Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Vtkm3-FLVBTqtZN12UzwH6VI0xY.cer
File: Vtkm3-FLVBTqtZN12UzwH6VI0xY.cer (raw, json)
Hash identifier: SiBAHrdkzgN17W1wy8PSvLRi8GyK09h/9da39exsApU=
Subject key identifier: 56:D9:26:DF:E1:4B:54:14:EA:B5:93:75:D9:4C:F0:1F:A5:48:D3:16
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 325E
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36BF1B7/71F44CFCEE9F11E8946A735DF8AEA228/Vtkm3-FLVBTqtZN12UzwH6VI0xY.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36BF1B7/71F44CFCEE9F11E8946A735DF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:04:45 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 197.234.240.0/22
IP: 2c0f:f248::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12894 (0x325e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:04:45 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36BF1B7AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fe:53:94:d5:b2:0e:47:89:57:e3:43:bc:59:
8a:ee:ba:66:b6:23:94:14:41:35:04:2b:aa:af:f9:
d6:3d:1f:df:77:90:ec:d1:01:6b:80:2a:78:77:58:
e6:cc:23:c1:8b:6e:d1:fd:ff:dc:9e:44:d4:9c:c2:
89:88:b5:c2:d1:82:ec:e1:b8:8a:83:8d:2d:c0:50:
9c:48:a4:9e:09:46:7c:98:2c:e9:7d:4b:9a:43:10:
d6:be:55:4b:ab:94:a5:d6:9c:2b:2d:b7:d0:20:d8:
fd:57:31:9d:24:b1:41:00:78:b2:76:1a:b2:e1:ab:
78:dd:94:79:dd:a4:50:c7:92:b5:ad:5a:10:3f:db:
c3:9e:be:54:81:c6:62:90:a6:ed:33:8d:d7:10:c4:
95:6e:37:bc:e3:6c:d8:8c:3b:af:cc:99:8e:c3:8b:
22:44:c1:e5:fc:d1:81:85:6d:4b:48:db:73:01:a6:
e4:48:f1:81:5e:81:0a:fd:e1:7f:de:d1:3f:1e:df:
93:38:4e:c5:6e:40:e3:bf:79:fe:c9:95:3c:56:6d:
c9:80:e7:19:9d:78:30:6e:f8:8c:1e:4d:df:a8:c9:
4b:25:43:b6:ee:a2:d1:2b:48:ce:65:a4:43:36:0f:
d8:c6:5b:7b:1e:eb:c2:ba:bc:f3:25:c3:58:db:c4:
3d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D9:26:DF:E1:4B:54:14:EA:B5:93:75:D9:4C:F0:1F:A5:48:D3:16
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BF1B7/71F44CFCEE9F11E8946A735DF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BF1B7/71F44CFCEE9F11E8946A735DF8AEA228/Vtkm3-FLVBTqtZN12UzwH6VI0xY.mft
sbgp-ipAddrBlock: critical
IPv4:
197.234.240.0/22
IPv6:
2c0f:f248::/32
Signature Algorithm: sha256WithRSAEncryption
36:2f:8e:77:fc:08:6a:a5:3b:35:4c:e0:19:ea:e7:89:06:a5:
f1:5e:44:f9:99:72:87:0e:8f:cd:49:a5:e8:9f:44:b6:7a:c3:
53:57:94:45:f0:b4:18:21:7d:d9:7a:27:b2:63:35:dc:5e:44:
86:1f:47:06:c8:51:97:4e:04:6e:01:69:43:4d:16:fa:76:ad:
8d:2b:4d:ac:a3:0f:75:f1:c7:c4:0e:5f:e9:30:b2:bd:92:db:
9a:5e:01:5b:4a:89:d0:74:ee:bd:ac:63:9d:2b:7e:3f:07:5c:
76:aa:1c:b3:03:bf:1c:aa:9d:14:0c:77:f0:f0:cc:04:a0:bb:
b9:bc:4e:55:90:a9:c2:7e:57:8f:85:bf:8f:50:01:ed:78:7c:
78:c0:f2:66:7f:e0:69:9e:86:c4:67:6f:51:6a:66:7a:ba:44:
c1:07:47:4b:23:7b:9e:d4:ab:93:45:77:ab:fd:98:a3:6f:93:
a7:bf:99:62:01:e7:60:00:51:ec:d8:41:e1:bb:52:7c:c1:a7:
a1:d2:eb:e7:06:c6:f2:87:53:76:70:3c:b8:31:bd:4a:32:2e:
20:99:ad:b5:f2:40:c0:bb:72:d7:6d:86:60:3c:66:d5:cb:41:
82:37:f0:83:dc:6c:11:46:0c:a0:7b:5f:c6:96:b1:7d:8f:30:
de:f4:8b:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:48:04 2025 by rpki-client