Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Rd8OHH-lNNrKIJKaup5jKPur-1E.cer
File: Rd8OHH-lNNrKIJKaup5jKPur-1E.cer (raw, json)
Hash identifier: SrCeE8V/cc4nw8tzC5BYzbwFZWxf/Tf4xxTwh+RClqs=
Subject key identifier: 45:DF:0E:1C:7F:A5:34:DA:CA:20:92:9A:BA:9E:63:28:FB:AB:FB:51
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 329E
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36EE1C1/050BE1D635B311ED9721E3F0F1222468/Rd8OHH-lNNrKIJKaup5jKPur-1E.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36EE1C1/050BE1D635B311ED9721E3F0F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:18:49 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329121
IP: 102.214.232.0/22
IP: 2c0f:7080::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12958 (0x329e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:18:49 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36EE1C1AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3f:f4:8a:29:ad:6f:82:15:02:67:9a:3f:33:
6e:b3:1e:2a:53:11:13:11:8b:78:0c:ee:46:31:cb:
28:4c:b0:4e:59:e2:b4:22:50:2a:02:b1:a0:75:4a:
df:01:e8:b0:29:cb:3e:94:84:3b:33:5a:44:72:96:
7a:0b:a1:b2:d0:80:db:5e:b5:81:26:91:18:07:14:
63:e9:13:f1:5d:e5:8f:e2:7a:c3:b6:c9:8a:36:68:
92:f4:cb:c9:24:db:e4:8b:cb:8e:80:6d:ce:34:92:
b7:ef:1e:95:7d:37:e8:b9:a5:f8:be:78:c9:96:04:
c3:3e:44:e6:e3:71:67:16:e2:f2:92:e4:29:7a:68:
d4:6d:b2:0e:b3:75:db:7e:30:5d:2b:29:76:58:5d:
25:79:1f:81:8b:ee:68:89:b0:1b:a1:ee:ea:81:a7:
f1:99:af:5a:86:6b:35:c3:28:f0:78:33:04:86:2f:
db:53:a1:9d:ca:2f:f1:1c:60:63:be:d1:0c:27:46:
5e:2a:2d:69:de:ea:93:fe:67:5b:11:78:a0:62:9b:
4f:e3:cc:51:cc:57:60:2d:69:d7:46:09:35:98:e0:
2b:85:3b:8b:c7:4f:86:94:d9:cd:9f:c4:90:55:f3:
e2:be:43:b2:12:ad:59:10:b3:08:4f:94:b3:38:d7:
a7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:DF:0E:1C:7F:A5:34:DA:CA:20:92:9A:BA:9E:63:28:FB:AB:FB:51
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EE1C1/050BE1D635B311ED9721E3F0F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EE1C1/050BE1D635B311ED9721E3F0F1222468/Rd8OHH-lNNrKIJKaup5jKPur-1E.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329121
sbgp-ipAddrBlock: critical
IPv4:
102.214.232.0/22
IPv6:
2c0f:7080::/32
Signature Algorithm: sha256WithRSAEncryption
b9:f8:69:8f:76:e2:98:68:74:62:a7:ab:07:1f:a8:cc:42:00:
f0:77:53:c1:ae:06:b7:81:55:63:0a:08:7d:9c:03:3b:da:5d:
9e:20:69:44:53:30:2d:4a:b3:39:1b:e1:11:98:1c:8c:4e:1b:
aa:5d:17:2f:b2:9f:bc:42:e8:e5:ec:35:e0:dc:45:33:4f:9b:
13:85:50:f9:6d:bd:1b:82:38:d4:b0:df:60:ff:8a:ff:5e:11:
99:73:fc:07:bd:ce:72:aa:9f:b8:77:8b:c9:d4:45:cb:a9:07:
50:13:8b:ad:e0:08:d5:3d:92:03:12:a6:a1:b2:10:2f:34:44:
55:b7:53:d7:11:4a:7e:2a:5c:51:6a:54:c5:54:b0:97:fd:26:
ea:8c:40:ce:8b:e8:6b:28:9f:64:1f:31:76:30:9b:be:e6:7c:
4d:f7:2b:b9:77:fe:85:55:ae:bb:10:53:49:dd:36:2e:66:18:
df:5f:1d:87:0f:49:14:eb:a8:6a:57:f1:bc:e2:63:55:04:24:
84:32:eb:4b:82:2d:eb:65:76:a8:7b:7b:bb:77:3c:60:b3:d7:
f6:14:5f:07:10:49:30:cd:f6:ad:78:70:e4:ec:dc:5a:dc:a1:
21:c7:30:7c:10:d1:49:5c:ba:c4:a0:35:b4:bf:8c:a3:ef:3c:
7e:d7:c5:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:56:24 2025 by rpki-client