Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/DcCyLHQvAlOAX0GvcE4dfeG4v5g.cer
File: DcCyLHQvAlOAX0GvcE4dfeG4v5g.cer (raw, json)
Hash identifier: 3Irgmhi3u4cTQAdN4/lFoDJFuSCUiVLOWsBu9xIIFKI=
Subject key identifier: 0D:C0:B2:2C:74:2F:02:53:80:5F:41:AF:70:4E:1D:7D:E1:B8:BF:98
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2CF7
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36177FD/7EE2ED1ADCD011ECAAFFC58FF1222468/DcCyLHQvAlOAX0GvcE4dfeG4v5g.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36177FD/7EE2ED1ADCD011ECAAFFC58FF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:14:32 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 102.217.96.0/22
IP: 2c0f:3700::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11511 (0x2cf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:14:32 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36177FDAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a6:35:b4:46:7f:50:c6:ed:04:02:91:9e:5d:
45:85:56:e0:e9:cf:6a:2a:ac:87:a3:db:cf:1f:59:
db:b1:97:23:61:a0:88:61:08:26:d8:a9:93:29:54:
c9:24:86:d0:de:82:61:11:7c:77:4d:5a:e1:eb:bf:
76:b8:35:f0:20:ca:b0:6d:d6:7f:6c:e2:18:b5:40:
e9:4f:66:c8:8d:69:38:f9:b6:98:a7:8b:94:fa:4f:
74:2f:ef:c9:0a:21:09:a1:83:d0:26:84:cd:e8:75:
b6:40:84:ab:80:9d:6f:11:b2:71:33:e6:1d:81:c0:
ba:e0:90:f6:bc:d4:26:b9:4c:d4:2e:00:58:76:b8:
16:0b:b7:29:ea:95:d5:e2:71:23:77:df:aa:47:37:
6a:d6:0a:81:f5:86:1f:d6:0c:85:4d:6e:62:3d:66:
3d:8e:eb:17:20:60:b7:aa:8c:10:fa:af:1a:ee:7a:
c2:d6:35:53:6c:29:44:b2:78:79:f8:70:d5:c1:35:
4c:84:33:e0:d7:4c:72:88:cc:85:e0:ce:54:64:be:
30:22:fb:cb:e5:9b:46:ac:20:1d:fc:72:93:1a:a9:
f6:4d:90:54:63:5a:a9:67:3d:a8:73:fa:0b:2d:e8:
eb:3b:d5:46:92:0d:a2:9e:a1:5b:25:76:9b:da:96:
72:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:C0:B2:2C:74:2F:02:53:80:5F:41:AF:70:4E:1D:7D:E1:B8:BF:98
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36177FD/7EE2ED1ADCD011ECAAFFC58FF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36177FD/7EE2ED1ADCD011ECAAFFC58FF1222468/DcCyLHQvAlOAX0GvcE4dfeG4v5g.mft
sbgp-ipAddrBlock: critical
IPv4:
102.217.96.0/22
IPv6:
2c0f:3700::/32
Signature Algorithm: sha256WithRSAEncryption
70:84:a0:29:52:0a:0e:6d:0c:22:48:73:6f:d4:91:24:39:f2:
f0:d2:96:2f:c2:7e:9a:61:f8:f5:ee:7b:d8:2a:0d:47:72:0f:
13:c9:ae:4b:b3:ae:32:49:9f:6a:2b:45:e0:36:2e:b8:02:4c:
d0:ec:89:5d:0a:c3:51:35:f5:89:79:40:cd:c9:00:07:3d:e9:
d7:6b:95:bd:26:a0:88:c1:eb:30:90:e8:da:68:06:aa:00:cb:
8a:63:c7:f9:fe:c1:ce:ee:30:c1:54:e5:a4:e4:09:75:f8:6b:
8d:90:68:24:9e:43:25:6d:d8:51:24:80:04:bc:6b:fe:42:77:
b3:ff:6c:11:9f:3c:17:50:73:b1:6b:d9:96:97:da:9d:a0:a3:
50:53:cb:bc:c6:2c:b5:de:6b:0b:21:12:7d:3a:3f:d6:3c:68:
94:29:00:54:7c:5d:2e:36:f9:2d:53:8b:e0:3f:56:7e:78:d1:
0b:92:fd:5b:b9:03:ac:23:86:32:61:e7:19:cf:09:2c:5c:56:
d0:ee:9f:52:b6:20:b5:5f:19:7e:95:9f:2e:74:99:2a:59:36:
96:3c:1f:d8:9f:2b:ee:6c:d4:7c:ad:86:a5:b5:c9:34:fb:b5:
bb:12:4d:1d:4a:b5:66:f6:89:93:0f:3f:65:31:c0:5a:80:fe:
7c:d7:78:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:36:32 2025 by rpki-client