Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/H0D8xXwmpt22Bfd5iktTwJ0rYiA.cer
File: H0D8xXwmpt22Bfd5iktTwJ0rYiA.cer (raw, json)
Hash identifier: BSNjumdrqtDJGPZDKPpzAmHilbkXeKfwzP+QBnvmE2Q=
Subject key identifier: 1F:40:FC:C5:7C:26:A6:DD:B6:05:F7:79:8A:4B:53:C0:9D:2B:62:20
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2CCF
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3613254/C9012ADE023411EFA096505F017001B1/H0D8xXwmpt22Bfd5iktTwJ0rYiA.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3613254/C9012ADE023411EFA096505F017001B1/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:04:58 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37088
IP: 41.216.160.0/20
IP: 102.135.192.0/19
IP: 2c0f:6400::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11471 (0x2ccf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:04:58 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3613254AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:69:76:ed:62:77:1c:15:21:d3:01:86:c9:f2:
0c:67:ac:85:35:11:97:a3:02:6b:12:c2:1b:ef:bf:
11:f2:57:3a:03:d9:15:a9:96:a2:3f:de:40:33:c0:
16:5f:4c:36:01:e7:3c:46:6b:af:7e:3d:0a:34:87:
1a:8d:a6:d4:0f:83:15:e2:17:31:a4:1a:de:57:db:
71:9b:db:5d:ef:f6:04:3b:73:63:a6:15:2e:a0:34:
8a:a5:d3:5b:ad:54:6c:24:55:55:f5:26:e9:fc:e7:
84:ba:39:bc:74:11:c7:a3:36:41:8e:ef:b0:2e:8e:
38:6d:a6:2f:5e:6a:b8:35:d9:87:6e:b7:81:21:20:
65:aa:17:dd:1e:84:57:27:6c:14:e6:71:80:aa:78:
d4:20:0f:2d:19:23:9f:eb:39:8b:18:41:5a:27:df:
bd:64:c1:5a:d0:45:02:72:06:5a:21:07:d3:08:eb:
86:44:cf:e9:7d:be:52:9b:5d:d4:80:1e:85:ef:0f:
33:40:1e:b4:d4:2e:42:f1:87:8f:07:67:1f:e1:00:
f1:ee:52:f1:9f:c7:b9:0e:f3:26:ca:c8:bc:4a:4c:
4b:89:8d:8d:76:e3:65:58:cc:31:c0:8c:6c:78:f2:
12:2b:b1:cc:dd:82:c2:b5:0f:5f:74:22:2d:cc:12:
d3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:40:FC:C5:7C:26:A6:DD:B6:05:F7:79:8A:4B:53:C0:9D:2B:62:20
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3613254/C9012ADE023411EFA096505F017001B1/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3613254/C9012ADE023411EFA096505F017001B1/H0D8xXwmpt22Bfd5iktTwJ0rYiA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37088
sbgp-ipAddrBlock: critical
IPv4:
41.216.160.0/20
102.135.192.0/19
IPv6:
2c0f:6400::/32
Signature Algorithm: sha256WithRSAEncryption
5d:37:05:91:8f:e7:c8:4c:ba:fa:23:cb:e7:9a:2d:3b:b2:0c:
73:a2:c4:31:e3:37:e3:8e:79:52:a7:72:9a:a6:c3:38:87:dd:
e3:42:7a:6a:37:3b:13:7d:0c:7b:0f:a2:8e:51:8b:c4:38:f2:
c0:43:d1:9e:5e:a2:fa:4d:16:18:6c:08:47:77:6a:3d:6c:b9:
83:51:97:af:e8:2b:f0:df:54:5c:5d:11:e2:74:5a:6c:25:8c:
a3:89:86:a6:05:21:f6:db:08:55:64:b5:1e:0e:27:cd:18:41:
64:1d:88:08:db:55:f8:0d:31:5a:2d:e5:b0:dd:11:6a:31:c2:
ae:32:bf:54:9c:84:61:28:1a:10:4f:68:f3:41:16:27:d0:ba:
69:87:c4:04:7b:64:f4:67:c8:e8:b3:1b:78:80:f5:99:f1:18:
d3:ab:bc:12:b5:3f:d6:f0:c0:6f:44:05:ec:d7:f8:ff:30:53:
12:e5:e7:4a:71:ce:64:a6:70:dd:0d:be:d3:78:53:92:d9:d0:
c4:52:03:7a:35:d6:ef:9e:74:fd:f7:74:f0:b2:c0:ae:1a:70:
86:7f:5d:5b:2f:57:b9:7e:86:fd:99:9b:27:11:14:42:98:8e:
32:60:75:28:67:65:d2:5d:bb:2f:79:b6:04:81:c9:cd:28:01:
b2:cd:51:3b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:48:04 2025 by rpki-client