Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/HN9pXb8nTSxpriwAwuTuF8mGqe0.cer
File: HN9pXb8nTSxpriwAwuTuF8mGqe0.cer (raw, json)
Hash identifier: plbL1EPUHIdNvUHHtGIst+q7R86x7pysVbYlNJD6/pw=
Subject key identifier: 1C:DF:69:5D:BF:27:4D:2C:69:AE:2C:00:C2:E4:EE:17:C9:86:A9:ED
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2CE5
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3615533/D80AFE5C295711EFA79717F67CDC24C2/HN9pXb8nTSxpriwAwuTuF8mGqe0.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3615533/D80AFE5C295711EFA79717F67CDC24C2/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:10:14 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328778
IP: 102.221.4.0/22
IP: 2c0f:800::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11493 (0x2ce5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:10:14 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3615533AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:59:ac:c0:bf:43:5a:6f:60:b6:f3:7f:53:f1:
6a:0b:19:1f:99:c5:29:d4:d7:cc:cf:bb:34:60:cb:
28:e4:7e:e5:90:50:0c:c0:1c:9d:11:c1:6f:51:ff:
5c:04:0a:c4:ea:37:fd:ac:d0:2b:88:9b:be:bd:28:
31:3c:1e:44:bf:ac:86:0c:10:21:d0:1e:59:56:cb:
56:15:b7:8f:e8:16:96:f6:ff:2a:ae:67:cd:ac:8a:
7d:68:d7:50:ab:14:b1:5b:3d:10:e6:e8:01:d6:e6:
62:4b:4b:de:76:c9:19:40:71:46:58:68:10:1f:37:
f7:a6:8f:2f:5f:9c:9d:86:69:ae:fc:65:2e:c1:d7:
d6:c6:41:be:1e:65:ac:96:d3:4f:6b:d3:41:78:4d:
58:39:dc:13:1e:fb:14:ca:b0:f5:65:47:22:43:32:
bb:a2:ad:80:4c:6b:13:de:62:9d:04:07:b3:c8:63:
7f:c3:08:9e:b1:0a:2d:c9:4c:43:57:86:16:0b:78:
11:c1:ff:ee:28:35:3b:98:ce:a8:53:58:a7:33:ce:
e3:22:6d:e0:b9:c5:46:7c:aa:5c:a6:c7:3e:3b:e6:
ec:a9:44:a1:a8:21:b2:73:cb:16:3d:e2:83:89:4c:
bb:d9:5a:38:e5:65:90:3c:66:51:c8:96:73:ff:11:
d9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:DF:69:5D:BF:27:4D:2C:69:AE:2C:00:C2:E4:EE:17:C9:86:A9:ED
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3615533/D80AFE5C295711EFA79717F67CDC24C2/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3615533/D80AFE5C295711EFA79717F67CDC24C2/HN9pXb8nTSxpriwAwuTuF8mGqe0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328778
sbgp-ipAddrBlock: critical
IPv4:
102.221.4.0/22
IPv6:
2c0f:800::/32
Signature Algorithm: sha256WithRSAEncryption
4b:fa:0b:88:88:a1:e9:f0:5f:c7:98:b8:13:11:e9:78:03:a0:
a2:a1:eb:6a:f8:91:79:20:db:77:0c:37:ce:06:af:01:7c:14:
d0:f7:4f:b6:7a:39:90:2f:8d:0f:d6:6d:1b:82:d4:96:a4:7a:
fa:0f:33:d4:d3:25:d4:27:6c:44:cc:4b:11:cc:f4:e6:5c:df:
aa:21:29:bb:14:29:c1:08:4f:ec:a1:06:5d:bc:4d:18:82:f6:
1d:7c:28:da:6a:23:a9:ce:c1:4e:43:71:06:d8:40:98:d6:53:
0a:7a:a9:ed:e0:b4:25:61:5c:89:ae:1f:57:a3:46:62:1c:36:
4b:8f:a9:0e:2d:30:46:2c:49:6e:80:b3:14:0d:82:df:83:91:
86:33:79:d1:36:b8:9c:55:a6:74:d9:b8:9f:9f:78:3b:e0:98:
74:0b:c3:52:d1:d4:5c:5e:6a:5c:99:6c:6d:0c:91:43:2a:e2:
6d:d9:cf:f7:ac:25:3d:1c:25:bf:a9:8b:d2:45:19:21:c8:45:
a9:72:7d:8a:d3:76:3c:1a:91:ee:a8:08:7a:22:bb:2b:68:16:
5c:66:0a:8e:76:c2:ab:2f:a9:15:60:55:e8:93:6b:32:8e:fc:
5c:f4:79:69:6a:87:3a:20:47:fe:53:f6:25:3f:8a:69:ec:38:
94:f8:2b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:50:12 2025 by rpki-client