Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/UsjVbfSu4mPoplESmKYZzpjIrA4.cer
File: UsjVbfSu4mPoplESmKYZzpjIrA4.cer (raw, json)
Hash identifier: ZGIGeNr+PvcJOrs/peeFIv8iRPxM9L9WCsZnBSqVGYI=
Subject key identifier: 52:C8:D5:6D:F4:AE:E2:63:E8:A6:51:12:98:A6:19:CE:98:C8:AC:0E
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F2E
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F365BF9E/E18FB3DECA2411EDA24C598BF1222468/UsjVbfSu4mPoplESmKYZzpjIrA4.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F365BF9E/E18FB3DECA2411EDA24C598BF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:15:09 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328884
IP: 102.217.152.0/22
IP: 102.219.40.0/22
IP: 2c0f:5100::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12078 (0x2f2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:15:09 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F365BF9EAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:00:3f:8e:54:47:24:4c:0f:76:3d:3d:8a:4e:
b0:72:78:ae:64:69:4e:dd:38:cd:f1:55:60:93:7e:
f9:a4:01:37:72:9e:92:8e:d0:d1:81:99:a0:99:c1:
f4:5b:9c:23:11:0f:02:06:1f:9a:0f:1b:b2:48:7c:
7f:31:be:d5:11:60:69:3e:43:36:cf:4f:74:4b:c0:
67:23:03:da:f8:24:bc:19:b4:ef:e3:f0:80:79:3d:
91:90:cd:d9:a4:43:a2:b4:ed:00:61:4d:19:6a:ec:
77:58:55:a9:4d:6b:7a:b0:b2:e2:0a:e8:13:3b:fd:
e6:b2:00:72:12:3f:a4:9a:eb:35:66:12:47:83:cb:
d3:c0:4c:d4:ec:21:44:e5:a5:e4:d9:84:e1:43:dd:
f8:fb:ec:e7:a2:92:81:77:3a:08:48:1b:5b:5a:6a:
19:12:4a:ec:55:7e:3d:f7:cb:c6:1c:ee:89:24:8c:
6e:00:63:c9:c7:39:ed:33:a9:89:23:f1:d2:c6:e4:
d3:97:5a:20:a8:01:94:06:0c:26:5c:a7:37:1f:31:
29:04:89:77:d4:01:83:61:f7:cc:d8:18:d3:4d:a7:
5c:8a:c1:7f:fb:66:b4:2a:95:40:c6:19:d6:a6:52:
08:a1:c6:08:f3:88:1a:c7:66:63:57:c7:c4:0c:54:
12:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:C8:D5:6D:F4:AE:E2:63:E8:A6:51:12:98:A6:19:CE:98:C8:AC:0E
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F365BF9E/E18FB3DECA2411EDA24C598BF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F365BF9E/E18FB3DECA2411EDA24C598BF1222468/UsjVbfSu4mPoplESmKYZzpjIrA4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328884
sbgp-ipAddrBlock: critical
IPv4:
102.217.152.0/22
102.219.40.0/22
IPv6:
2c0f:5100::/32
Signature Algorithm: sha256WithRSAEncryption
8d:7b:a8:b2:35:7d:80:03:9a:ce:56:da:b5:70:81:a5:27:e3:
4d:bb:6e:9b:1f:81:4d:3f:68:43:59:fc:c8:8b:4f:2e:8b:fa:
83:6f:d7:13:af:8c:0f:39:63:ad:2f:5c:69:c0:4b:96:b0:7a:
7b:57:15:9f:0f:3d:6c:b3:b1:69:d8:98:0c:da:07:66:8b:fe:
08:60:33:33:22:7b:3a:53:0f:48:0e:85:c8:f9:e2:cb:17:fd:
f2:28:07:af:2d:94:57:0f:79:0d:1c:4c:25:07:3a:86:7c:0d:
0d:ee:29:a7:bd:9b:2e:4b:07:67:5a:c6:a6:80:29:13:88:ef:
2d:1f:e4:7f:9b:09:d0:52:15:eb:a9:62:f8:2f:be:14:5d:4a:
f5:d8:80:ff:68:9a:e1:0f:25:8e:6f:12:94:60:e7:59:86:8e:
d2:69:be:03:6c:d0:69:27:35:c4:39:69:03:0a:7d:1e:0a:3d:
a7:8d:f9:db:c1:3e:f3:73:fb:1c:a5:ef:01:9c:55:1f:fd:66:
9b:7f:99:5f:81:98:dc:57:2e:ef:0a:1b:83:70:19:a1:0a:c1:
d5:83:41:85:58:37:b2:30:24:da:60:c3:84:30:03:54:f7:63:
d1:49:68:2c:5e:22:dc:ae:33:28:33:0b:25:a1:13:9f:d8:a3:
83:99:25:bb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:47:01 2025 by rpki-client