Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/e5XIh1o9qSB6rcxUQDFzjYpiLas.cer
File: e5XIh1o9qSB6rcxUQDFzjYpiLas.cer (raw, json)
Hash identifier: HnpKWUECBI+VQn//QthGKO+JC6mrNS+iG8zdDmIly7k=
Subject key identifier: 7B:95:C8:87:5A:3D:A9:20:7A:AD:CC:54:40:31:73:8D:8A:62:2D:AB
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 32D1
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E38E5/C89F9E94553E11ED8E2230CAF1222468/e5XIh1o9qSB6rcxUQDFzjYpiLas.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E38E5/C89F9E94553E11ED8E2230CAF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:29:13 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 102.67.164.0/22
IP: 102.213.152.0/22
IP: 2c0f:edb0::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13009 (0x32d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:29:13 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E38E5AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:0f:5d:1d:9d:30:70:78:0e:ce:b4:f4:64:a6:
47:51:83:eb:db:62:34:46:40:11:6b:aa:77:09:6e:
90:11:7b:3e:ba:35:1e:0d:bb:19:b0:4c:37:e3:b0:
cd:a4:c0:53:1b:9f:3b:e3:27:68:40:45:90:41:da:
fa:1d:79:be:cd:ff:ea:5e:9b:0e:b1:68:2e:76:95:
33:54:c7:f1:2e:a1:39:f6:20:72:0f:41:cb:3f:60:
4c:27:d3:d7:c3:0a:99:2b:ba:2d:e9:c7:14:5a:87:
72:ab:73:79:54:0f:45:a3:cd:29:12:fc:ff:40:1b:
b1:36:19:4a:d5:3a:ae:a6:c2:65:6e:9a:10:b3:65:
0c:68:36:54:11:ff:b1:de:05:c1:40:d9:94:34:36:
24:df:70:fc:5b:95:65:da:0f:d7:03:d4:33:89:b0:
db:3a:2f:69:89:e4:d4:88:7e:09:7c:18:41:12:3c:
99:26:36:03:b5:03:3d:83:3a:4e:86:5b:f0:10:8f:
e7:29:b6:c7:3f:c7:da:2d:47:18:ee:aa:08:ff:df:
8a:22:80:a6:1d:f3:af:8f:6e:d8:01:2b:1e:8c:ba:
a8:4f:d3:d1:ed:a7:5e:c5:b2:88:91:5d:b9:93:4b:
5e:3d:19:b6:f8:75:c1:cc:ac:0f:d2:f1:53:8a:2d:
dc:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:95:C8:87:5A:3D:A9:20:7A:AD:CC:54:40:31:73:8D:8A:62:2D:AB
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E38E5/C89F9E94553E11ED8E2230CAF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E38E5/C89F9E94553E11ED8E2230CAF1222468/e5XIh1o9qSB6rcxUQDFzjYpiLas.mft
sbgp-ipAddrBlock: critical
IPv4:
102.67.164.0/22
102.213.152.0/22
IPv6:
2c0f:edb0::/32
Signature Algorithm: sha256WithRSAEncryption
2a:3f:44:95:60:60:60:43:df:d1:e0:47:75:b3:bb:76:c1:92:
c2:f5:af:b1:5b:0c:ce:6b:12:bd:58:1f:7d:d9:19:74:6d:c5:
7c:29:b1:4b:72:d8:d8:7a:77:81:47:0f:83:05:8d:c4:83:00:
1d:af:30:e8:74:1e:31:bb:43:db:7f:af:7e:6e:80:cb:cc:6e:
f9:0c:08:f9:a4:b3:04:9e:b6:54:71:20:cc:96:14:0d:10:83:
2b:ff:9a:51:c0:ef:65:cf:f2:47:ed:2f:03:79:9d:17:a7:61:
ee:3e:71:25:91:9b:e1:fd:a2:b2:35:a2:c9:fb:7d:06:bc:d0:
59:2c:a6:ce:67:f2:ff:ce:2e:6d:20:d4:50:c6:fe:c0:1c:46:
17:46:7d:75:25:d9:a4:05:1b:9b:f0:c1:36:f7:af:ab:37:2b:
6f:5e:54:f1:4c:80:86:81:60:0f:78:cd:10:8f:67:31:e3:0a:
e1:d7:48:00:fe:44:6b:f0:5c:8e:73:25:d2:bd:47:dd:0a:40:
64:a7:9f:b0:e3:e3:6f:da:d7:85:96:de:06:df:b7:c1:db:63:
12:4f:b0:02:56:37:42:28:75:14:30:66:a7:67:f7:f6:38:ff:
82:b9:a6:2c:98:65:ee:cf:ee:5f:59:1f:78:f9:2c:5d:27:1f:
2e:a7:d7:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:44:57 2025 by rpki-client