Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/XVwqlrLjcrCsR_SNvcfX_R-9sTI.cer
File: XVwqlrLjcrCsR_SNvcfX_R-9sTI.cer (raw, json)
Hash identifier: n+n3rf1RIgiZ6V9DIV+5nlxHFU6VJOc+Uzl2527K58Q=
Subject key identifier: 5D:5C:2A:96:B2:E3:72:B0:AC:47:F4:8D:BD:C7:D7:FD:1F:BD:B1:32
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E4B
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3644DAB/B511F7E4F24911ECA2791192F1222468/XVwqlrLjcrCsR_SNvcfX_R-9sTI.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3644DAB/B511F7E4F24911ECA2791192F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:28:53 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329050
IP: 102.216.21.0/24
IP: 2001:43fc:6000::/48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11851 (0x2e4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:28:53 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3644DABAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:d4:b9:e1:21:7f:77:4b:3f:0b:f5:ca:e3:
0c:ff:10:2a:73:ff:f1:17:a9:7a:4e:13:fe:32:e0:
86:32:45:4c:0d:6b:75:9f:6d:32:92:61:06:b1:ee:
72:cd:64:98:8f:45:ee:c3:42:52:ee:73:4a:05:d0:
3a:ab:58:39:f7:81:bd:b2:c6:4b:63:6f:eb:de:d1:
ff:70:d3:d0:33:0f:65:b4:05:fe:2a:57:64:3a:7a:
d7:32:ab:1c:c5:11:ee:4a:6b:1c:0b:33:0e:01:ff:
71:41:b9:6a:6a:76:0c:d3:ad:27:84:d2:ab:30:14:
d4:3d:79:5d:0c:90:e0:20:07:1f:d2:bb:2d:ac:45:
33:80:a6:6e:3c:44:77:38:9a:3c:d7:5a:2b:4e:33:
e9:17:cc:26:93:65:53:f1:18:5f:d2:25:7f:7b:d8:
a4:08:53:61:04:8d:76:0d:40:07:17:78:d3:a6:84:
9e:10:77:40:ec:e2:8c:dd:95:23:c8:d0:45:c4:30:
5d:f6:97:69:db:89:dc:f7:14:0f:c7:a8:0e:1c:03:
79:d5:d6:b1:e4:da:52:32:88:6f:b1:2a:83:4d:43:
e3:0d:dc:8c:7d:4d:07:d8:5a:bd:03:c8:aa:a8:ec:
87:c6:d8:52:5b:f9:0c:ee:9c:92:d2:05:a2:fa:f9:
f8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:5C:2A:96:B2:E3:72:B0:AC:47:F4:8D:BD:C7:D7:FD:1F:BD:B1:32
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644DAB/B511F7E4F24911ECA2791192F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644DAB/B511F7E4F24911ECA2791192F1222468/XVwqlrLjcrCsR_SNvcfX_R-9sTI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329050
sbgp-ipAddrBlock: critical
IPv4:
102.216.21.0/24
IPv6:
2001:43fc:6000::/48
Signature Algorithm: sha256WithRSAEncryption
4b:da:2d:bb:51:7d:10:e9:6f:84:41:76:01:64:10:2b:16:d3:
a0:22:e5:19:11:a2:b5:2c:9d:b5:fe:2e:e8:a9:7a:27:fc:61:
40:5e:c3:6b:98:1f:67:eb:55:33:b5:5e:ec:b1:06:1a:2a:89:
98:58:8e:3a:da:91:5d:04:2c:40:1d:3f:09:5a:7d:c2:1e:a8:
2f:68:bd:0d:d5:4e:af:5d:9d:28:24:9d:48:71:1c:82:8c:1e:
ae:0b:f1:04:85:01:26:55:e9:77:41:b1:c8:d8:83:6d:ad:29:
34:7f:c5:8b:7c:8c:94:18:38:69:44:79:de:40:ce:25:59:74:
f3:3d:79:7d:6b:a1:1c:e8:1a:97:30:48:49:65:21:12:b3:8a:
78:d9:dc:05:d7:0c:16:0f:c8:fe:50:a9:d7:37:a0:ca:08:9d:
4f:ec:f9:3f:9c:6a:c6:9f:6b:06:53:9b:50:25:dd:66:4e:dd:
d5:3d:f1:09:a6:4b:13:40:26:94:ac:0e:1a:aa:d7:6e:b6:d5:
0d:7d:28:cd:1a:e7:9f:35:b4:50:c4:4e:d5:1f:2e:09:17:c0:
b7:df:3f:7d:fc:e7:10:63:0d:2b:a8:29:28:69:94:e0:b7:5d:
cc:9d:85:0b:af:d2:9b:8c:dc:6d:f1:3f:e5:ab:ef:04:60:9e:
1a:47:df:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 22:31:57 2025 by rpki-client