Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/gTFk5TXfWxtD-PpuIl3Q-pjPb-0.cer
File: gTFk5TXfWxtD-PpuIl3Q-pjPb-0.cer (raw, json)
Hash identifier: oO0KcEClB+g7FNghjAh1tZtEJWwa9jWpP7fPh4D0noE=
Subject key identifier: 81:31:64:E5:35:DF:5B:1B:43:F8:FA:6E:22:5D:D0:FA:98:CF:6F:ED
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2ED2
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3652E81/2DA244A0416711EC870A307CD8A014CE/gTFk5TXfWxtD-PpuIl3Q-pjPb-0.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3652E81/2DA244A0416711EC870A307CD8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:56:44 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 25793
IP: 196.13.31.0 -- 196.13.80.255
IP: 2c0f:f440::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11986 (0x2ed2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:56:44 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3652E81AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b2:90:11:5f:f1:52:f5:d7:8f:5d:d8:8f:52:
f2:93:90:cd:81:8a:76:48:7b:ee:97:a9:f5:9d:88:
95:ea:8a:2d:07:c9:3e:0d:ef:6a:fc:b3:b5:45:43:
20:fa:95:31:7b:a6:8c:fc:cf:4f:22:57:74:11:f1:
6f:bf:b2:04:c2:de:ce:81:5c:5a:f4:b2:5a:bc:21:
0b:0b:2c:f4:c8:fa:d1:79:9b:61:4f:3d:a4:17:50:
8a:c9:f8:ae:9b:a3:8d:5e:72:da:16:19:fe:88:37:
bd:c7:1d:80:2c:05:10:c0:2a:47:f6:e7:90:e2:28:
32:c4:d6:ed:e6:28:99:8d:6c:16:bf:93:ee:31:c5:
93:8d:2d:40:d3:e1:44:3e:5c:81:10:ec:a0:70:29:
d7:33:0d:1d:1a:c0:f2:14:4d:de:4f:e2:09:0d:e0:
aa:4d:8d:e8:91:d6:1b:01:b5:2f:1e:a8:eb:b5:55:
c2:bd:3f:98:11:b7:ac:63:3f:81:57:ca:1a:01:bc:
1e:08:f3:b5:61:60:b7:2a:15:3d:aa:28:05:31:53:
c0:61:2c:bc:40:21:ee:1b:38:3c:0f:01:79:c6:ef:
3b:be:b1:a8:3f:ac:2d:a1:84:2a:e2:1d:29:b4:70:
b3:90:cf:d4:b4:e0:96:af:ee:3a:bf:da:d0:9f:74:
f4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:31:64:E5:35:DF:5B:1B:43:F8:FA:6E:22:5D:D0:FA:98:CF:6F:ED
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3652E81/2DA244A0416711EC870A307CD8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3652E81/2DA244A0416711EC870A307CD8A014CE/gTFk5TXfWxtD-PpuIl3Q-pjPb-0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25793
sbgp-ipAddrBlock: critical
IPv4:
196.13.31.0-196.13.80.255
IPv6:
2c0f:f440::/32
Signature Algorithm: sha256WithRSAEncryption
b9:34:ef:bf:92:36:e5:f8:ee:6b:4d:13:a7:b6:b9:e8:a7:54:
12:6f:15:3b:52:5c:b7:2f:82:16:10:52:6e:7b:17:3b:75:19:
13:36:3e:34:36:fb:90:ae:87:4a:db:ed:2b:0c:07:1b:ea:8e:
08:ed:07:34:6c:8f:09:19:20:8f:84:31:39:20:06:67:69:65:
7d:99:2f:cd:9f:a9:ad:27:bd:46:a3:ff:6f:8c:94:09:72:af:
a0:bf:8c:94:b0:ca:4a:f7:a7:15:1d:cf:86:83:6c:13:b8:96:
db:0b:3d:f8:b5:20:20:db:c5:71:cb:b4:11:d2:4a:10:aa:d1:
d2:e6:9d:25:47:9a:62:b7:00:61:44:20:c9:9c:c5:89:04:e8:
e1:5e:83:40:dd:be:24:d6:1a:68:00:37:bb:01:c5:49:0c:01:
ca:e1:1f:70:61:d8:99:ac:22:03:bc:89:20:c9:16:90:1b:94:
13:32:78:9d:07:4d:ad:b1:e1:21:b1:c4:e3:b2:85:ea:93:25:
24:5f:fd:9a:38:e7:66:4a:03:00:70:3d:78:6d:cb:c8:c9:d0:
e9:ec:99:e5:70:42:11:d1:4e:de:cd:41:a1:28:2c:e9:0b:ed:
8c:f0:cc:36:d2:d6:08:bb:53:5b:3e:20:5d:ea:8e:6a:44:53:
d7:34:e6:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:38:29 2025 by rpki-client