Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer
File: S0hmIAQIn1u2gZSrBLgwzUM6K3A.cer (raw, json)
Hash identifier: g6z4DkISEMXOEviIC9vkuNwEx07tBtlLGBUaBBUrNWU=
Subject key identifier: 4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 31C5
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:32:12 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 36867
IP: 41.223.204.0/22
IP: 196.1.120.0/21
IP: 2001:42e0::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12741 (0x31c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:32:12 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36A7021AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:05:fe:49:bf:c1:53:18:9a:69:ac:9a:b9:ba:
5c:79:09:30:30:a4:f4:00:92:05:cd:5d:e3:f1:c5:
97:55:88:1a:19:ab:4f:a5:a4:7c:11:dc:6e:52:1f:
5b:5a:33:ef:ae:0c:08:39:86:6c:81:f2:66:b7:fe:
1d:0f:a3:21:62:f2:6f:7a:2c:c7:c7:d8:76:1d:19:
14:da:84:3c:eb:35:66:fe:9a:d2:b2:2e:61:d4:73:
ef:9a:13:6e:c1:13:71:57:db:ff:0d:77:18:e4:c8:
78:f0:6b:81:a5:10:ff:60:0e:a3:d2:bc:5c:05:71:
d1:16:38:fb:ef:c8:46:73:10:a4:c7:32:7c:e5:a9:
f0:11:1e:d8:a7:19:b1:a4:d2:eb:12:43:02:4c:46:
69:43:c8:72:d8:b3:26:d1:5b:8a:c1:7e:48:28:38:
9b:4b:17:eb:bf:79:dd:68:06:98:79:93:17:6e:4a:
9d:75:ec:b8:7d:4f:78:ba:6d:8c:38:87:96:67:05:
4c:1e:6f:e2:4c:5e:3e:ba:63:e0:ab:1a:90:f7:8b:
41:6f:d3:13:59:de:60:35:f9:d8:0e:a0:05:75:1d:
c5:61:ff:ca:fb:4b:2c:e9:f7:94:f3:fc:2c:86:6d:
be:3e:64:5c:9b:c1:4d:de:8a:3d:57:db:61:07:35:
15:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:48:66:20:04:08:9F:5B:B6:81:94:AB:04:B8:30:CD:43:3A:2B:70
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A7021/E503991C02C311EFBD1277F5007001B1/S0hmIAQIn1u2gZSrBLgwzUM6K3A.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
36867
sbgp-ipAddrBlock: critical
IPv4:
41.223.204.0/22
196.1.120.0/21
IPv6:
2001:42e0::/32
Signature Algorithm: sha256WithRSAEncryption
22:e1:ab:b1:f3:7a:b3:56:13:ee:4d:64:2a:85:d2:9e:b1:aa:
06:44:05:f3:13:7e:cb:67:84:96:28:93:ed:c2:81:e0:5b:0f:
2e:4d:b8:bf:99:77:f8:c1:29:93:6b:6b:51:27:24:21:70:0f:
b2:50:f7:50:d9:47:4d:f3:e3:64:a9:43:b4:8e:02:c4:80:d3:
55:ee:7c:69:63:35:c1:72:d3:be:4a:1f:04:c8:eb:05:70:e0:
e4:da:43:95:1a:1e:d6:11:f0:ea:bb:74:79:05:78:d1:ab:33:
07:91:a7:cb:b1:4d:94:55:83:73:79:62:f8:e7:ef:31:06:7e:
47:d2:6c:0c:42:fd:a4:1b:a9:58:cc:6a:65:b9:18:34:28:b3:
76:cf:8c:0d:92:7f:b4:9d:ac:6e:1d:36:ad:25:89:ca:b9:62:
30:21:26:64:0f:dc:46:9b:1d:31:af:ac:51:cb:45:26:3d:0a:
00:96:60:ad:40:f3:90:c6:59:ca:1a:f7:9b:5e:ab:1a:2f:a5:
68:ca:50:65:e6:bc:2e:4a:2b:b8:74:30:47:f1:1e:db:e3:30:
90:b1:1f:2b:2e:f4:38:f1:ba:38:2d:8d:e7:ce:01:23:9d:44:
c2:72:91:7f:18:fd:2a:e7:fd:d0:4b:54:a5:24:a8:2d:ce:f1:
9e:7f:c3:a6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:32:43 2025 by rpki-client