Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/jq1LkUtvfJKOEv440cRAvFMJwTM.cer
File: jq1LkUtvfJKOEv440cRAvFMJwTM.cer (raw, json)
Hash identifier: YKyLcAEw6ZKb6fzj+vevV7tVLi/9Mei6pGohKWUFQJ4=
Subject key identifier: 8E:AD:4B:91:4B:6F:7C:92:8E:12:FE:38:D1:C4:40:BC:53:09:C1:33
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E31
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/jq1LkUtvfJKOEv440cRAvFMJwTM.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:23:33 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 36890
IP: 41.186.0.0/16
IP: 196.44.240.0/20
IP: 2c0f:f860::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11825 (0x2e31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:23:33 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3642818AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:54:6b:c8:ab:12:24:0e:ec:60:dc:d4:f1:b3:
4a:8d:bb:e7:7c:7c:b7:c1:0e:80:91:31:dc:85:02:
d8:f6:ae:98:70:61:3e:58:87:72:17:74:7d:a7:83:
0e:86:21:1d:c7:50:93:47:f3:88:a3:95:3b:a8:f8:
6f:28:97:cb:77:18:a6:75:3f:8f:cf:30:e0:a0:a2:
8e:45:d3:1e:bd:e6:a8:bd:19:8f:8a:4d:9e:fe:66:
4f:f4:e5:2f:e3:f2:01:21:ac:5b:60:2e:fa:ed:4d:
5c:a1:fe:57:3b:8d:aa:2b:bd:4f:66:de:39:9f:49:
8a:d3:fc:5d:30:98:3b:74:33:c3:2c:f6:13:3d:db:
bf:ac:3e:3f:90:a7:91:eb:07:da:b1:ae:cb:59:a9:
39:46:80:1c:7a:d6:c6:62:fa:0a:e9:2d:cf:93:6c:
d8:e8:a7:a6:1b:da:a8:d0:c9:05:72:30:e1:17:a8:
b4:a6:fb:84:c1:16:b8:85:9f:f9:1e:42:17:b1:45:
51:67:b8:ee:95:a6:e7:c7:bc:67:9b:84:ed:9b:cd:
45:7d:ac:ff:42:8e:f5:ff:08:78:9a:93:5c:29:a0:
cb:72:f9:46:56:83:90:42:51:65:96:f4:16:2b:41:
e0:f0:be:de:b1:71:ad:41:f1:b0:c5:99:60:f7:99:
23:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:AD:4B:91:4B:6F:7C:92:8E:12:FE:38:D1:C4:40:BC:53:09:C1:33
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642818/9224B30A49FD11ED86901991F1222468/jq1LkUtvfJKOEv440cRAvFMJwTM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
36890
sbgp-ipAddrBlock: critical
IPv4:
41.186.0.0/16
196.44.240.0/20
IPv6:
2c0f:f860::/32
Signature Algorithm: sha256WithRSAEncryption
c2:cd:27:4a:55:a9:f1:26:ea:de:20:af:da:46:06:a1:80:9b:
5d:d3:83:c4:bb:04:7d:d3:5c:5d:d5:f3:c9:f2:03:5d:c3:fc:
4c:a3:53:85:dd:98:ab:63:cc:44:99:68:2a:a0:f7:6f:e7:00:
a1:a1:e7:57:0c:91:58:f1:e3:a2:13:1a:6f:74:59:a2:1b:af:
33:9b:db:c8:c9:47:96:dc:a1:be:a1:93:d5:10:1f:51:f9:fc:
95:45:2b:2d:2b:71:bb:ec:b6:4e:ab:d2:0b:8f:51:1d:7c:c3:
5b:97:39:83:d1:fc:8b:5f:a9:ec:50:69:2e:26:c9:67:cf:36:
5d:d5:21:0d:1a:aa:63:65:c1:a1:02:3b:e5:4a:e4:49:ca:de:
80:14:8b:50:1a:03:84:a3:dd:8a:bc:f4:55:1a:ae:b5:45:9d:
9e:c3:58:1d:7f:de:78:f7:d6:84:2b:72:8e:10:b4:de:a1:fd:
0e:a3:48:87:0f:92:7b:28:65:4f:b4:2a:a9:8d:47:a1:12:b9:
4c:76:ba:96:f5:da:7b:3b:f1:6a:67:7a:13:73:93:88:21:41:
c3:53:9d:30:aa:88:a0:c5:d8:35:c2:b4:31:94:8f:f9:2f:ec:
4d:fe:6a:f9:54:b4:a1:3b:f2:21:c5:dd:74:7e:51:fd:28:6f:
66:c0:1f:57
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:41:44 2025 by rpki-client