Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/I78EX4uOm-g4553TEsyV7LjMYQs.cer
File: I78EX4uOm-g4553TEsyV7LjMYQs.cer (raw, json)
Hash identifier: nH4xm0WHRRC3oohGapZxSqcAyauBtIojS0vKvPGP9yw=
Subject key identifier: 23:BF:04:5F:8B:8E:9B:E8:38:E7:9D:D3:12:CC:95:EC:B8:CC:61:0B
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2EC0
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/I78EX4uOm-g4553TEsyV7LjMYQs.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:53:07 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37172
IP: 41.76.112.0/21
IP: 102.207.64.0/22
IP: 102.213.72.0/22
IP: 196.250.240.0/21
IP: 197.231.144.0/21
IP: 2c0f:ee28::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11968 (0x2ec0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:53:07 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F369671EAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fb:a6:89:ed:08:51:71:be:a3:d2:42:58:75:
35:e0:6d:fe:ea:27:45:f9:f0:79:df:5a:70:ce:dd:
be:4a:dd:f1:63:8d:31:79:fd:e8:2e:38:e1:7c:99:
15:50:05:42:1a:3a:ed:91:98:96:5c:ce:65:bc:be:
10:23:e3:79:34:d8:dc:95:7e:7b:f7:0f:ee:aa:60:
e2:38:fb:f1:9a:8b:fc:d5:32:6c:4c:e7:c7:72:cb:
44:34:27:1a:ff:34:1d:12:8c:76:83:9a:ba:82:96:
ae:8a:a6:b2:7f:a5:0a:09:12:bc:9a:f2:59:81:b2:
95:d1:ca:91:0f:00:f0:b3:47:89:55:f8:eb:45:7a:
bb:17:77:44:97:59:8c:b8:7f:da:95:59:fc:d7:5c:
a5:a5:2f:9e:17:1a:c7:dc:1b:b0:37:20:81:88:7e:
27:9c:22:86:45:79:0b:f7:7a:2e:6c:8e:4a:de:f1:
58:10:d9:3f:8a:90:b3:b9:7b:1f:f0:7c:82:03:ec:
57:7e:3f:d4:c1:6f:79:e5:c6:93:49:96:b7:e2:4b:
a2:8e:68:d3:cb:9a:0b:e5:52:c3:83:a3:de:d2:bc:
a2:69:f6:73:d4:4f:08:f1:84:5a:5f:c1:20:30:03:
c5:7c:d5:b3:ee:87:4e:4d:78:bf:fc:b2:d8:95:e1:
31:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:BF:04:5F:8B:8E:9B:E8:38:E7:9D:D3:12:CC:95:EC:B8:CC:61:0B
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F369671E/B069B1587BB111E99DBED243F8AEA228/I78EX4uOm-g4553TEsyV7LjMYQs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37172
sbgp-ipAddrBlock: critical
IPv4:
41.76.112.0/21
102.207.64.0/22
102.213.72.0/22
196.250.240.0/21
197.231.144.0/21
IPv6:
2c0f:ee28::/32
Signature Algorithm: sha256WithRSAEncryption
af:bb:23:e0:97:7b:11:0d:58:8c:20:57:59:c5:c9:bd:c3:87:
60:75:56:41:c8:bf:35:c3:66:bd:b3:1a:ef:b4:68:62:0c:28:
30:f8:6c:c3:a6:20:aa:e6:99:cc:53:6a:9d:35:9f:98:53:5e:
6c:d5:85:1a:89:0b:93:8a:d1:b1:9b:6b:80:df:07:ee:05:cd:
91:2e:24:9d:7e:75:e2:b1:7e:d7:c0:ce:c6:29:e3:d3:c8:95:
c4:89:c1:62:5d:8e:38:d4:6c:74:7f:f7:70:95:07:19:8a:59:
3f:e6:c4:b6:02:58:40:e5:fa:bd:fd:a5:02:19:1e:a1:28:cc:
68:a3:35:52:09:af:54:ac:30:89:c1:37:e4:63:2a:fb:3b:0d:
b9:7c:7a:b2:53:6f:f7:17:40:09:e7:f7:e3:57:10:31:71:14:
e3:db:f9:d7:4e:51:47:85:05:1a:d3:7c:d7:34:66:76:50:fb:
36:64:35:c2:63:26:5c:0b:a6:44:af:de:1a:83:83:71:5b:64:
8a:26:3a:b3:3f:12:9f:7d:83:b2:e1:6b:45:63:c0:18:1c:59:
d7:63:57:3d:3e:67:50:73:d4:06:ab:33:fe:70:05:68:f0:c4:
dc:1d:b9:75:15:f2:8d:24:63:21:03:43:56:33:5a:87:48:10:
89:1f:b2:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:37:33 2025 by rpki-client