Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Ga2syP-jkxMYpsdToKwbKukpXgM.cer
File: Ga2syP-jkxMYpsdToKwbKukpXgM.cer (raw, json)
Hash identifier: T31/5OGh0WQKM4EPtLUZnjayTSSeF2PTy2O8o2dakBU=
Subject key identifier: 19:AD:AC:C8:FF:A3:93:13:18:A6:C7:53:A0:AC:1B:2A:E9:29:5E:03
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E93
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:44:07 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 41.82.0.0/15
IP: 41.208.128.0/18
IP: 41.214.0.0/17
IP: 154.124.0.0/15
IP: 196.207.192.0/18
IP: 2001:4278::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11923 (0x2e93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:44:07 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36B52A6AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:29:37:3e:85:95:20:7e:ff:f0:2a:51:52:a2:
fe:11:75:c7:52:32:e9:51:15:eb:99:c2:95:a8:e3:
af:ca:33:93:0b:69:d5:72:aa:11:d7:d3:63:8b:ad:
f1:3a:1f:02:2f:d2:c1:c7:55:bb:46:38:b7:c4:ec:
4a:1e:8c:9a:47:65:6b:cd:ca:9e:67:a3:32:2b:25:
df:ea:9c:0b:49:2f:f3:d1:dc:44:b7:2a:f2:e1:ef:
8b:ec:c6:0c:bd:80:b4:7d:15:fa:31:48:17:a8:a3:
51:28:97:29:5c:ee:5c:85:67:a0:c7:91:18:c1:05:
e4:74:10:26:a0:a0:06:88:5b:57:7b:18:bd:d7:3e:
78:04:93:e2:74:5d:80:5c:fb:ed:23:fc:ca:e8:a9:
03:5e:ab:eb:41:d2:29:e7:bd:14:15:7e:4f:b1:a0:
ad:ae:29:ac:dd:c1:14:0a:dd:22:a0:7d:fb:34:ae:
53:a6:6f:40:e8:66:0a:2e:7a:b3:b3:40:00:68:b6:
ee:30:d9:87:54:e7:a3:c8:81:0f:b9:30:da:26:b4:
28:5e:ab:6e:f6:f1:52:ca:dc:c2:e2:58:3d:d2:16:
f5:5d:c2:ca:ba:1a:dc:9c:35:4c:27:98:22:21:85:
f0:d1:a8:fa:3e:db:e5:d3:29:96:fa:21:9d:ee:5e:
5d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:AD:AC:C8:FF:A3:93:13:18:A6:C7:53:A0:AC:1B:2A:E9:29:5E:03
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B52A6/6AE307B66FFD11E9A69CC134F8AEA228/Ga2syP-jkxMYpsdToKwbKukpXgM.mft
sbgp-ipAddrBlock: critical
IPv4:
41.82.0.0/15
41.208.128.0/18
41.214.0.0/17
154.124.0.0/15
196.207.192.0/18
IPv6:
2001:4278::/32
Signature Algorithm: sha256WithRSAEncryption
88:4a:16:7e:4e:01:ea:f8:09:f4:86:31:4a:dc:b8:73:23:98:
ea:c9:41:ee:a7:89:e0:c1:75:92:2c:30:a0:31:b9:c4:a1:5e:
33:15:0a:3a:f7:8a:f0:80:cb:8c:63:46:81:31:fd:69:83:5b:
1f:f3:14:4f:1c:73:63:96:9f:a8:c8:01:8c:03:81:fa:89:2b:
3e:df:be:68:05:cf:88:8e:a6:2c:8a:f5:ed:73:2d:52:80:6e:
da:b6:51:07:dc:b6:b0:d0:1e:bd:33:e3:61:84:8a:25:5f:12:
d0:cc:a4:57:b1:be:77:3a:8d:20:c7:21:ff:75:f0:91:ec:86:
8a:a2:79:a2:79:7f:a8:b0:fa:6d:c7:17:ee:be:7c:5d:bf:1d:
e2:bc:66:09:51:a5:4b:5a:b2:a2:45:09:c2:d2:36:6f:6f:e4:
5e:88:f3:5e:55:a5:81:f3:ee:c9:a8:94:b1:34:67:05:15:b7:
94:dd:3a:b0:cf:1d:6c:51:c5:67:cd:d9:67:6b:75:ec:df:bb:
7a:13:ea:ad:fb:64:1e:0a:19:0c:58:98:c9:7f:8b:55:6c:3f:
b3:c8:01:bb:25:09:70:21:92:86:37:18:d4:e5:0b:d5:e2:bd:
03:35:e6:b8:86:e2:dd:63:25:0b:e3:6f:22:34:d1:38:9a:7a:
6d:75:f3:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:43:55 2025 by rpki-client