Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/KF9hqPUjMGRTeGWSdEagBQLhHr8.cer
File: KF9hqPUjMGRTeGWSdEagBQLhHr8.cer (raw, json)
Hash identifier: iJtD28B76Q4k8//LEexLo45DJkXq8QdBFzvOQ0/zpGo=
Subject key identifier: 28:5F:61:A8:F5:23:30:64:53:78:65:92:74:46:A0:05:02:E1:1E:BF
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 30D5
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3689F69/B6B5A48C2FC411EFA04CDA8D762E951A/KF9hqPUjMGRTeGWSdEagBQLhHr8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3689F69/B6B5A48C2FC411EFA04CDA8D762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:41:16 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37125
IP: 41.217.204.0/22
IP: 102.164.32.0/21
IP: 2c0f:fff0::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12501 (0x30d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:41:16 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3689F69AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:41:41:39:b0:73:0b:ab:ea:b5:df:4c:d4:4a:
06:e0:49:8a:9a:26:76:63:15:28:17:0b:3b:22:29:
d4:b6:0a:ea:b6:93:f8:17:e3:64:bb:43:99:0a:23:
34:0d:02:97:a1:e3:ad:d3:fe:86:7b:35:60:23:00:
6b:47:a1:af:7b:7b:ab:e5:c6:63:52:24:29:de:09:
ad:62:5b:c7:7b:ad:40:15:4c:72:4f:c9:0d:b1:09:
6b:0b:1f:57:75:19:05:1d:18:44:07:d3:9a:12:72:
c2:0f:ec:4c:78:e6:62:53:41:01:b6:bc:76:81:d5:
44:9c:fa:25:c2:16:f0:ae:54:42:4e:f3:e7:d1:ca:
47:aa:f3:19:20:0a:a8:fa:dd:bc:a5:b6:a7:36:80:
cd:1c:9a:e5:9f:a9:fa:6b:27:5b:1e:0e:ec:0a:88:
13:63:73:85:11:d5:3d:9b:cc:64:80:70:92:5d:15:
90:7a:7f:3e:2c:af:6e:ff:45:b4:3e:69:22:12:87:
f4:88:d0:a0:14:c2:fc:bc:bb:78:b3:c0:97:16:f3:
e7:eb:bd:11:06:44:84:ce:5a:7e:b6:fc:bd:f4:08:
10:12:47:d7:57:64:40:29:f6:ef:96:2c:41:91:49:
51:56:19:63:9e:2b:d8:96:cb:7e:d8:ab:2a:7f:e0:
dc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:5F:61:A8:F5:23:30:64:53:78:65:92:74:46:A0:05:02:E1:1E:BF
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3689F69/B6B5A48C2FC411EFA04CDA8D762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3689F69/B6B5A48C2FC411EFA04CDA8D762E951A/KF9hqPUjMGRTeGWSdEagBQLhHr8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37125
sbgp-ipAddrBlock: critical
IPv4:
41.217.204.0/22
102.164.32.0/21
IPv6:
2c0f:fff0::/32
Signature Algorithm: sha256WithRSAEncryption
be:00:9f:37:0b:a0:ad:3d:7a:a3:47:1d:a2:76:99:f3:aa:18:
0d:ea:fb:40:3d:01:3e:8d:dd:3d:13:9d:2f:70:7c:35:0f:79:
c9:80:4e:cc:c7:82:23:67:d0:f5:0c:7f:20:b8:01:64:9e:f0:
83:fa:86:9e:45:0e:43:8e:fb:96:d4:40:c5:01:f4:b7:c8:5d:
cf:f7:8a:7c:ee:a7:71:c4:07:05:5a:57:e8:e3:0c:11:cc:fe:
b8:0d:c2:72:f2:f1:63:06:e9:84:9a:bd:95:90:89:ec:a1:1b:
1c:0b:e4:36:dc:9e:89:bc:5a:d7:84:8f:ee:fa:34:10:07:73:
5f:27:12:a2:86:79:b4:40:7f:74:1f:09:60:dc:80:8d:b8:9b:
11:42:9c:07:c7:eb:e8:84:bf:88:88:12:84:57:da:fc:90:86:
0f:39:eb:5d:50:ac:6d:78:12:a8:88:6b:7d:b9:b1:3b:a2:a4:
eb:3f:1e:e3:ad:44:61:d3:5d:e8:4a:da:19:d5:7d:04:ae:07:
eb:7e:95:df:05:df:a0:8c:98:b2:52:eb:c9:d7:2f:4e:1d:be:
d8:fa:6e:61:0d:e0:d3:b0:09:b5:ba:df:36:2a:71:cf:ac:5d:
95:d0:6c:ca:af:49:f3:f7:ef:bd:ba:31:72:b9:54:35:1a:f2:
ed:35:5d:a3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:35:28 2025 by rpki-client