Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Ob52uHZXsJfc7qO0DURSok5WA4I.cer
File: Ob52uHZXsJfc7qO0DURSok5WA4I.cer (raw, json)
Hash identifier: 3A3mTCOBqZU2qjAzWUrFleYxqyJU5wjH5XY9q7w8I/I=
Subject key identifier: 39:BE:76:B8:76:57:B0:97:DC:EE:A3:B4:0D:44:52:A2:4E:56:03:82
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 30C7
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3688321/894DD8A00DFC11EF94AA185B017001B1/Ob52uHZXsJfc7qO0DURSok5WA4I.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3688321/894DD8A00DFC11EF94AA185B017001B1/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:38:25 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328019
IP: 102.209.96.0/22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12487 (0x30c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:38:25 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3688321AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6c:70:fb:ae:27:3d:0b:2e:bb:99:91:32:a6:
5e:50:37:64:3d:9e:6e:08:e0:fc:44:70:e3:a8:31:
87:28:df:a1:3f:a4:76:54:35:68:6b:e4:34:d2:a2:
72:b7:4f:ce:3a:9e:18:cc:bf:10:8c:28:29:52:6a:
64:d4:4a:52:91:28:51:fc:ef:59:f0:66:d7:40:8f:
e4:81:2a:07:c3:34:ca:86:69:ac:e4:02:95:23:87:
6e:39:db:fe:52:a2:78:45:57:31:db:79:36:79:95:
2b:5a:10:bc:f8:07:4b:29:8a:b4:f0:29:9f:aa:46:
47:60:43:73:ce:57:76:a9:50:7a:52:d9:07:13:39:
eb:b9:3b:4e:62:47:2b:31:4b:dd:c7:50:61:33:56:
11:27:36:d5:fd:4a:d5:8a:2c:b2:ab:b8:04:7d:e1:
8d:ff:70:cc:82:95:d0:d8:52:d6:a6:a8:68:60:38:
29:2e:09:55:1a:d0:29:0f:30:d8:9d:0c:df:68:01:
48:90:25:63:12:b3:6e:b4:99:e1:50:52:4e:18:99:
43:6d:79:a8:40:c0:52:53:83:04:ba:52:a3:89:ff:
9a:ce:5b:3c:76:bd:05:43:89:17:7a:f2:4c:e7:76:
7f:b2:89:fb:d3:22:3e:cf:2e:4d:04:dd:e3:60:de:
1f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:BE:76:B8:76:57:B0:97:DC:EE:A3:B4:0D:44:52:A2:4E:56:03:82
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3688321/894DD8A00DFC11EF94AA185B017001B1/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3688321/894DD8A00DFC11EF94AA185B017001B1/Ob52uHZXsJfc7qO0DURSok5WA4I.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328019
sbgp-ipAddrBlock: critical
IPv4:
102.209.96.0/22
Signature Algorithm: sha256WithRSAEncryption
21:f7:7c:8a:a5:1f:7f:f4:69:92:83:15:2e:6f:63:0a:f3:fc:
26:e4:8b:b2:9a:75:73:ec:64:f0:44:82:0b:25:d3:9f:fc:b6:
7a:e1:a8:f4:b6:26:55:53:24:c5:f7:b8:75:09:fd:97:8b:30:
49:5f:54:33:3c:5c:3a:e0:03:68:30:b0:17:c6:d4:2a:21:7a:
d6:66:93:3e:a6:eb:bf:96:c1:d9:77:d9:af:29:96:82:0e:c2:
fc:50:19:6e:1b:1f:29:3f:bd:41:db:5d:55:d0:44:33:e3:09:
d9:c2:77:5a:5f:93:19:86:9e:76:25:c4:c0:8c:3f:65:e6:f5:
ec:47:b5:98:b7:03:2e:0b:32:e4:54:42:86:cd:ec:36:de:c7:
55:2f:d5:d0:cf:9e:20:4b:50:8e:95:7e:7b:d0:cd:a7:05:66:
26:8d:e9:9c:6d:ff:92:7f:81:e5:3e:53:cc:5e:51:fe:ae:d1:
c9:20:88:62:dc:a6:25:13:00:38:a7:01:46:b3:66:7c:0a:d8:
94:0b:02:21:3e:14:f2:ea:26:d0:15:2d:9c:c8:95:39:46:a8:
dd:59:65:98:6e:5f:34:a5:a4:e7:dc:f1:dc:56:87:aa:e6:c3:
22:16:a0:33:3b:c9:6e:e4:57:a6:97:7b:f8:72:2c:b4:c4:65:
a2:ce:28:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:40:33 2025 by rpki-client