEO1OI
zOOkq+dGooCc7zd5GWFjKfTWkirsZGeOrDB9wXGDLRMwMYvECK1sTAhj64YmPVNH
HDHYdfZID3lUYokUQjoMEybm1Vt+QLo0kLLR5+IQQuTGubM9IRb+SoOAE/t2Dq4D
8OOLoLHVwFFzaQo3NP5dNLsggn602vHRsLXv27aW8Ihfv+7flBm18wHlmQYaX11l
KucQLjADU9psNP8OQVUsnxoNi3cxic+3z9cFCpEC5q5msH1bIM7bruiIlMrjIroF
63mWSsxvkjnwR+tSVBuSXMmzAgMBAAGjggMaMIIDFjAdBgNVHQ4EFgQU8fHKBYLo
JWPuJfCZF2si382cw2QwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZDMDhENC9BOThBOUU1ODY5QTgx
MUVFOThBNDg0MTQ0QUQ5RTZGQy8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QzA4RDQvQTk4QTlFNTg2OUE4MTFFRTk4QTQ4NDE0NEFEOUU2RkMvOGZIS0JZ
TG9KV1B1SmZDWkYyc2kzODJjdzJRLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFBL8wLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJm2vQwDQQCAAIwBwMF
ACwPVQAwDQYJKoZIhvcNAQELBQADggEBAEVgPEGJafyTiwgYsscL0daApsdz9fA2
rkzPPrHlLpYgcN6pL6FMzoBnnlmGa4OjEjZRcJs7uPFCvkncHIgBJ/9feEXMrW7M
o8Fd++3G+bv2bgOqsZBKOEPKKVlt6OnxX6rboJ8/9cVPcYSw6kmtHE+pw91spWyH
q8ATgMNsrW4fZG1LdNstQvOLP8VDib7drYaN//LmmJo0OWm4+R+EkV6svIb1XMOQ
BxyWDlDvErlyiHzz2fEPtaepmzjOiBKGJto2q4X1kc5nJcELRxDEfDIJwGa9tdb8
jbBEgfdlc7uQTopS1momvkxXW8sBxg4ZE4k/45kNrji9CJNMAzD528s=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:50:12 2025 by rpki-client