Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/iCYpiV2NtXslQepI-hEmMl4pAgs.cer
File: iCYpiV2NtXslQepI-hEmMl4pAgs.cer (raw, json)
Hash identifier: yGnOJW1Rl5aVlgFd1sMFcXDsPBZIAQnZV6kCJp8b6EA=
Subject key identifier: 88:26:29:89:5D:8D:B5:7B:25:41:EA:48:FA:11:26:32:5E:29:02:0B
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2D35
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/925E2BE6586D11E5AEB55C2FF8AEA228/iCYpiV2NtXslQepI-hEmMl4pAgs.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/925E2BE6586D11E5AEB55C2FF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:29:13 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 327750
AS: 328047
AS: 328101
IP: 102.23.224.0/19
IP: 102.69.248.0/21
IP: 102.164.192.0/19
IP: 154.126.192.0/19
IP: 2c0f:f368::/32
IP: 2c0f:f4e8::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11573 (0x2d35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:29:13 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3620ACFAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d6:1f:6a:4b:06:73:30:c4:c5:da:ce:e5:72:
7d:cb:db:bf:a7:41:ea:ea:f9:d2:f0:26:ef:fa:4b:
83:fe:b8:01:3d:94:c5:12:7b:c1:01:79:cd:9c:25:
cf:8b:f4:7d:14:83:ae:2f:ab:71:a1:a5:31:73:10:
af:40:e4:eb:4e:83:f5:c1:7a:57:c8:24:36:f8:27:
08:94:aa:0f:8a:28:60:ea:64:9d:9c:d9:b4:2e:d9:
be:b6:d1:64:91:81:8b:c8:e6:49:9a:e9:af:f9:35:
ac:40:85:e7:39:90:b2:ab:3a:fb:58:66:90:30:9a:
74:7e:88:4e:64:3b:49:96:fe:01:e0:45:80:48:9c:
e5:88:69:7e:1a:15:54:7f:ed:d0:5e:97:a6:4a:63:
67:f6:86:b1:f9:64:be:a4:38:ff:f2:09:a6:74:8f:
e6:a0:97:f7:9d:80:d7:b4:17:a9:6c:53:99:c4:ae:
af:a2:41:fb:f1:b6:6d:49:b2:21:05:ae:bf:60:b1:
94:82:ce:f1:a6:b3:91:3b:46:a6:3c:ee:49:3f:86:
b1:63:32:8d:c6:eb:d5:59:ea:8d:5d:28:0c:26:84:
54:c6:08:d7:dc:51:d2:97:8b:ff:73:77:67:0f:fe:
2b:15:03:9a:7d:ff:bd:d1:8f:9e:d8:15:6e:59:0f:
af:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:26:29:89:5D:8D:B5:7B:25:41:EA:48:FA:11:26:32:5E:29:02:0B
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/925E2BE6586D11E5AEB55C2FF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3620ACF/925E2BE6586D11E5AEB55C2FF8AEA228/iCYpiV2NtXslQepI-hEmMl4pAgs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327750
328047
328101
sbgp-ipAddrBlock: critical
IPv4:
102.23.224.0/19
102.69.248.0/21
102.164.192.0/19
154.126.192.0/19
IPv6:
2c0f:f368::/32
2c0f:f4e8::/32
Signature Algorithm: sha256WithRSAEncryption
5c:d9:0b:e4:26:af:75:53:46:fb:35:dc:1d:0e:d2:30:69:ba:
ee:e4:16:fd:d1:4c:f1:7f:a5:da:8a:d5:bc:91:a2:dc:a9:5a:
49:3d:16:11:77:6c:50:52:2c:78:f9:a8:ed:71:a6:4e:ba:95:
62:f0:27:7d:f0:94:81:17:3a:cb:05:a5:3d:09:47:c2:c0:8f:
4a:a4:63:b9:e3:e4:a2:0f:ff:6c:df:05:b6:2c:19:d2:e7:ab:
6d:e7:45:a0:6b:f9:86:d6:af:f9:68:0e:a9:5a:44:1e:87:e7:
6f:f7:fe:cd:79:d6:8c:6e:45:ce:e3:b0:21:3c:9d:09:4a:36:
b1:d7:d4:dc:77:34:92:02:81:b9:11:25:e9:f3:4d:a8:a1:e3:
0a:15:f7:04:2d:86:5e:25:5d:0c:26:bf:fa:61:20:59:78:f0:
26:ca:42:a9:ee:c7:3f:1c:85:17:33:11:91:5e:04:bf:cc:c8:
b3:53:e2:85:f4:7d:96:60:e7:23:9f:01:03:79:5a:80:17:9f:
ef:e8:0e:70:25:7e:e7:b6:97:55:4d:78:b0:3b:72:ac:b0:1a:
dd:a1:f2:d4:ca:ee:79:9d:47:02:37:ec:68:f7:db:a3:d9:d0:
40:23:10:d2:0d:9b:7d:fb:e4:d2:86:f3:da:ca:92:0a:91:0f:
75:6d:6d:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:37:35 2025 by rpki-client