Certificate

$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/jipNb8UYDX1HWKp5jDiYAu7zv7M.cer
File:                     jipNb8UYDX1HWKp5jDiYAu7zv7M.cer (raw, json)
Hash identifier:          AfdzWfxqEn+YXcUd6btbEg4MOqVPCiIZCIWapM3t88g=
Subject key identifier:   8E:2A:4D:6F:C5:18:0D:7D:47:58:AA:79:8C:38:98:02:EE:F3:BF:B3
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer:       /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial:       3382
Authority info access:    rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest:                 rsync://rpki.afrinic.net/repository/member_repository/F36F4212/53BD7852CFB911EEBADF1A6A775412E6/jipNb8UYDX1HWKp5jDiYAu7zv7M.mft
caRepository:             rsync://rpki.afrinic.net/repository/member_repository/F36F4212/53BD7852CFB911EEBADF1A6A775412E6/
Notify URL:               https://rrdp.afrinic.net/notification.xml
Certificate not before:   Wed 01 Jan 2025 06:11:12 +0000
Certificate not after:    Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources:    AS: 328591
                          IP: 102.36.146.0/24
Validation:               Failed, CRL has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13186 (0x3382)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=AFRINIC
        Validity
            Not Before: Jan  1 06:11:12 2025 GMT
            Not After : Mar 31 00:00:00 2026 GMT
        Subject: CN=F36F4212AF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:01:51:ab:3c:5d:f5:49:e4:f0:03:bb:77:27:
                    4b:76:c9:1d:d4:48:4c:af:1b:c9:67:e7:a4:7f:fe:
                    7f:b9:50:cc:20:bd:05:03:9e:58:2d:e1:36:76:70:
                    95:d6:54:61:c8:65:78:db:eb:81:1c:4a:0e:26:43:
                    90:fc:f0:ef:9e:3e:4c:ed:93:56:fe:10:fa:ff:08:
                    77:b1:89:f6:a4:df:70:92:e9:13:6e:ab:bd:5a:29:
                    3a:40:76:52:31:45:aa:4d:bd:da:9a:9c:63:f4:d3:
                    ac:5f:bb:9f:0f:b5:6d:c4:7c:86:5e:53:be:3f:e5:
                    e3:53:e1:22:54:04:c1:94:60:46:45:b8:50:d6:dc:
                    16:14:e8:b9:cc:41:37:95:56:76:1a:fe:84:42:ef:
                    f8:6f:9e:cd:76:0d:71:16:d3:24:a0:1b:ab:ce:ab:
                    21:ec:56:a6:cf:75:db:67:f5:c8:74:fa:66:ad:e1:
                    63:02:a4:10:a4:e0:a6:22:a9:a3:85:48:5c:94:1b:
                    21:79:03:fe:ba:b9:13:78:ec:27:54:fb:dd:e4:b6:
                    e8:24:64:94:10:97:2b:df:25:11:66:be:23:82:2f:
                    57:f7:08:3f:99:b3:0e:57:2c:df:0d:c2:fa:07:16:
                    5f:98:6e:ef:fd:87:cd:a6:da:ac:9a:13:94:da:13:
                    24:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:2A:4D:6F:C5:18:0D:7D:47:58:AA:79:8C:38:98:02:EE:F3:BF:B3
            X509v3 Authority Key Identifier:
                keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F4212/53BD7852CFB911EEBADF1A6A775412E6/
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
                RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F4212/53BD7852CFB911EEBADF1A6A775412E6/jipNb8UYDX1HWKp5jDiYAu7zv7M.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  328591

            sbgp-ipAddrBlock: critical
                IPv4:
                  102.36.146.0/24

    Signature Algorithm: sha256WithRSAEncryption
         35:2a:5e:c5:e4:0d:2c:08:4b:aa:b8:74:f8:ba:ce:59:5d:a6:
         54:5f:03:a9:d0:4a:6a:0a:d8:53:6a:df:7f:8a:9d:8e:8e:03:
         f9:78:c7:6c:47:2c:37:4b:14:aa:71:de:18:f3:1f:a6:4b:1f:
         d5:73:12:8f:bb:7a:1b:2f:49:f1:29:ea:6f:47:09:1f:ad:9f:
         9f:8e:c9:ce:cc:29:96:be:ed:7a:76:67:d0:20:fe:cc:c0:6f:
         53:e7:d2:8e:3c:02:bd:a8:17:df:24:7f:6b:a5:2f:4d:b4:ef:
         5a:e0:de:20:df:85:29:94:48:8e:59:d0:a7:97:a6:5c:e9:54:
         f7:cf:e3:d4:6d:3d:38:45:50:f7:ed:a6:21:d8:d8:73:81:91:
         a1:cc:63:71:88:8e:f3:d1:21:8f:01:9c:55:25:61:79:b1:ad:
         09:a4:2d:e1:0e:f7:8b:42:04:50:40:8b:d2:22:bb:68:6d:84:
         2a:c7:4b:5e:bd:76:07:84:a7:39:5d:a2:71:62:c6:39:e5:03:
         9e:ef:b0:4d:d9:8a:64:93:8c:40:fb:70:89:3c:3d:ab:00:20:
         68:0c:a1:73:a8:4c:59:49:5a:f5:93:8a:35:df:df:2d:6d:b1:
         49:e6:c0:8b:93:19:f5:a5:f1:77:33:59:23:f6:d6:33:84:22:
         ac:9e:2b:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----