Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/An4aRGPGhfvWOGP507I7rC2TsWg.cer
File: An4aRGPGhfvWOGP507I7rC2TsWg.cer (raw, json)
Hash identifier: WoOZSztHguppbzgbu+fNJbtAvhAXWwdS9NICH4Rvrkc=
Subject key identifier: 02:7E:1A:44:63:C6:85:FB:D6:38:63:F9:D3:B2:3B:AC:2D:93:B1:68
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2D53
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/An4aRGPGhfvWOGP507I7rC2TsWg.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:36:22 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 36985
IP: 41.77.56.0/21
IP: 41.223.172.0/22
IP: 154.66.64.0/20
IP: 2c0f:f150::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11603 (0x2d53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:36:22 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36252A7AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:be:ab:8b:14:ea:e3:a5:a6:de:cb:ca:78:2a:
57:73:0c:19:03:0d:93:1a:0d:fe:31:32:2d:2f:1f:
f7:6c:47:e2:53:65:ca:c2:23:6c:28:50:37:24:72:
02:fc:af:9e:1e:d6:a3:a5:64:d8:c7:ef:cb:94:4c:
4c:e2:26:d3:48:aa:80:ea:b4:8d:41:83:83:35:c2:
0f:9b:c1:55:17:f1:b4:aa:00:9a:9d:ab:e8:27:44:
25:01:5f:eb:ed:f2:33:b8:32:81:cc:59:50:d6:d5:
2e:08:eb:2a:41:ad:da:9f:a0:63:06:41:5d:0b:15:
29:10:77:38:14:a4:3c:ed:8a:c6:06:98:a8:e1:34:
9f:fe:6e:98:62:ee:2c:4c:8e:fe:07:fd:0c:ed:f7:
63:c7:18:3a:4e:7b:d3:6d:60:4f:4f:7d:d8:bc:1b:
65:3a:3b:21:de:3c:74:ca:fb:16:b2:64:dc:13:5d:
0f:af:d4:ca:55:f7:17:d6:9e:5e:4b:88:65:b5:4d:
27:c5:6a:91:4a:50:77:4a:5e:1a:00:6e:c8:c9:f9:
51:f6:de:c6:79:bf:dd:f5:bd:70:2a:ac:c5:49:46:
bc:82:1f:7f:cf:9c:01:4f:0f:3f:38:81:04:5e:c9:
42:9c:12:ef:1b:fb:f0:88:96:a7:8b:44:31:36:e8:
5c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7E:1A:44:63:C6:85:FB:D6:38:63:F9:D3:B2:3B:AC:2D:93:B1:68
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36252A7/89497A60E38311E99E55F585F8AEA228/An4aRGPGhfvWOGP507I7rC2TsWg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
36985
sbgp-ipAddrBlock: critical
IPv4:
41.77.56.0/21
41.223.172.0/22
154.66.64.0/20
IPv6:
2c0f:f150::/32
Signature Algorithm: sha256WithRSAEncryption
69:a4:39:fa:3b:db:d5:e6:27:af:c5:3f:e7:f1:76:00:d4:7f:
91:25:6b:67:6c:ce:66:77:60:f2:43:e2:ea:e6:74:96:d1:a6:
74:dd:a1:e9:b2:d3:58:14:c0:d4:c2:ed:af:6f:35:b0:34:66:
85:6a:36:4a:bd:a2:24:31:9b:27:a1:f5:b3:d7:f4:2f:89:ec:
f8:42:7e:81:db:93:ac:07:18:f3:38:0f:ce:06:0e:30:01:9b:
d1:5b:fa:0d:29:83:e6:4e:fa:72:e1:06:54:b4:7b:a0:69:84:
8d:3c:40:d1:83:ff:c0:07:b9:d1:72:a6:ff:23:9e:b1:33:26:
be:6c:07:97:f6:0e:13:2a:d0:ec:ec:44:56:3e:e7:7d:59:28:
7d:91:13:54:a9:cb:66:bc:d1:ad:66:2b:76:08:76:0b:92:db:
94:cd:dd:eb:9e:ca:b8:c1:21:50:fc:ea:c4:b4:b7:23:18:f5:
60:df:0e:ec:94:f0:df:92:9f:67:91:97:00:c5:a3:07:c9:be:
6a:35:8a:5e:b3:38:98:9b:15:2a:ff:00:48:b8:0d:b1:c3:d5:
f9:73:90:27:4a:7b:6e:2b:b6:b0:18:ee:29:62:5c:18:6a:4a:
cf:06:85:15:3c:eb:7c:bf:ab:b1:e4:64:33:ad:42:d2:5e:ba:
39:00:f4:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:32:43 2025 by rpki-client