Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/PSrzU0Rl4_rsqVu9Ix9yPIoG9dE.cer
File: PSrzU0Rl4_rsqVu9Ix9yPIoG9dE.cer (raw, json)
Hash identifier: gEdgzH493q/6Jpi8tPEnoWfvC9wmKRYsolc1pDJmnO4=
Subject key identifier: 3D:2A:F3:53:44:65:E3:FA:EC:A9:5B:BD:23:1F:72:3C:8A:06:F5:D1
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3354
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E8936/7CC16FAE90EC11EDB3D1D3F7F1222468/PSrzU0Rl4_rsqVu9Ix9yPIoG9dE.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E8936/7CC16FAE90EC11EDB3D1D3F7F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:59:31 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328216
IP: 102.141.96.0/20
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13140 (0x3354)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:59:31 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E8936AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:36:a4:f9:d5:d1:2b:ca:0d:9f:b0:0e:76:00:
99:da:30:8b:6c:1f:0e:3a:57:9d:49:9f:d8:0c:f7:
a7:99:e3:b5:3f:36:67:a9:6e:d0:7e:0f:60:70:1c:
9b:cd:41:87:e8:85:a7:ab:48:b8:d6:23:86:d6:89:
3a:47:2c:d2:0e:f5:ba:14:15:c9:c3:7c:d5:98:29:
38:6f:2b:0c:f3:f7:49:04:e9:5d:c4:66:44:74:87:
00:91:95:0c:0d:32:86:b5:1c:35:57:7f:49:69:c9:
aa:a6:2b:6c:fe:1a:57:b9:08:c7:10:96:39:49:89:
8d:2b:c3:9b:6f:0e:d3:b0:26:be:27:56:4d:05:77:
09:ea:c6:48:da:4d:8e:7d:73:94:09:57:4d:74:31:
53:a3:67:50:8d:39:27:95:36:b5:4b:5f:df:27:9c:
7d:99:00:d8:cf:f4:96:6b:06:e8:b3:73:da:95:dc:
8d:a4:d5:7c:4f:7d:52:ee:2c:49:47:25:22:a7:e4:
30:5f:1e:88:c9:39:c2:fc:b5:21:8f:8d:8b:08:ff:
eb:61:f1:a7:1c:d0:6d:76:a6:da:ac:98:75:e4:cb:
90:86:3a:d1:df:66:84:f6:69:43:83:c6:53:25:a4:
4b:b1:3f:26:2e:8a:6a:67:bd:15:a5:52:d4:bc:5c:
f7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:2A:F3:53:44:65:E3:FA:EC:A9:5B:BD:23:1F:72:3C:8A:06:F5:D1
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8936/7CC16FAE90EC11EDB3D1D3F7F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8936/7CC16FAE90EC11EDB3D1D3F7F1222468/PSrzU0Rl4_rsqVu9Ix9yPIoG9dE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328216
sbgp-ipAddrBlock: critical
IPv4:
102.141.96.0/20
Signature Algorithm: sha256WithRSAEncryption
a5:b9:24:a1:4b:dc:d8:57:05:f7:44:c8:95:ee:95:50:94:d6:
47:5e:cd:ae:18:0a:35:4c:81:a4:1d:b1:5c:f6:56:ae:25:24:
cd:68:c6:64:5f:f6:e0:78:46:2f:2e:d6:65:04:e8:86:df:36:
1a:e6:64:59:ac:a8:25:57:ea:8f:93:e1:a9:42:46:ce:8b:f6:
8a:02:b4:56:ab:d0:e9:ea:ea:6c:53:b9:0e:bd:8b:e6:35:d8:
35:9b:60:67:6c:b3:d4:52:50:14:53:53:f4:28:93:85:10:02:
39:f0:e1:88:25:f8:01:07:b2:d0:03:80:d2:02:c8:c9:4d:bd:
ae:77:d6:17:ed:6a:b1:f1:23:7a:79:3e:28:2f:51:09:f6:41:
75:c3:e2:a4:c4:cc:b9:a8:54:fd:00:84:0c:f0:41:4e:b1:b9:
c8:14:e9:86:59:16:36:24:9b:f2:02:4a:0b:22:2d:6f:52:df:
ec:20:c7:8e:64:ca:b1:34:15:6e:77:99:47:c0:99:3e:8c:95:
43:0a:38:91:93:18:15:6f:bb:6a:69:68:b3:5f:95:e1:69:60:
bb:1d:84:c6:64:eb:3c:47:2c:f1:59:17:85:79:16:76:65:e7:
23:73:d5:35:3d:97:68:2a:08:7e:35:60:33:74:67:ab:50:59:
8b:6e:2c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:42:56 2025 by rpki-client