Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Pct5xzhsFKacQ1XzTDvFs09ES64.cer
File: Pct5xzhsFKacQ1XzTDvFs09ES64.cer (raw, json)
Hash identifier: iyxZIuhMLkWZh10cKjRmqYsqmMZ0p7JnPjWDw7HqzEM=
Subject key identifier: 3D:CB:79:C7:38:6C:14:A6:9C:43:55:F3:4C:3B:C5:B3:4F:44:4B:AE
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 32A4
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36FA5EA/0B1437CA38B211ED8B64E4DBF1222468/Pct5xzhsFKacQ1XzTDvFs09ES64.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36FA5EA/0B1437CA38B211ED8B64E4DBF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:20:01 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 36909
IP: 41.78.168.0/22
IP: 41.220.128.0/20
IP: 154.0.152.0/21
IP: 2c0f:fd20::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12964 (0x32a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:20:01 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36FA5EAAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:01:77:17:fd:14:7a:e2:bf:a6:e7:85:7f:af:
f9:61:b9:05:ea:76:3d:48:77:59:2a:57:b4:3c:7c:
48:80:7f:40:ea:44:e7:61:5d:da:05:5c:c3:9f:6c:
85:29:fc:df:61:b9:2e:8c:30:bc:58:65:14:4c:87:
81:04:85:42:e9:a1:2c:a1:59:c5:43:13:6b:57:f7:
06:3b:e6:ee:dc:69:47:cc:10:dc:3c:61:40:30:bc:
19:19:0d:af:ac:3f:14:2e:76:a8:ac:14:b0:87:9f:
cc:89:ee:8f:a6:83:67:d6:51:c5:29:22:eb:3f:6c:
78:b9:8b:da:ee:16:75:3f:1f:69:98:1e:ce:f2:be:
70:e4:3d:87:9b:e9:7d:82:db:20:54:61:8c:e7:d7:
11:d1:c5:88:00:30:92:07:34:27:27:75:ca:7a:5b:
c3:04:86:ef:65:d8:b9:6c:80:3a:4b:2d:29:22:30:
ee:cf:ec:1a:18:5e:f7:50:87:4d:84:ac:b7:c0:ab:
cc:f3:66:27:82:42:58:9f:db:7f:d9:2b:67:b8:0b:
b4:13:51:2a:60:79:0f:bc:3b:b7:9d:40:ef:0a:a8:
23:1c:40:cb:2b:f9:d2:0e:93:dc:ee:3c:68:c4:4d:
11:4e:7a:f6:96:0a:44:3b:38:79:d5:d7:7a:bb:c4:
96:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:CB:79:C7:38:6C:14:A6:9C:43:55:F3:4C:3B:C5:B3:4F:44:4B:AE
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA5EA/0B1437CA38B211ED8B64E4DBF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA5EA/0B1437CA38B211ED8B64E4DBF1222468/Pct5xzhsFKacQ1XzTDvFs09ES64.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
36909
sbgp-ipAddrBlock: critical
IPv4:
41.78.168.0/22
41.220.128.0/20
154.0.152.0/21
IPv6:
2c0f:fd20::/32
Signature Algorithm: sha256WithRSAEncryption
83:fe:32:e6:c9:d7:fe:b3:e5:ed:23:bd:60:1c:78:7d:0b:b7:
24:6a:33:2b:0e:56:82:4a:f6:ef:17:af:e2:62:94:b6:86:1e:
c4:bf:2c:c0:c5:7d:b5:ee:09:54:c5:cc:fc:8d:f6:ed:68:53:
ab:c9:3a:64:c0:59:07:71:ea:19:f5:a9:4d:42:fb:fa:f2:33:
70:56:16:28:9a:d3:0e:03:b0:94:b6:56:71:35:5a:df:9f:ca:
a7:cd:c6:95:3a:fc:f8:af:40:62:c4:f9:2e:4c:ab:7b:63:05:
08:1f:69:58:85:1b:5d:ad:1f:19:65:7f:28:b9:e7:df:4b:50:
ac:fa:ac:36:26:af:ea:95:36:b6:d8:d6:b5:17:54:eb:61:c9:
bb:c2:7b:21:ac:12:8e:41:54:0f:ef:b2:ce:b3:43:5d:37:2c:
9a:af:60:34:25:4c:58:74:da:9b:ab:3b:31:4f:aa:7a:4f:4a:
de:6d:0e:c6:48:d8:2f:0f:40:a6:fd:b1:4c:a3:38:cf:76:3d:
f1:21:a1:7d:4d:05:74:31:08:8a:13:17:22:b2:26:cb:61:ac:
2f:5a:04:e7:f9:5d:35:c4:65:02:ca:c1:ff:e2:65:5b:4a:a3:
ce:02:73:c7:53:d4:28:23:f6:c8:61:4d:22:a8:2f:11:a7:d9:
c6:a5:30:07
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgICMqQwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwNTIwMDFaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkZBNUVBQUYxMTAvBgNVBAUTKDNEQ0I3OUM3Mzg2QzE0QTY5QzQzNTVG
MzRDM0JDNUIzNEY0NDRCQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDtAXcX/RR64r+m54V/r/lhuQXqdj1Id1kqV7Q8fEiAf0DqROdhXdoFXMOfbIUp
/N9huS6MMLxYZRRMh4EEhULpoSyhWcVDE2tX9wY75u7caUfMENw8YUAwvBkZDa+s
PxQudqisFLCHn8yJ7o+mg2fWUcUpIus/bHi5i9ruFnU/H2mYHs7yvnDkPYeb6X2C
2yBUYYzn1xHRxYgAMJIHNCcndcp6W8MEhu9l2LlsgDpLLSkiMO7P7BoYXvdQh02E
rLfAq8zzZieCQlif23/ZK2e4C7QTUSpgeQ+8O7edQO8KqCMcQMsr+dIOk9zuPGjE
TRFOevaWCkQ7OHnV13q7xJYPAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQUPct5xzhs
FKacQ1XzTDvFs09ES64wHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZGQTVFQS8wQjE0MzdDQTM4QjIx
MUVEOEI2NEU0REJGMTIyMjQ2OC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RkE1RUEvMEIxNDM3Q0EzOEIyMTFFRDhCNjRFNERCRjEyMjI0NjgvUGN0NXh6
aHNGS2FjUTFYelREdkZzMDlFUzY0Lm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMAkC0wOgYIKwYBBQUHAQcBAf8EKzApMBgEAgABMBIDBAIpTqgDBAQp3IADBAOa
AJgwDQQCAAIwBwMFACwP/SAwDQYJKoZIhvcNAQELBQADggEBAIP+MubJ1/6z5e0j
vWAceH0LtyRqMysOVoJK9u8Xr+JilLaGHsS/LMDFfbXuCVTFzPyN9u1oU6vJOmTA
WQdx6hn1qU1C+/ryM3BWFiia0w4DsJS2VnE1Wt+fyqfNxpU6/PivQGLE+S5Mq3tj
BQgfaViFG12tHxllfyi5599LUKz6rDYmr+qVNrbY1rUXVOthybvCeyGsEo5BVA/v
ss6zQ103LJqvYDQlTFh02purOzFPqnpPSt5tDsZI2C8PQKb9sUyjOM92PfEhoX1N
BXQxCIoTFyKyJsthrC9aBOf5XTXEZQLKwf/iZVtKo84Cc8dT1Cgj9shhTSKoLxGn
2calMAc=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:51:20 2025 by rpki-client