Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/U3W2ePNrjZxrXcMoG29etnFqEQk.cer
File: U3W2ePNrjZxrXcMoG29etnFqEQk.cer (raw, json)
Hash identifier: KzduE8VJHgibIBEYgulbAb8TB8f00it5hfwNWMmsZuA=
Subject key identifier: 53:75:B6:78:F3:6B:8D:9C:6B:5D:C3:28:1B:6F:5E:B6:71:6A:11:09
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2D2D
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F361F1DA/2DA8F37A77E011EEA233EA7B4AD9E6FC/U3W2ePNrjZxrXcMoG29etnFqEQk.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F361F1DA/2DA8F37A77E011EEA233EA7B4AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:27:20 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 327907
IP: 102.135.128.0/19
IP: 102.214.216.0/22
IP: 2c0f:f020::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11565 (0x2d2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:27:20 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F361F1DAAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:46:be:1b:4b:14:a3:09:a3:31:ee:30:28:55:
c7:62:ed:63:75:bb:48:a9:e5:56:5b:7c:0d:02:21:
b2:3f:8e:64:74:c8:8b:08:bb:f3:cd:80:38:dc:1a:
64:44:72:a4:11:26:1b:9e:95:67:7e:c1:35:65:b5:
f9:67:bd:8e:77:ea:5e:4e:23:73:31:dc:5e:7a:7e:
0f:56:aa:e8:08:23:ab:f1:a9:f1:51:02:f8:e0:5a:
5b:fd:32:fa:7b:04:de:a3:a1:e0:89:f1:5c:7d:8a:
0c:32:7b:84:ce:58:e8:46:32:20:da:f5:ee:bc:c1:
2f:49:56:3f:6f:29:18:78:79:05:e8:81:18:aa:eb:
cf:cf:87:11:83:99:8b:5d:82:13:8d:cb:88:35:05:
2e:e1:15:19:98:39:f7:82:3a:85:87:49:b7:a8:0b:
5b:4f:78:d2:12:66:71:78:b0:be:92:81:4a:7f:26:
10:8e:34:e0:19:3a:6f:dc:42:ff:99:ff:6a:48:d1:
e8:34:92:4a:c4:3a:15:99:f8:ff:76:27:25:a5:2a:
dc:5e:ba:d7:64:c5:44:b5:64:b5:99:9d:d7:33:ea:
a8:4e:8e:db:3e:a5:89:b1:0a:ca:02:6d:76:da:23:
67:14:d4:44:d4:dd:30:14:fa:d3:08:66:87:53:aa:
74:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:75:B6:78:F3:6B:8D:9C:6B:5D:C3:28:1B:6F:5E:B6:71:6A:11:09
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F361F1DA/2DA8F37A77E011EEA233EA7B4AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F361F1DA/2DA8F37A77E011EEA233EA7B4AD9E6FC/U3W2ePNrjZxrXcMoG29etnFqEQk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327907
sbgp-ipAddrBlock: critical
IPv4:
102.135.128.0/19
102.214.216.0/22
IPv6:
2c0f:f020::/32
Signature Algorithm: sha256WithRSAEncryption
22:37:1a:33:df:ba:af:f6:4c:20:f0:3f:47:d9:56:07:83:56:
72:54:b6:f0:cd:03:a9:bf:bf:c4:36:99:f2:50:66:da:74:da:
72:d4:a5:e5:79:35:a1:61:a9:66:6f:d0:47:b3:cc:91:57:3d:
ec:3f:d2:ea:11:ab:35:25:cf:1e:0f:8d:f4:1b:d2:cd:8a:cd:
69:08:b1:e6:8c:03:b8:ad:15:0f:b4:13:b8:64:7d:bf:d1:df:
6b:77:97:40:c1:c8:bc:5d:b3:5c:7a:4e:a4:a0:af:de:03:52:
c4:16:60:ed:61:09:52:3e:c9:fc:f2:94:c3:94:0a:1a:a4:56:
91:8b:37:ab:ea:0c:13:08:0c:9f:31:33:b2:f2:c8:22:a1:7d:
d4:8f:0e:69:29:b7:24:e5:cd:dc:d2:9d:97:b7:94:bd:7d:5a:
2a:60:6b:ec:9c:e5:64:da:8a:24:01:09:5f:34:27:b1:b8:f0:
fa:34:b5:a4:42:97:e6:a7:6c:57:a7:4f:4e:12:2b:25:28:54:
51:c5:74:ac:97:1e:c9:75:8d:95:96:0b:c7:7e:97:d1:9c:df:
7a:95:54:39:fd:ca:5f:c5:81:f0:46:d4:27:ee:7a:08:84:87:
f9:23:3b:ce:68:cf:af:60:73:e4:41:e8:19:4f:f7:bc:69:79:
93:ab:0c:1c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:37:34 2025 by rpki-client