Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/h-G7jI0reZLqTr7rMz_hQp5w7po.cer
File: h-G7jI0reZLqTr7rMz_hQp5w7po.cer (raw, json)
Hash identifier: 3HgTTlz+rZdSFkDverP10AgdL0BOceXu9d5Xa7CLX+E=
Subject key identifier: 87:E1:BB:8C:8D:2B:79:92:EA:4E:BE:EB:33:3F:E1:42:9E:70:EE:9A
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E67
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3646FFE/C2CBD65AB02911EC99FA77C05A40D577/h-G7jI0reZLqTr7rMz_hQp5w7po.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3646FFE/C2CBD65AB02911EC99FA77C05A40D577/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:35:02 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37121
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11879 (0x2e67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:35:02 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3646FFEAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:44:ce:40:d7:98:fa:cf:53:d9:07:7e:87:68:
94:20:6a:41:57:97:ea:de:32:1a:2f:2a:a5:f6:43:
2d:24:23:86:19:e6:46:4d:83:82:e2:a7:66:1c:92:
ee:74:e3:4f:ee:3e:9a:ae:10:4e:3e:7e:37:56:e1:
05:75:3c:02:45:a5:dc:90:44:d5:70:2b:65:d9:1d:
f4:a7:05:62:80:51:76:71:a7:94:37:ea:41:0a:13:
30:91:07:2d:03:15:80:f7:b5:f2:65:05:d8:39:e6:
26:ea:b3:3c:52:86:0e:22:94:dc:2f:ee:49:6a:73:
e1:80:dc:8d:99:78:cc:3c:1a:e1:98:82:30:70:94:
71:5f:7a:e0:b9:34:99:2a:72:c8:f5:6c:53:81:65:
d4:d4:d4:11:60:e8:5a:1e:1b:35:02:74:9e:ce:25:
11:32:b3:a3:91:c6:35:e7:93:64:5b:e2:c7:21:cc:
23:e7:d5:6c:fb:3c:0d:7e:5f:28:94:cd:28:d1:02:
c3:e9:1b:6e:66:7b:1c:d5:f1:a3:53:a6:9e:e8:08:
5b:a8:d9:17:b7:95:d4:0f:47:f2:94:dd:2e:6b:93:
4e:d9:3a:b6:bc:47:2b:ac:ab:70:ca:26:14:07:b7:
67:6d:be:d9:22:2a:6f:11:5a:a2:80:1a:7c:58:d5:
f5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:E1:BB:8C:8D:2B:79:92:EA:4E:BE:EB:33:3F:E1:42:9E:70:EE:9A
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3646FFE/C2CBD65AB02911EC99FA77C05A40D577/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3646FFE/C2CBD65AB02911EC99FA77C05A40D577/h-G7jI0reZLqTr7rMz_hQp5w7po.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37121
Signature Algorithm: sha256WithRSAEncryption
0f:4c:ce:8f:aa:92:24:4b:35:6d:5b:f5:aa:cf:01:bd:54:dd:
18:7b:ab:9b:60:31:43:7a:b9:0c:4b:74:bc:78:e9:b0:1b:90:
eb:a0:92:00:2c:ef:22:fc:b9:a0:cc:a5:9e:bf:0c:e5:13:76:
99:11:2b:ec:78:b9:3f:b9:97:ba:d5:38:b3:e6:81:f6:f8:f2:
92:05:53:fb:51:e0:98:67:95:1a:bf:16:46:92:da:d3:ea:df:
1d:5a:4d:b9:61:53:eb:d9:fd:08:a2:82:15:3e:29:bf:3d:da:
f2:9c:8a:27:24:60:84:4e:b3:38:07:7c:6b:1b:57:b8:bb:95:
f2:11:4f:0b:15:0a:ae:44:6a:95:0d:cd:40:bd:e5:0f:1a:73:
0c:3a:48:b9:fc:34:74:2e:68:6d:a8:60:3a:5a:a4:98:79:cb:
60:a1:fc:58:23:f4:73:6d:3a:6b:61:95:d9:70:ce:81:ea:e8:
b8:b6:da:7d:a1:35:25:f7:48:40:25:8a:26:2e:b8:61:4e:b2:
e1:7f:23:ea:a4:16:b4:ec:5a:d9:75:04:f2:7e:cf:2c:66:35:
7f:05:95:ce:16:24:14:94:94:62:ce:50:55:e3:ca:4f:76:f9:
73:1e:2a:f8:e5:71:95:f4:9e:fe:73:bd:56:c4:ef:87:57:2f:
45:e5:2c:b6
-----BEGIN CERTIFICATE-----
MIIF9TCCBN2gAwIBAgICLmcwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMTM1MDJaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjQ2RkZFQUYxMTAvBgNVBAUTKDg3RTFCQjhDOEQyQjc5OTJFQTRFQkVF
QjMzM0ZFMTQyOUU3MEVFOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDCRM5A15j6z1PZB36HaJQgakFXl+reMhovKqX2Qy0kI4YZ5kZNg4Lip2Ycku50
40/uPpquEE4+fjdW4QV1PAJFpdyQRNVwK2XZHfSnBWKAUXZxp5Q36kEKEzCRBy0D
FYD3tfJlBdg55ibqszxShg4ilNwv7klqc+GA3I2ZeMw8GuGYgjBwlHFfeuC5NJkq
csj1bFOBZdTU1BFg6FoeGzUCdJ7OJREys6ORxjXnk2Rb4schzCPn1Wz7PA1+XyiU
zSjRAsPpG25mexzV8aNTpp7oCFuo2Re3ldQPR/KU3S5rk07ZOra8Ryusq3DKJhQH
t2dtvtkiKm8RWqKAGnxY1fV5AgMBAAGjggLqMIIC5jAdBgNVHQ4EFgQUh+G7jI0r
eZLqTr7rMz/hQp5w7powHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzY0NkZGRS9DMkNCRDY1QUIwMjkx
MUVDOTlGQTc3QzA1QTQwRDU3Ny8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NDZGRkUvQzJDQkQ2NUFCMDI5MTFFQzk5RkE3N0MwNUE0MEQ1NzcvaC1HN2pJ
MHJlWkxxVHI3ck16X2hRcDV3N3BvLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMAkQEwDQYJKoZIhvcNAQELBQADggEBAA9Mzo+qkiRLNW1b9arPAb1U3Rh7q5tg
MUN6uQxLdLx46bAbkOugkgAs7yL8uaDMpZ6/DOUTdpkRK+x4uT+5l7rVOLPmgfb4
8pIFU/tR4JhnlRq/FkaS2tPq3x1aTblhU+vZ/QiighU+Kb892vKciickYIROszgH
fGsbV7i7lfIRTwsVCq5EapUNzUC95Q8acww6SLn8NHQuaG2oYDpapJh5y2Ch/Fgj
9HNtOmthldlwzoHq6Li22n2hNSX3SEAliiYuuGFOsuF/I+qkFrTsWtl1BPJ+zyxm
NX8Flc4WJBSUlGLOUFXjyk92+XMeKvjlcZX0nv5zvVbE74dXL0XlLLY=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:54:21 2025 by rpki-client