Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Nc8GfcJu5IlfSxatm9MA_qvDo1M.cer
File: Nc8GfcJu5IlfSxatm9MA_qvDo1M.cer (raw, json)
Hash identifier: rkYoV5ZHY08Yi+thAJ6vJr9U0JiKfXn4sdjevx0JPiY=
Subject key identifier: 35:CF:06:7D:C2:6E:E4:89:5F:4B:16:AD:9B:D3:00:FE:AB:C3:A3:53
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 32E1
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36D3930/63C46EC8A0F311EC946EDA945A40D577/Nc8GfcJu5IlfSxatm9MA_qvDo1M.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36D3930/63C46EC8A0F311EC946EDA945A40D577/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:32:57 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 17652
AS: 23889
IP: 102.112.0.0/13
IP: 196.20.128.0/17
IP: 196.192.0.0/20
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13025 (0x32e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:32:57 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36D3930AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3a:a9:fe:54:f8:2d:3a:20:b9:29:8d:48:3a:
7c:22:60:25:78:b5:6b:54:35:ca:c1:1a:6c:17:d0:
6e:fc:94:d6:fd:f6:71:b9:28:ff:fe:b9:74:f9:84:
0a:61:03:80:35:cb:1d:18:b2:83:9e:57:88:79:fb:
4e:b3:df:a7:c4:00:f8:33:3c:a1:99:0b:3c:70:27:
33:7b:af:6e:de:21:fe:63:7e:56:85:df:47:c6:04:
44:93:e1:2f:95:37:98:47:53:aa:7c:e3:2b:a0:37:
68:08:09:97:6f:9c:80:93:1c:b3:36:3b:79:e1:64:
a5:72:32:96:63:40:75:92:22:ad:76:aa:69:81:0f:
e6:17:31:db:48:ce:ff:a5:de:3d:ba:5d:41:08:fe:
a5:6b:a5:c2:4a:6e:66:8c:be:bd:82:32:1d:7b:df:
bf:3e:f7:a2:03:ff:a1:1b:c6:47:ec:04:78:9b:bb:
cb:43:e0:70:af:bb:01:33:0a:1c:0d:1e:b1:77:e6:
b6:94:a5:12:5e:14:4d:8e:f9:03:f4:dc:f9:56:18:
12:e7:89:37:c3:7b:8d:50:42:d2:b5:e9:35:ee:f3:
06:d7:b1:3e:19:bc:e8:d2:ef:76:1b:58:bc:70:2e:
4a:e3:9c:6a:a1:95:a6:22:10:16:88:8b:1a:23:62:
66:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:CF:06:7D:C2:6E:E4:89:5F:4B:16:AD:9B:D3:00:FE:AB:C3:A3:53
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D3930/63C46EC8A0F311EC946EDA945A40D577/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D3930/63C46EC8A0F311EC946EDA945A40D577/Nc8GfcJu5IlfSxatm9MA_qvDo1M.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17652
23889
sbgp-ipAddrBlock: critical
IPv4:
102.112.0.0/13
196.20.128.0/17
196.192.0.0/20
Signature Algorithm: sha256WithRSAEncryption
1d:17:b8:c2:0b:6e:45:7d:da:30:17:d4:17:44:9a:9b:67:34:
32:23:ca:9d:84:38:e4:8d:a9:96:18:9f:81:bd:6c:a0:1d:78:
d4:3a:f6:88:f8:1a:f9:95:60:2e:c0:b6:28:b3:b2:f8:b7:64:
4b:ce:0d:10:fc:1c:b2:46:ca:a4:3a:0d:9e:c7:c0:d9:89:be:
d9:04:f0:9e:e5:40:cb:c2:54:ee:40:71:41:ce:9a:69:c0:38:
ee:2b:02:3b:bc:5f:17:b2:8f:da:cb:d5:6e:38:5f:f5:22:ed:
16:9e:ec:21:92:17:3a:23:c9:52:bd:51:9a:14:0e:28:cb:d9:
68:1b:68:a4:6b:fb:43:04:2d:dd:d6:b8:6a:7f:b9:ee:f9:2c:
1b:f8:29:e0:48:31:c6:c3:a0:2a:23:7f:6f:fd:6e:f2:f5:37:
72:b1:04:b9:6a:3e:08:29:4c:d4:09:bc:50:20:27:29:dd:6b:
82:83:12:61:4b:d5:76:dd:1a:65:16:76:9e:f2:fa:ed:d0:c8:
7a:e9:40:a1:5c:40:d9:82:d3:c2:d9:26:08:a1:4f:3f:83:b6:
0a:f2:f9:b3:38:51:2f:23:d4:96:26:2a:c9:e3:43:21:0e:a3:
07:9f:0e:c7:19:12:c3:50:f0:ce:81:4e:01:27:bf:a8:4d:cb:
43:21:64:19
-----BEGIN CERTIFICATE-----
MIIGJDCCBQygAwIBAgICMuEwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwNTMyNTdaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkQzOTMwQUYxMTAvBgNVBAUTKDM1Q0YwNjdEQzI2RUU0ODk1RjRCMTZB
RDlCRDMwMEZFQUJDM0EzNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCwOqn+VPgtOiC5KY1IOnwiYCV4tWtUNcrBGmwX0G78lNb99nG5KP/+uXT5hAph
A4A1yx0YsoOeV4h5+06z36fEAPgzPKGZCzxwJzN7r27eIf5jflaF30fGBEST4S+V
N5hHU6p84yugN2gICZdvnICTHLM2O3nhZKVyMpZjQHWSIq12qmmBD+YXMdtIzv+l
3j26XUEI/qVrpcJKbmaMvr2CMh17378+96ID/6EbxkfsBHibu8tD4HCvuwEzChwN
HrF35raUpRJeFE2O+QP03PlWGBLniTfDe41QQtK16TXu8wbXsT4ZvOjS73YbWLxw
LkrjnGqhlaYiEBaIixojYmbLAgMBAAGjggMZMIIDFTAdBgNVHQ4EFgQUNc8GfcJu
5IlfSxatm9MA/qvDo1MwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZEMzkzMC82M0M0NkVDOEEwRjMx
MUVDOTQ2RURBOTQ1QTQwRDU3Ny8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RDM5MzAvNjNDNDZFQzhBMEYzMTFFQzk0NkVEQTk0NUE0MEQ1NzcvTmM4R2Zj
SnU1SWxmU3hhdG05TUFfcXZEbzFNLm1mdDAdBggrBgEFBQcBCAEB/wQOMAygCjAI
AgJE9AICXVEwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgABMBEDAwNmcAMEB8QUgAME
BMTAADANBgkqhkiG9w0BAQsFAAOCAQEAHRe4wgtuRX3aMBfUF0Sam2c0MiPKnYQ4
5I2plhifgb1soB141Dr2iPga+ZVgLsC2KLOy+LdkS84NEPwcskbKpDoNnsfA2Ym+
2QTwnuVAy8JU7kBxQc6aacA47isCO7xfF7KP2svVbjhf9SLtFp7sIZIXOiPJUr1R
mhQOKMvZaBtopGv7QwQt3da4an+57vksG/gp4EgxxsOgKiN/b/1u8vU3crEEuWo+
CClM1Am8UCAnKd1rgoMSYUvVdt0aZRZ2nvL67dDIeulAoVxA2YLTwtkmCKFPP4O2
CvL5szhRLyPUliYqyeNDIQ6jB58OxxkSw1DwzoFOASe/qE3LQyFkGQ==
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:42:54 2025 by rpki-client