Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/AjFjgfORycHBtlB5K7N-_nj13ZM.cer
File: AjFjgfORycHBtlB5K7N-_nj13ZM.cer (raw, json)
Hash identifier: uRhGH3LsQgJ4Te7SgQSFR0uQrPCiIIDAYMY4JPFUR3U=
Subject key identifier: 02:31:63:81:F3:91:C9:C1:C1:B6:50:79:2B:B3:7E:FE:78:F5:DD:93
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F5E
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36C684F/B28E290CD48311E989417F1CF8AEA228/AjFjgfORycHBtlB5K7N-_nj13ZM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36C684F/B28E290CD48311E989417F1CF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:24:52 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37170
IP: 196.45.48.0/20
IP: 196.220.240.0/20
IP: 2001:43f8:160::/48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12126 (0x2f5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:24:52 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36C684FAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a8:9e:3f:af:03:cc:e5:d0:77:68:75:58:74:
6b:34:dc:63:7b:72:0c:b0:af:d7:ed:f5:54:2f:4e:
2a:58:08:dd:af:75:1b:19:95:f7:36:c4:f6:4a:b8:
59:c6:79:44:ca:90:ce:f7:9d:80:96:6f:76:be:f5:
56:81:6c:6c:1b:7b:e3:b6:46:71:64:6c:df:17:4d:
67:9d:e7:e5:f8:ad:5d:2d:81:3a:68:3b:b2:a7:13:
7a:3a:54:e7:3e:9c:df:a9:6b:35:aa:16:59:79:ea:
c2:dc:c3:a0:32:1a:9f:1d:b1:7f:74:73:2e:93:cc:
ce:cd:22:c1:63:d4:21:df:b0:b7:25:b2:d5:b1:87:
98:1f:eb:c6:fd:62:3f:d8:80:ee:58:e5:37:7a:f2:
95:ad:2f:fe:75:32:7b:fc:1c:0e:a3:7e:02:86:2e:
b3:95:91:82:a3:56:6c:9a:12:51:a7:ac:f1:63:16:
66:af:20:a6:07:80:18:5f:db:4a:fe:72:5a:eb:21:
87:f4:2f:76:11:00:db:f9:75:17:8c:04:6e:ad:28:
2b:46:bf:2d:4d:63:0e:e9:6b:ed:b8:3b:66:f9:84:
23:a9:43:0a:91:92:69:de:d3:0c:c4:4f:65:91:16:
c7:2c:99:bb:c6:33:9f:3b:70:03:f9:45:b0:b8:b2:
62:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:31:63:81:F3:91:C9:C1:C1:B6:50:79:2B:B3:7E:FE:78:F5:DD:93
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C684F/B28E290CD48311E989417F1CF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C684F/B28E290CD48311E989417F1CF8AEA228/AjFjgfORycHBtlB5K7N-_nj13ZM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37170
sbgp-ipAddrBlock: critical
IPv4:
196.45.48.0/20
196.220.240.0/20
IPv6:
2001:43f8:160::/48
Signature Algorithm: sha256WithRSAEncryption
b0:23:76:55:c8:7e:40:a7:bf:0e:1f:99:56:ac:81:72:b6:41:
55:33:63:50:68:c3:ca:59:e2:c7:69:3f:67:dc:b9:de:c1:ca:
67:0f:22:7b:e4:0e:d3:22:60:f7:64:a1:1c:0f:f8:02:2b:75:
e6:e3:ec:33:a1:91:bb:25:d1:3a:99:4a:52:46:0a:f3:fe:61:
69:61:3c:35:02:60:3d:e3:21:3e:0a:8b:aa:bc:4f:fc:b2:2c:
c1:11:aa:33:ac:b2:2b:5f:23:77:3e:a4:7c:2f:66:b1:d3:ae:
e0:67:70:cb:de:e5:61:f2:6f:56:c9:bb:c4:f1:19:8c:0b:9f:
26:21:3a:be:92:5b:64:be:13:dc:8d:4f:fb:9e:b5:f7:60:9a:
4e:50:23:20:bb:6e:fc:e4:2d:ec:7c:99:9e:00:3c:d7:16:97:
17:f1:e2:fe:4d:34:9b:07:d7:9f:1a:59:f3:08:f8:f5:96:ed:
2e:21:66:75:1e:1b:05:7d:2c:1e:20:9c:fd:19:87:56:c9:13:
a0:12:6c:91:98:b9:89:01:7b:9c:14:5c:d0:60:7d:1e:a5:99:
7d:c0:38:77:44:da:0c:e5:ee:ca:67:dd:ba:12:de:1b:f2:ca:
92:1a:36:1f:1a:ba:c3:4d:94:ed:33:32:7f:2b:a3:b9:e3:4d:
15:3d:25:9e
-----BEGIN CERTIFICATE-----
MIIGLTCCBRWgAwIBAgICL14wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMjI0NTJaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkM2ODRGQUYxMTAvBgNVBAUTKDAyMzE2MzgxRjM5MUM5QzFDMUI2NTA3
OTJCQjM3RUZFNzhGNUREOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCnqJ4/rwPM5dB3aHVYdGs03GN7cgywr9ft9VQvTipYCN2vdRsZlfc2xPZKuFnG
eUTKkM73nYCWb3a+9VaBbGwbe+O2RnFkbN8XTWed5+X4rV0tgTpoO7KnE3o6VOc+
nN+pazWqFll56sLcw6AyGp8dsX90cy6TzM7NIsFj1CHfsLclstWxh5gf68b9Yj/Y
gO5Y5Td68pWtL/51Mnv8HA6jfgKGLrOVkYKjVmyaElGnrPFjFmavIKYHgBhf20r+
clrrIYf0L3YRANv5dReMBG6tKCtGvy1NYw7pa+24O2b5hCOpQwqRkmne0wzET2WR
FscsmbvGM587cAP5RbC4smKfAgMBAAGjggMiMIIDHjAdBgNVHQ4EFgQUAjFjgfOR
ycHBtlB5K7N+/nj13ZMwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZDNjg0Ri9CMjhFMjkwQ0Q0ODMx
MUU5ODk0MTdGMUNGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QzY4NEYvQjI4RTI5MENENDgzMTFFOTg5NDE3RjFDRjhBRUEyMjgvQWpGamdm
T1J5Y0hCdGxCNUs3Ti1fbmoxM1pNLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMAkTIwNgYIKwYBBQUHAQcBAf8EJzAlMBIEAgABMAwDBATELTADBATE3PAwDwQC
AAIwCQMHACABQ/gBYDANBgkqhkiG9w0BAQsFAAOCAQEAsCN2Vch+QKe/Dh+ZVqyB
crZBVTNjUGjDylnix2k/Z9y53sHKZw8ie+QO0yJg92ShHA/4Ait15uPsM6GRuyXR
OplKUkYK8/5haWE8NQJgPeMhPgqLqrxP/LIswRGqM6yyK18jdz6kfC9msdOu4Gdw
y97lYfJvVsm7xPEZjAufJiE6vpJbZL4T3I1P+56192CaTlAjILtu/OQt7HyZngA8
1xaXF/Hi/k00mwfXnxpZ8wj49ZbtLiFmdR4bBX0sHiCc/RmHVskToBJskZi5iQF7
nBRc0GB9HqWZfcA4d0TaDOXuymfduhLeG/LKkho2Hxq6w02U7TMyfyujueNNFT0l
ng==
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:49:25 2025 by rpki-client