Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/iVUnx34gFEZnMJDwgWSPGGEnsbo.cer
File: iVUnx34gFEZnMJDwgWSPGGEnsbo.cer (raw, json)
Hash identifier: rKQLDsRkku9r2lthlZ3rWRgezc37id/Ev/8xMAOWAE0=
Subject key identifier: 89:55:27:C7:7E:20:14:46:67:30:90:F0:81:64:8F:18:61:27:B1:BA
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2DCB
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36ED442/9ED8257A57C811E5A805BD3EF8AEA228/iVUnx34gFEZnMJDwgWSPGGEnsbo.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36ED442/9ED8257A57C811E5A805BD3EF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:02:31 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 5713
AS: 5734
AS: 37118
AS: 37167
AS: 37251
AS: 37457
AS: 328028
IP: 41.144.0.0/13
IP: 41.246.0.0/15
IP: 102.248.0.0/13
IP: 105.184.0.0/14
IP: 105.224.0.0 -- 105.229.255.255
IP: 154.69.0.0/16
IP: 196.4.79.0/24
IP: 196.15.128.0/17
IP: 196.25.0.0/16
IP: 196.43.0.0/18
IP: 197.228.0.0/15
IP: 197.236.0.0/16
IP: 2c0e:2000::/20
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11723 (0x2dcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:02:31 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36ED442AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9f:10:32:61:74:8e:f1:04:47:83:f9:1d:73:
04:19:39:a5:db:1f:3d:09:ca:df:e4:0c:75:d5:e4:
f8:4e:76:f2:da:a4:bd:6d:16:53:06:3e:f9:6d:75:
65:3b:e9:35:76:1e:59:1f:60:78:03:50:7d:39:87:
ab:2a:ae:61:6a:b4:2c:83:66:2c:c6:08:79:5c:3a:
50:b2:08:32:82:08:75:f2:27:0d:bd:fd:f7:56:ae:
13:09:ea:33:0c:15:7d:68:73:ed:6d:97:d2:78:d8:
7f:62:c8:09:73:95:25:61:1e:45:94:48:0b:e1:b2:
01:c8:53:dd:6a:fc:84:5a:1a:e0:ea:e3:12:55:59:
e7:62:d4:26:40:89:c6:4a:90:6d:84:fd:f7:ca:2f:
25:2a:d3:10:3b:2e:83:91:0d:03:9a:88:c3:8e:d7:
07:c4:a2:e9:f7:6d:30:1c:84:1e:03:1d:74:42:14:
ad:9c:7a:f1:b6:ac:8d:d1:aa:70:b4:32:b9:78:4f:
86:68:3c:0c:84:db:48:f1:da:85:b6:dd:52:77:b1:
c2:46:16:76:3d:6f:49:cf:7b:e7:58:06:7c:eb:5b:
03:83:60:b8:73:2a:39:45:66:53:b3:c8:1d:86:42:
15:29:c5:55:9d:d9:3b:8a:5f:1b:17:b8:87:2a:9c:
93:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:55:27:C7:7E:20:14:46:67:30:90:F0:81:64:8F:18:61:27:B1:BA
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36ED442/9ED8257A57C811E5A805BD3EF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36ED442/9ED8257A57C811E5A805BD3EF8AEA228/iVUnx34gFEZnMJDwgWSPGGEnsbo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
5713
5734
37118
37167
37251
37457
328028
sbgp-ipAddrBlock: critical
IPv4:
41.144.0.0/13
41.246.0.0/15
102.248.0.0/13
105.184.0.0/14
105.224.0.0-105.229.255.255
154.69.0.0/16
196.4.79.0/24
196.15.128.0/17
196.25.0.0/16
196.43.0.0/18
197.228.0.0/15
197.236.0.0/16
IPv6:
2c0e:2000::/20
Signature Algorithm: sha256WithRSAEncryption
19:d6:ea:d9:f0:96:ad:0c:83:36:14:d7:1b:1b:cb:a1:25:e5:
00:c4:da:74:74:b3:23:ba:e1:b7:a5:72:82:d1:62:ea:fc:f6:
a7:22:48:ec:31:c1:a8:10:95:d1:71:eb:94:12:64:9d:3d:82:
ee:f0:26:e9:03:f2:3c:a2:c6:c8:46:ab:88:73:9f:b2:4d:0d:
74:40:bb:a7:a7:e5:4f:bb:52:71:cc:39:ef:6d:ac:8e:c6:66:
27:3a:0e:64:5b:82:20:49:7b:51:92:5c:44:36:10:41:26:21:
a1:d4:30:db:1e:ee:74:b9:87:5b:a9:02:41:5d:af:12:40:22:
0d:47:31:ec:b1:01:c7:07:9f:4a:f9:f1:f0:d6:19:30:98:97:
40:4b:ce:7d:67:f9:51:44:ae:ce:c1:a3:82:99:66:66:d0:ae:
99:ef:44:23:c6:9b:f6:9d:ac:f9:a4:7f:01:1f:5d:79:ab:8c:
fd:a0:84:ea:df:5c:be:87:b4:0b:68:28:79:39:ca:8d:8e:d2:
bc:99:05:ee:d0:3a:85:fb:6e:3f:9b:99:30:ca:a2:f6:f0:10:
71:a0:6e:dd:b2:0a:76:f8:a7:bf:a1:39:f1:39:c7:d3:e0:53:
e8:d7:6e:bf:b3:66:a6:d4:ae:f4:f7:0f:e9:42:f4:19:01:b9:
5e:e6:de:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:42:56 2025 by rpki-client