Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/fHr4YJtvvVa8wCRM0y1g_-hfnuQ.cer
File: fHr4YJtvvVa8wCRM0y1g_-hfnuQ.cer (raw, json)
Hash identifier: gIEllKflhK9dRfNYjWxQ7TqhAhkI0KP9WlP3IgS3cKg=
Subject key identifier: 7C:7A:F8:60:9B:6F:BD:56:BC:C0:24:4C:D3:2D:60:FF:E8:5F:9E:E4
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3102
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3691DC2/A12171821A1E11EC8D345D34D8A014CE/fHr4YJtvvVa8wCRM0y1g_-hfnuQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3691DC2/A12171821A1E11EC8D345D34D8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:50:33 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 102.223.64.0/22
IP: 2c0f:e870::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12546 (0x3102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:50:33 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3691DC2AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ff:04:19:c9:36:a2:02:62:42:e5:c9:00:02:
76:c2:18:3e:de:bb:ca:69:8d:8b:7b:8d:e1:1b:7b:
c1:e0:af:00:52:10:05:5f:96:66:8a:11:72:6c:d6:
75:0f:d6:f1:3b:61:37:ba:bd:a6:3a:24:71:7e:c8:
60:a9:c3:b5:cd:69:ea:88:f7:16:c8:b1:bd:a4:70:
ee:e8:38:b5:75:df:9b:13:db:f8:14:5c:b3:16:f2:
29:3d:be:a6:96:e7:35:ef:dc:78:0a:d1:8a:5e:9f:
d5:64:78:fb:ad:4b:71:83:b9:ef:e3:5c:41:12:c7:
d1:13:f2:97:ba:73:c6:0e:88:3f:e3:e9:ca:ff:5a:
2b:00:91:2d:6e:09:12:fa:f2:c2:12:f0:f1:30:14:
19:97:41:97:ee:30:96:6f:d7:4a:eb:bd:26:e2:88:
0b:8d:73:12:d5:c5:c6:82:ae:4e:ba:ac:ed:22:d8:
ed:03:0e:61:db:2f:3b:a8:35:e1:bb:a6:3d:76:d0:
ba:26:92:f8:9f:e0:ba:98:b3:ab:68:aa:60:63:a9:
c8:ce:ef:88:56:75:d2:a0:29:ea:26:ff:2a:43:7a:
8c:7e:17:12:e3:73:97:43:d7:fe:e1:73:9c:bf:0d:
26:79:de:02:9c:40:ce:4d:9b:77:7b:19:a0:ea:e9:
a9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:7A:F8:60:9B:6F:BD:56:BC:C0:24:4C:D3:2D:60:FF:E8:5F:9E:E4
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3691DC2/A12171821A1E11EC8D345D34D8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3691DC2/A12171821A1E11EC8D345D34D8A014CE/fHr4YJtvvVa8wCRM0y1g_-hfnuQ.mft
sbgp-ipAddrBlock: critical
IPv4:
102.223.64.0/22
IPv6:
2c0f:e870::/32
Signature Algorithm: sha256WithRSAEncryption
91:67:40:22:ee:72:9a:eb:32:d9:41:74:fc:34:b2:47:80:41:
28:82:b5:b3:a3:e7:7e:13:27:df:c8:97:af:26:3e:36:2b:ad:
2d:7f:53:20:89:cb:05:11:90:74:6c:c8:a9:69:96:78:3f:ff:
77:da:fa:88:38:c9:03:83:98:c0:3c:ef:fb:be:32:d2:87:34:
e0:75:83:52:c0:27:0c:cd:f4:e8:16:fc:6e:c5:95:a5:16:6d:
5b:6e:d4:91:01:7a:3a:fc:89:17:99:90:bc:7f:01:d9:3c:bf:
2e:b5:33:30:43:aa:e9:1a:53:fe:49:be:ef:5c:17:ef:e7:2b:
b1:24:a2:35:05:b5:28:e9:9d:08:50:c0:d4:be:56:27:b5:c0:
76:d3:d2:1b:f1:e6:50:b4:be:4a:62:ed:cd:13:6e:56:e7:b3:
df:48:4f:8c:55:3f:96:97:c4:17:64:36:3c:ae:b5:f6:b8:32:
c1:e8:50:42:32:8e:c7:34:0a:c8:57:9a:bb:8b:e9:1d:ae:81:
8d:83:7e:93:31:85:91:15:50:22:17:aa:d8:28:a1:4c:e0:46:
68:9d:69:58:89:d1:f3:18:48:1e:5e:60:87:61:6b:50:e3:74:
ff:1d:d5:c2:36:de:07:d7:fe:69:93:90:35:06:25:78:81:fa:
01:ad:78:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:57:27 2025 by rpki-client