Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Z4miVHJtAx5ZtGthtKyqhRv6Ld8.cer
File: Z4miVHJtAx5ZtGthtKyqhRv6Ld8.cer (raw, json)
Hash identifier: SvDATJQNC0MVXywtFdVpdGe0+tNUqbUlLelKA0s8WRc=
Subject key identifier: 67:89:A2:54:72:6D:03:1E:59:B4:6B:61:B4:AC:AA:85:1B:FA:2D:DF
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F7D
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F366351B/4665A9F0ACA011EDAF100DF7F1222468/Z4miVHJtAx5ZtGthtKyqhRv6Ld8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F366351B/4665A9F0ACA011EDAF100DF7F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:31:11 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329208
IP: 102.214.12.0/24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12157 (0x2f7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:31:11 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F366351BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b1:fe:cd:6e:7c:27:ce:28:e4:b7:5d:60:38:
c7:50:79:2d:2a:cc:ca:eb:8e:84:f9:b4:a8:fc:a6:
c1:1e:82:21:87:c0:f9:fd:fc:e2:e3:4c:54:bc:7c:
3a:06:5b:db:45:62:ab:65:29:30:d6:08:85:a5:0b:
ba:76:eb:56:aa:15:60:11:4e:ee:1e:45:78:7c:ea:
3f:36:38:e8:9a:c4:be:23:c9:2d:13:2e:d3:78:0e:
ec:11:ff:d3:53:9e:a2:b3:a3:0c:3f:1f:c9:c2:d0:
8f:d7:8f:fc:7b:3f:08:84:9c:ad:cf:5a:52:2c:bf:
ba:d9:1a:d1:37:28:15:bd:4e:4a:32:e3:ec:26:42:
47:d9:2d:d8:f7:99:fd:0e:fa:53:ab:9d:cc:cd:97:
e9:e4:19:ea:36:20:42:99:89:bb:f7:f9:20:72:16:
50:b9:70:47:e7:d6:8c:c0:43:ae:a7:1f:1f:c8:96:
e4:40:08:6d:b9:48:7a:2d:b6:b9:1d:5b:06:4e:17:
c4:d4:ca:ba:17:d9:e4:c2:17:e8:17:42:27:08:d6:
ef:65:3b:ce:86:ce:ce:d0:ec:22:2e:10:6a:4d:c3:
dc:09:38:9d:f8:d6:2b:53:3d:0f:f4:52:45:b6:a5:
50:27:dc:24:44:24:3c:31:f9:ce:de:34:82:3a:05:
42:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:89:A2:54:72:6D:03:1E:59:B4:6B:61:B4:AC:AA:85:1B:FA:2D:DF
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F366351B/4665A9F0ACA011EDAF100DF7F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F366351B/4665A9F0ACA011EDAF100DF7F1222468/Z4miVHJtAx5ZtGthtKyqhRv6Ld8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329208
sbgp-ipAddrBlock: critical
IPv4:
102.214.12.0/24
Signature Algorithm: sha256WithRSAEncryption
74:f5:ae:27:1b:3b:00:1f:21:ad:06:53:39:58:1c:45:0e:41:
2a:f3:3f:12:c2:87:d1:f0:db:39:d0:cf:09:60:5b:73:dd:9b:
8d:ac:a6:34:d5:43:bb:9d:24:0e:d8:d8:9c:b6:63:be:e8:e4:
f1:4d:b4:8e:d9:73:2b:57:61:8a:28:7c:8e:47:d1:34:39:ad:
fc:2f:e3:cf:e5:17:97:48:41:79:95:f7:6b:c3:17:51:02:82:
d7:06:89:fa:c9:15:7d:e4:a5:5b:f0:1f:e6:fa:f0:44:06:19:
0e:0c:78:75:ac:17:3b:65:09:42:33:60:ac:8c:e3:57:3a:14:
f7:fb:24:70:71:ab:bc:8b:b8:ec:71:bf:d2:3d:2a:31:9b:c4:
e4:8e:2b:1e:40:f3:b6:e9:5b:83:8f:d0:55:66:3e:16:23:0d:
db:05:55:e0:80:00:b8:0d:06:0a:ef:96:de:4e:af:6b:2d:0a:
d7:e8:0c:03:41:ac:99:63:e5:de:da:06:ac:87:b3:ac:5f:a3:
cc:0c:d5:0a:67:84:fc:00:ad:f3:dd:fe:4e:15:b7:dd:d9:a3:
ac:56:00:67:42:fc:07:5b:5d:0b:ac:46:00:6e:59:78:a9:12:
08:b8:6c:d3:d2:61:84:50:7b:d7:d2:f5:cb:96:16:ab:dc:39:
57:26:1b:82
-----BEGIN CERTIFICATE-----
MIIGFjCCBP6gAwIBAgICL30wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMjMxMTFaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjYzNTFCQUYxMTAvBgNVBAUTKDY3ODlBMjU0NzI2RDAzMUU1OUI0NkI2
MUI0QUNBQTg1MUJGQTJEREYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDQsf7Nbnwnzijkt11gOMdQeS0qzMrrjoT5tKj8psEegiGHwPn9/OLjTFS8fDoG
W9tFYqtlKTDWCIWlC7p261aqFWARTu4eRXh86j82OOiaxL4jyS0TLtN4DuwR/9NT
nqKzoww/H8nC0I/Xj/x7PwiEnK3PWlIsv7rZGtE3KBW9Tkoy4+wmQkfZLdj3mf0O
+lOrnczNl+nkGeo2IEKZibv3+SByFlC5cEfn1ozAQ66nHx/IluRACG25SHottrkd
WwZOF8TUyroX2eTCF+gXQicI1u9lO86Gzs7Q7CIuEGpNw9wJOJ341itTPQ/0UkW2
pVAn3CREJDwx+c7eNII6BULLAgMBAAGjggMLMIIDBzAdBgNVHQ4EFgQUZ4miVHJt
Ax5ZtGthtKyqhRv6Ld8wHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY2MzUxQi80NjY1QTlGMEFDQTAx
MUVEQUYxMDBERjdGMTIyMjQ2OC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NjM1MUIvNDY2NUE5RjBBQ0EwMTFFREFGMTAwREY3RjEyMjI0NjgvWjRtaVZI
SnRBeDVadEd0aHRLeXFoUnY2TGQ4Lm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFBfgwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm1gwwDQYJKoZIhvcN
AQELBQADggEBAHT1ricbOwAfIa0GUzlYHEUOQSrzPxLCh9Hw2znQzwlgW3Pdm42s
pjTVQ7udJA7Y2Jy2Y77o5PFNtI7ZcytXYYoofI5H0TQ5rfwv48/lF5dIQXmV92vD
F1ECgtcGifrJFX3kpVvwH+b68EQGGQ4MeHWsFztlCUIzYKyM41c6FPf7JHBxq7yL
uOxxv9I9KjGbxOSOKx5A87bpW4OP0FVmPhYjDdsFVeCAALgNBgrvlt5Or2stCtfo
DANBrJlj5d7aBqyHs6xfo8wM1QpnhPwArfPd/k4Vt93Zo6xWAGdC/AdbXQusRgBu
WXipEgi4bNPSYYRQe9fS9cuWFqvcOVcmG4I=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:32:44 2025 by rpki-client