Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Gui5Af04SDp0-NI1YM3fc7TRUGM.cer
File: Gui5Af04SDp0-NI1YM3fc7TRUGM.cer (raw, json)
Hash identifier: /H9+5l0ziZWRz7HcUUVGUcglHtxersJOWUZoZYKCg+0=
Subject key identifier: 1A:E8:B9:01:FD:38:48:3A:74:F8:D2:35:60:CD:DF:73:B4:D1:50:63
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E48
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3644574/1EB618CA778011EF9C5A1CB2762E951A/Gui5Af04SDp0-NI1YM3fc7TRUGM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3644574/1EB618CA778011EF9C5A1CB2762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:28:18 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328095
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11848 (0x2e48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:28:18 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3644574AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8c:a8:69:d1:2b:73:ab:22:1b:69:63:e2:3d:
32:e3:a3:00:79:c1:8f:02:1f:d5:35:dc:9b:65:7c:
26:9c:61:41:d8:7a:ed:94:fe:16:a6:6b:33:6b:6b:
14:a2:21:de:22:e0:4a:34:a2:df:52:f0:d1:73:29:
6f:8d:1e:c8:82:60:b1:aa:0a:9e:5e:3e:91:60:54:
a1:07:9c:25:2d:4b:76:9f:5b:85:96:f8:1e:73:4b:
c4:79:d3:9d:34:e9:be:74:0b:a1:03:64:df:bd:ac:
22:d9:13:c6:f8:0d:8e:67:a8:a2:fe:1c:be:b9:69:
b1:c8:01:d5:fd:5d:af:a1:af:a8:fd:7a:31:75:15:
71:4a:1a:c3:3a:63:c0:b0:f6:ba:35:61:11:c7:78:
55:67:83:73:66:ba:3e:c2:73:e4:32:40:57:0b:af:
cc:10:f6:7e:a5:b7:1d:80:d6:14:2f:bb:27:8c:ce:
23:c3:52:10:90:3c:4c:97:3c:a8:a2:e9:43:1d:bd:
31:22:36:28:4a:e1:a4:70:f8:f3:55:c4:54:53:1e:
09:a4:61:20:b3:6a:98:db:6b:31:ea:b0:91:23:59:
01:d2:b5:f7:2e:1c:66:87:88:d8:d1:76:6d:c0:4e:
5e:d1:8c:bd:ec:80:30:01:50:1f:e7:ab:00:ff:72:
40:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E8:B9:01:FD:38:48:3A:74:F8:D2:35:60:CD:DF:73:B4:D1:50:63
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644574/1EB618CA778011EF9C5A1CB2762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644574/1EB618CA778011EF9C5A1CB2762E951A/Gui5Af04SDp0-NI1YM3fc7TRUGM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328095
Signature Algorithm: sha256WithRSAEncryption
0d:0a:68:d6:08:4d:80:ca:53:82:ed:ad:46:81:be:7f:56:8f:
87:21:ba:27:53:09:5a:67:fe:4e:72:be:f2:59:1f:6e:ac:36:
09:e1:5d:53:f1:17:06:16:52:62:f1:5c:f7:45:57:b0:59:7f:
17:ff:0a:84:7b:83:76:d8:c5:23:26:05:8a:df:d1:8f:da:72:
9c:06:2c:15:e9:0e:f9:9c:6b:a8:ff:08:8a:b6:9e:77:e1:f7:
c6:77:1e:ad:33:4e:b7:53:a1:a3:52:df:4a:5d:b2:47:c4:0d:
39:aa:46:cd:ee:ce:45:18:4e:f7:cc:39:10:73:f4:37:5d:88:
46:a2:2d:19:7e:63:c1:50:14:2f:ad:77:e2:05:d2:b9:02:be:
a2:8e:e9:7a:82:c9:9c:c2:08:81:52:ac:44:39:38:9f:01:af:
07:48:3c:a9:ef:59:a0:bb:a6:0a:5c:72:04:a2:43:71:5f:ac:
6c:34:6b:63:20:76:a7:60:03:7d:dd:40:34:cb:7b:60:e2:4f:
6a:08:01:f6:91:c5:9d:12:62:59:92:58:6e:60:ba:df:b6:27:
66:43:1e:23:79:d8:c2:a2:20:01:57:e1:1a:b4:5d:e6:d8:41:
20:e2:f8:0f:e0:35:34:a0:88:79:b3:19:d7:12:cf:fe:2b:1a:
ac:f8:9b:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:42:56 2025 by rpki-client