Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Zxdi3y9LZeg1DvQ9_m40d2V1G2c.cer
File: Zxdi3y9LZeg1DvQ9_m40d2V1G2c.cer (raw, json)
Hash identifier: A6QcKO1sBkaGJCtLLJ/O6QxgS/8l++SBz9NQoDJ6J78=
Subject key identifier: 67:17:62:DF:2F:4B:65:E8:35:0E:F4:3D:FE:6E:34:77:65:75:1B:67
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 335F
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/59907460BE1D11EB9A348B42F8AEA228/Zxdi3y9LZeg1DvQ9_m40d2V1G2c.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/59907460BE1D11EB9A348B42F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 06:02:03 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37349
IP: 41.79.68.0/22
IP: 41.207.240.0/21
IP: 102.210.200.0/22
IP: 102.212.108.0/22
IP: 196.200.224.0/20
IP: 2c0f:fda8::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13151 (0x335f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 06:02:03 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36EBDD7AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:48:ca:4f:4f:d6:14:e1:4c:0c:37:1f:f7:f3:
70:35:0b:88:52:1d:10:42:8b:ac:54:6e:4c:af:28:
7e:6d:ae:6d:2c:6a:67:ea:4f:75:1d:40:ca:61:79:
91:4e:1a:b7:71:d2:e1:f2:57:6e:44:94:e2:ce:aa:
c4:3e:52:a2:de:6b:52:b5:ed:33:69:40:01:60:d5:
70:6f:5b:61:bd:d5:6c:3c:53:48:e8:14:3c:49:3a:
b4:bb:82:10:10:0a:ce:59:33:5a:03:e6:75:a0:1a:
62:53:fd:aa:62:d3:df:8f:e0:88:18:72:2d:c7:64:
88:85:49:95:15:77:ef:aa:eb:dc:db:fe:2b:68:6a:
fb:62:ce:47:c6:f6:db:2c:14:52:4a:97:c0:81:93:
df:96:92:a1:9d:eb:2e:31:8b:02:25:c2:67:78:9b:
e7:22:3c:c9:33:41:75:fb:49:0d:a8:67:90:38:ec:
4f:1b:3d:eb:a9:44:aa:ed:1f:6e:04:ce:49:93:72:
82:e5:c9:e3:68:a1:58:ca:8c:6f:7c:d5:c1:6f:36:
db:51:8e:ad:90:f9:24:b7:fa:e3:67:a3:f4:31:4b:
79:35:e5:88:4d:db:81:04:03:ab:a5:5f:02:68:80:
27:3a:0c:da:6a:f5:b1:8e:c6:ea:3c:0a:ac:9b:d5:
2d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:17:62:DF:2F:4B:65:E8:35:0E:F4:3D:FE:6E:34:77:65:75:1B:67
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/59907460BE1D11EB9A348B42F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/59907460BE1D11EB9A348B42F8AEA228/Zxdi3y9LZeg1DvQ9_m40d2V1G2c.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37349
sbgp-ipAddrBlock: critical
IPv4:
41.79.68.0/22
41.207.240.0/21
102.210.200.0/22
102.212.108.0/22
196.200.224.0/20
IPv6:
2c0f:fda8::/32
Signature Algorithm: sha256WithRSAEncryption
66:cf:39:66:3b:d8:74:b0:ca:6d:b7:18:84:93:5a:e4:84:45:
17:41:df:1e:a0:fc:c8:f8:c2:9c:56:7d:a3:92:63:cb:97:41:
96:4c:94:be:8e:b0:74:30:4d:73:f3:81:7f:fe:c7:71:c1:6d:
08:29:34:06:b7:7a:2c:69:b0:10:6c:81:9d:a0:17:c0:68:f3:
08:34:d8:12:db:78:88:64:a3:4d:60:e2:fe:b8:c4:ed:a5:be:
01:79:e0:69:15:95:c7:36:6a:e2:b5:82:e7:e8:1c:fd:67:89:
4b:4f:ea:b6:47:86:1a:67:ea:3e:bc:ef:13:5e:ee:57:bf:14:
19:c5:ec:58:ce:56:e6:9c:92:0d:b3:2f:48:55:94:a7:39:fb:
63:79:3f:22:41:0a:a0:35:f6:12:3e:45:22:f4:e9:1d:62:f0:
43:1d:5a:83:98:b0:1e:53:38:76:8a:bd:c3:f4:ed:5a:04:69:
a9:80:51:e5:0a:6d:af:cc:41:fa:f1:af:22:09:5a:3c:c0:29:
d3:b3:c0:3e:3b:29:79:97:8b:ed:35:36:68:df:12:d4:b6:89:
de:de:8c:bc:4a:f5:7c:20:86:5c:26:6c:d2:37:47:5f:fb:cd:
9f:68:b3:bc:a9:7b:fd:3e:2d:b1:e2:45:3b:78:4f:48:c0:59:
0c:6f:31:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:40:32 2025 by rpki-client