Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/PVXHhOoXkS8OlgolxsqSDhACMAo.cer
File: PVXHhOoXkS8OlgolxsqSDhACMAo.cer (raw, json)
Hash identifier: 2jH7gAv7Zvwz1X1K5hRcRh3akW0t/knuqAaCmhovPtI=
Subject key identifier: 3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E6A
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:35:40 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 29975
AS: 36994
AS: 37311
IP: 41.0.0.0/11
IP: 41.192.0.0/16
IP: 105.240.0.0/12
IP: 196.6.123.0 -- 196.6.130.255
IP: 196.6.254.0/24
IP: 196.11.58.0/24
IP: 196.11.146.0 -- 196.11.149.255
IP: 196.46.160.0/20
IP: 196.207.32.0/20
IP: 2c0e:4000::/24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11882 (0x2e6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:35:40 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F364712FAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:33:18:87:f7:32:ce:cb:59:0b:1f:1f:12:85:
0b:ee:37:4d:eb:ed:f9:d7:47:5e:06:cf:34:8f:11:
7f:b7:60:a1:83:39:26:19:5e:6e:61:ae:1c:e9:5e:
23:ad:12:cd:4a:93:09:20:df:cf:61:73:5a:59:e2:
d3:72:fe:52:8b:ba:a5:ca:37:d9:b6:9b:97:e2:a5:
a0:34:70:ef:a7:f6:91:2e:85:d0:ff:57:eb:29:4b:
3a:83:be:86:9b:18:6f:03:93:5d:c8:e1:b4:e9:3f:
bc:b8:ef:eb:75:08:99:2c:69:56:da:c6:c1:a8:6b:
62:87:f6:2f:e1:96:26:be:94:2f:bc:0e:cb:ba:0c:
26:ed:b5:60:16:cc:d4:40:76:0a:79:db:e3:c0:5d:
99:2b:2b:e3:f9:47:72:a7:b9:29:b1:15:1e:b0:37:
fc:34:5e:e9:48:42:1f:42:1b:02:57:3a:04:24:b5:
fb:ec:2a:18:a7:a4:d9:30:d8:7e:dd:7b:19:bf:16:
84:eb:19:98:d7:49:11:ed:40:6f:ea:a5:5d:20:c2:
df:b6:9a:b8:0a:85:fe:a0:fb:d0:0a:c8:75:71:fd:
09:fe:e5:cf:55:64:fd:6f:9c:2e:e2:fb:a9:7a:b3:
d6:b6:d2:5b:b1:8a:cf:4f:50:e2:43:98:0e:5a:04:
f7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:55:C7:84:EA:17:91:2F:0E:96:0A:25:C6:CA:92:0E:10:02:30:0A
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F364712F/E9C4BAA2A0E811EB88958D10F8AEA228/PVXHhOoXkS8OlgolxsqSDhACMAo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29975
36994
37311
sbgp-ipAddrBlock: critical
IPv4:
41.0.0.0/11
41.192.0.0/16
105.240.0.0/12
196.6.123.0-196.6.130.255
196.6.254.0/24
196.11.58.0/24
196.11.146.0-196.11.149.255
196.46.160.0/20
196.207.32.0/20
IPv6:
2c0e:4000::/24
Signature Algorithm: sha256WithRSAEncryption
b1:57:94:76:b9:9f:68:1c:63:d9:5f:ec:8d:86:43:e5:0c:d8:
ae:15:c1:d5:84:8e:67:03:c2:e6:94:31:3e:aa:7a:34:a8:7b:
5d:dd:23:a6:6e:ff:12:98:36:25:eb:a5:60:f2:81:36:80:ee:
1e:80:c8:ad:f0:5c:6f:5d:dd:fb:e0:f5:0f:e4:ae:06:e9:8e:
f1:ff:22:b2:eb:eb:90:d6:6b:70:6a:be:1a:da:81:69:da:f1:
84:29:51:53:92:52:a9:11:cb:83:93:75:04:42:22:c6:7b:2f:
e4:54:bf:7e:9b:2e:39:bb:a9:6e:5b:04:0e:b4:f9:93:fb:6e:
1a:de:75:08:5a:67:d7:0e:95:df:a2:d0:6d:ae:24:90:8a:93:
42:67:e3:27:43:f3:8b:7a:a1:5e:01:98:f9:3b:58:1a:4e:f6:
c5:5b:80:6c:98:cd:b1:19:84:19:cb:f6:10:82:f0:83:dd:75:
f2:56:77:da:7b:40:db:fc:08:16:49:87:29:46:4f:d6:28:ca:
7b:a9:72:0c:4c:a3:67:99:d4:4a:75:4f:16:4d:3a:57:2e:87:
29:ad:db:ef:3e:ea:4b:a1:64:da:c1:3e:f3:e7:0f:91:e4:58:
2d:41:0e:45:35:bb:45:87:16:9d:1c:7c:6d:59:33:8b:6d:15:
06:ed:07:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:53:20 2025 by rpki-client