Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/TibbH7y8v-dYX84SgHnV75Hfj14.cer
File: TibbH7y8v-dYX84SgHnV75Hfj14.cer (raw, json)
Hash identifier: d0N9napILbCQlnkwoVsoGLgp3LvMkFvY/kGNqrPavzA=
Subject key identifier: 4E:26:DB:1F:BC:BC:BF:E7:58:5F:CE:12:80:79:D5:EF:91:DF:8F:5E
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 326A
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E33CD/C394ECF00E6811EDB3EB47F0F1222468/TibbH7y8v-dYX84SgHnV75Hfj14.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E33CD/C394ECF00E6811EDB3EB47F0F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:07:21 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328621
IP: 102.223.236.0/22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12906 (0x326a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:07:21 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E33CDAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d8:37:32:70:97:0b:cb:42:7e:f0:0d:d9:b1:
cd:6d:f3:7f:f1:fd:5f:cd:70:c3:60:45:5b:ed:7e:
be:ec:bf:55:b6:de:38:5c:b3:e7:6d:83:bb:62:eb:
50:6d:54:a6:15:76:3f:4f:1d:f1:24:ad:df:8c:c8:
3b:9f:ad:85:aa:4a:e2:1f:9b:d6:88:3b:f9:4e:c3:
37:42:b2:fe:3a:a8:c7:6c:89:60:cf:1a:61:7d:bd:
3a:f3:fb:8d:fc:71:51:60:19:1d:af:a0:82:77:05:
49:0f:95:bf:ec:ef:6a:9d:a3:a9:ce:84:ea:f0:d4:
0f:b7:d0:24:fc:3f:d7:3c:de:7d:07:ed:d4:57:e2:
09:c8:83:d5:f4:b7:bc:92:15:73:d6:0c:86:30:40:
23:1c:3d:4f:0d:99:d3:59:8e:dd:8e:16:82:e8:15:
5e:8a:12:85:18:86:b2:d0:f5:1d:fe:c2:17:21:e9:
6c:6a:86:93:69:6c:68:49:ae:51:cf:11:47:b6:92:
b5:af:eb:13:81:34:68:73:51:65:3b:2e:12:ee:e6:
ac:86:93:50:d1:11:d7:4a:ac:15:80:c9:99:e7:d4:
20:6f:60:56:bc:51:aa:13:fb:9b:f7:b4:84:50:88:
8e:43:60:65:42:35:f8:f9:9a:2d:4b:2a:3a:ab:fd:
27:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:26:DB:1F:BC:BC:BF:E7:58:5F:CE:12:80:79:D5:EF:91:DF:8F:5E
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E33CD/C394ECF00E6811EDB3EB47F0F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E33CD/C394ECF00E6811EDB3EB47F0F1222468/TibbH7y8v-dYX84SgHnV75Hfj14.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328621
sbgp-ipAddrBlock: critical
IPv4:
102.223.236.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:14:bd:36:c9:14:cd:27:73:4c:0f:df:48:a7:f9:dd:9f:a8:
e7:7f:0b:1a:f4:bc:dc:0b:74:76:e3:74:50:b1:aa:c8:ab:a3:
f0:1d:1d:fe:d9:f7:fc:0d:3b:ec:db:d2:9e:e2:81:f9:d5:ca:
95:33:dc:7b:ec:10:c5:97:53:1c:c8:0b:72:9d:a3:31:55:56:
4b:17:9c:1e:87:ea:95:27:e6:2d:ce:8f:ca:ab:68:61:47:cf:
9e:e4:9f:fd:99:83:f5:17:a4:16:e6:d0:89:f3:4a:82:70:99:
77:d2:4c:ad:a2:43:d7:df:6c:c6:62:75:4c:86:eb:e0:d9:3b:
0a:dc:b9:84:b5:65:94:02:d7:36:6a:ef:67:b4:31:be:f8:06:
d0:f9:27:3e:7d:93:f8:7a:b6:86:7c:97:22:d6:0b:a0:fa:1f:
07:58:97:ca:a5:fd:ae:c2:98:90:43:cd:25:13:24:89:f7:b2:
c7:aa:a2:c6:ac:f9:0b:db:68:5b:51:9e:bc:cd:27:f2:0d:2c:
e6:fe:cb:4a:eb:40:36:ad:2f:23:e2:5c:39:48:d2:7b:e3:86:
b8:48:aa:1b:da:93:b4:17:7c:f9:98:ec:51:1d:fa:4b:6b:a8:
4f:b9:a9:05:2c:05:91:36:3e:35:de:4b:d8:fc:60:69:97:d9:
4c:22:c7:ab
-----BEGIN CERTIFICATE-----
MIIGFjCCBP6gAwIBAgICMmowDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwNTA3MjFaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkUzM0NEQUYxMTAvBgNVBAUTKDRFMjZEQjFGQkNCQ0JGRTc1ODVGQ0Ux
MjgwNzlENUVGOTFERjhGNUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDM2DcycJcLy0J+8A3Zsc1t83/x/V/NcMNgRVvtfr7sv1W23jhcs+dtg7ti61Bt
VKYVdj9PHfEkrd+MyDufrYWqSuIfm9aIO/lOwzdCsv46qMdsiWDPGmF9vTrz+438
cVFgGR2voIJ3BUkPlb/s72qdo6nOhOrw1A+30CT8P9c83n0H7dRX4gnIg9X0t7yS
FXPWDIYwQCMcPU8NmdNZjt2OFoLoFV6KEoUYhrLQ9R3+whch6WxqhpNpbGhJrlHP
EUe2krWv6xOBNGhzUWU7LhLu5qyGk1DREddKrBWAyZnn1CBvYFa8UaoT+5v3tIRQ
iI5DYGVCNfj5mi1LKjqr/SerAgMBAAGjggMLMIIDBzAdBgNVHQ4EFgQUTibbH7y8
v+dYX84SgHnV75Hfj14wHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZFMzNDRC9DMzk0RUNGMDBFNjgx
MUVEQjNFQjQ3RjBGMTIyMjQ2OC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RTMzQ0QvQzM5NEVDRjAwRTY4MTFFREIzRUI0N0YwRjEyMjI0NjgvVGliYkg3
eTh2LWRZWDg0U2dIblY3NUhmajE0Lm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFA60wHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm3+wwDQYJKoZIhvcN
AQELBQADggEBAC4UvTbJFM0nc0wP30in+d2fqOd/Cxr0vNwLdHbjdFCxqsiro/Ad
Hf7Z9/wNO+zb0p7igfnVypUz3HvsEMWXUxzIC3KdozFVVksXnB6H6pUn5i3Oj8qr
aGFHz57kn/2Zg/UXpBbm0InzSoJwmXfSTK2iQ9ffbMZidUyG6+DZOwrcuYS1ZZQC
1zZq72e0Mb74BtD5Jz59k/h6toZ8lyLWC6D6HwdYl8ql/a7CmJBDzSUTJIn3sseq
osas+QvbaFtRnrzNJ/INLOb+y0rrQDatLyPiXDlI0nvjhrhIqhvak7QXfPmY7FEd
+ktrqE+5qQUsBZE2PjXeS9j8YGmX2Uwix6s=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:51:19 2025 by rpki-client