Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/YnUz7Lq32JvZVwsgBUZmBTZpp1k.cer
File: YnUz7Lq32JvZVwsgBUZmBTZpp1k.cer (raw, json)
Hash identifier: EsCqdOzZ8d3kY+EWKVzkCGHCPIuqd0R8P7tjmxBuVIg=
Subject key identifier: 62:75:33:EC:BA:B7:D8:9B:D9:57:0B:20:05:46:66:05:36:69:A7:59
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 33B0
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36FAF9B/5E26B79CCC2711EBA4EA1627F8AEA228/YnUz7Lq32JvZVwsgBUZmBTZpp1k.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36FAF9B/5E26B79CCC2711EBA4EA1627F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 06:21:49 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328861
IP: 102.219.220.0/22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13232 (0x33b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 06:21:49 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36FAF9BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:de:26:65:4f:c2:36:30:b9:4a:9f:9e:11:76:
45:43:e5:51:db:bb:6e:8b:2b:dc:43:cb:0f:f8:86:
d3:3c:33:82:12:f7:45:4c:fa:bb:a0:22:0d:6e:d2:
f8:ee:3a:5c:c2:62:5c:ce:05:b8:0f:92:b8:06:de:
98:d8:6d:82:08:5b:52:1d:ca:1e:b6:b3:68:91:db:
a3:c5:79:39:6d:e3:58:24:98:c0:de:5d:a4:ac:82:
d0:e0:4f:81:3c:c0:9f:43:81:b4:3b:ab:53:8d:4d:
3b:93:03:7b:16:5e:51:12:7c:fa:63:d1:be:95:0d:
31:cd:88:da:26:a7:12:6d:4f:92:cf:f3:8b:a7:11:
69:15:56:25:72:0f:43:eb:cd:4e:ed:f8:23:e9:2a:
d2:aa:ec:53:23:14:c2:e4:bf:0d:54:2c:ca:f6:f5:
35:30:76:80:11:c6:2a:6e:32:c6:6b:47:8a:4a:1c:
f2:e8:31:9a:ce:95:ce:52:5c:9e:84:f3:5a:a1:b4:
d2:d5:aa:8e:91:ef:c1:f3:0d:74:59:96:40:10:c7:
fe:5a:5d:1a:c3:7f:2d:f2:48:78:9f:d2:9a:1e:c2:
12:2f:96:de:4c:92:bc:c9:a0:81:42:ac:e0:f6:2e:
60:01:fd:68:02:d1:e7:71:ad:74:b7:a4:d5:88:4b:
5d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:75:33:EC:BA:B7:D8:9B:D9:57:0B:20:05:46:66:05:36:69:A7:59
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FAF9B/5E26B79CCC2711EBA4EA1627F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FAF9B/5E26B79CCC2711EBA4EA1627F8AEA228/YnUz7Lq32JvZVwsgBUZmBTZpp1k.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328861
sbgp-ipAddrBlock: critical
IPv4:
102.219.220.0/22
Signature Algorithm: sha256WithRSAEncryption
58:32:3c:62:90:38:92:10:4d:b4:db:37:98:30:a4:8d:88:68:
cf:e5:f9:28:fb:6f:0b:07:e1:f6:27:7a:a6:01:6d:e1:f6:88:
e4:44:5a:11:c1:56:3c:59:29:91:26:60:cf:f6:7c:a8:d1:49:
e0:85:d9:d1:e9:ea:9d:c1:34:0c:49:94:83:66:b5:57:97:c4:
d3:5a:76:72:f0:24:28:73:a6:e6:bf:66:f9:a4:d9:50:fd:f3:
8a:a1:95:34:d7:e4:d2:d4:17:a2:50:a1:83:0b:bf:79:f5:c1:
ff:39:75:c2:b3:b0:80:27:48:c5:d0:db:1b:89:af:a4:03:80:
f1:ce:47:80:8e:d5:eb:83:10:59:6e:aa:79:0b:39:f3:ce:f5:
f3:5f:08:ff:e5:74:3e:3f:68:fe:c2:aa:ce:ce:7a:fb:c2:39:
ad:6f:f7:9c:07:a2:1a:f5:3b:bc:70:a5:83:9c:5c:63:89:07:
53:17:05:ae:cc:7a:65:08:d3:5f:05:3f:cb:a7:82:07:df:47:
dd:3f:21:34:57:74:00:68:6d:0e:f8:22:b8:82:e3:ba:40:7d:
02:82:45:22:9d:22:58:bf:4f:a2:5c:e3:94:98:26:4e:54:cd:
e3:e3:2f:df:d3:a3:66:56:8d:84:c5:8c:21:b0:c5:e2:0c:9e:
6c:f8:e0:ed
-----BEGIN CERTIFICATE-----
MIIGFjCCBP6gAwIBAgICM7AwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwNjIxNDlaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNkZBRjlCQUYxMTAvBgNVBAUTKDYyNzUzM0VDQkFCN0Q4OUJEOTU3MEIy
MDA1NDY2NjA1MzY2OUE3NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDV3iZlT8I2MLlKn54RdkVD5VHbu26LK9xDyw/4htM8M4IS90VM+rugIg1u0vju
OlzCYlzOBbgPkrgG3pjYbYIIW1Idyh62s2iR26PFeTlt41gkmMDeXaSsgtDgT4E8
wJ9DgbQ7q1ONTTuTA3sWXlESfPpj0b6VDTHNiNompxJtT5LP84unEWkVViVyD0Pr
zU7t+CPpKtKq7FMjFMLkvw1ULMr29TUwdoARxipuMsZrR4pKHPLoMZrOlc5SXJ6E
81qhtNLVqo6R78HzDXRZlkAQx/5aXRrDfy3ySHif0poewhIvlt5MkrzJoIFCrOD2
LmAB/WgC0edxrXS3pNWIS13jAgMBAAGjggMLMIIDBzAdBgNVHQ4EFgQUYnUz7Lq3
2JvZVwsgBUZmBTZpp1kwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzZGQUY5Qi81RTI2Qjc5Q0NDMjcx
MUVCQTRFQTE2MjdGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2RkFGOUIvNUUyNkI3OUNDQzI3MTFFQkE0RUExNjI3RjhBRUEyMjgvWW5VejdM
cTMySnZaVndzZ0JVWm1CVFpwcDFrLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFBJ0wHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm29wwDQYJKoZIhvcN
AQELBQADggEBAFgyPGKQOJIQTbTbN5gwpI2IaM/l+Sj7bwsH4fYneqYBbeH2iORE
WhHBVjxZKZEmYM/2fKjRSeCF2dHp6p3BNAxJlINmtVeXxNNadnLwJChzpua/Zvmk
2VD984qhlTTX5NLUF6JQoYMLv3n1wf85dcKzsIAnSMXQ2xuJr6QDgPHOR4CO1euD
EFluqnkLOfPO9fNfCP/ldD4/aP7Cqs7OevvCOa1v95wHohr1O7xwpYOcXGOJB1MX
Ba7MemUI018FP8unggffR90/ITRXdABobQ74IriC47pAfQKCRSKdIli/T6Jc45SY
Jk5UzePjL9/To2ZWjYTFjCGwxeIMnmz44O0=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:53:18 2025 by rpki-client