Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/kXMyk_xjUK7funWpFv_0G1Fez0w.cer
File: kXMyk_xjUK7funWpFv_0G1Fez0w.cer (raw, json)
Hash identifier: BMu1g3mQmhmeSb7V1E3QcRJM0mby6/W5BiBffs7mWiw=
Subject key identifier: 91:73:32:93:FC:63:50:AE:DF:BA:75:A9:16:FF:F4:1B:51:5E:CF:4C
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 30A5
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3683A54/5C3677F21F7811EC9A12311AD8A014CE/kXMyk_xjUK7funWpFv_0G1Fez0w.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3683A54/5C3677F21F7811EC9A12311AD8A014CE/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:31:12 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 102.207.108.0/22
IP: 102.218.108.0/22
IP: 2c0f:3d00::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12453 (0x30a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:31:12 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3683A54AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c7:00:44:9f:f9:e1:11:f6:70:e8:06:df:58:
28:56:34:d6:a6:ac:7e:f7:6d:6a:c3:d3:b1:bb:d1:
ea:07:a9:e0:d4:f5:57:f3:1f:48:70:8d:60:d9:19:
c9:e0:81:47:bc:f6:d8:43:fb:7a:6e:c6:68:21:2e:
dc:3b:8f:21:b5:2e:b5:5a:81:71:58:0a:bb:39:9b:
ed:da:d3:52:4c:25:44:a7:70:b9:10:63:f1:3a:86:
1a:ff:6d:ac:09:85:da:52:39:ee:78:ce:90:6d:ae:
8f:6f:44:4f:f2:56:f1:f4:7c:4b:2c:13:8e:af:e6:
de:6d:fb:3e:a2:bc:5b:ea:63:75:3e:71:e0:6c:4f:
b4:13:22:2c:09:9c:d6:10:3c:3c:e9:79:87:7b:1a:
72:4f:83:fd:48:22:4a:19:23:ef:fc:79:2c:b9:93:
ea:00:38:46:06:4e:23:f6:65:2e:64:d3:b4:91:02:
95:58:f4:83:72:03:8b:1e:86:5c:08:e8:7d:e7:d5:
08:8d:5a:bf:89:c4:56:16:36:44:80:7e:6d:ff:23:
a7:d0:f1:e8:3a:d9:94:89:72:2c:92:f9:6e:6c:7c:
d7:e2:df:36:5c:72:11:a2:0c:5f:d5:4b:3a:ff:7b:
e5:c2:8c:ff:2c:fc:cc:31:cd:a8:a9:ce:b8:d2:d2:
1e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:73:32:93:FC:63:50:AE:DF:BA:75:A9:16:FF:F4:1B:51:5E:CF:4C
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3683A54/5C3677F21F7811EC9A12311AD8A014CE/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3683A54/5C3677F21F7811EC9A12311AD8A014CE/kXMyk_xjUK7funWpFv_0G1Fez0w.mft
sbgp-ipAddrBlock: critical
IPv4:
102.207.108.0/22
102.218.108.0/22
IPv6:
2c0f:3d00::/32
Signature Algorithm: sha256WithRSAEncryption
85:97:06:b5:83:78:83:2c:c3:56:45:62:19:af:80:b0:27:91:
b7:6c:14:1e:8c:8e:56:b7:8f:31:87:b2:55:01:be:1c:94:c2:
35:31:92:b6:fa:86:3c:2d:7f:44:ec:9b:f2:f1:ac:cc:ce:07:
c7:39:3a:82:9e:71:3b:9f:1b:70:af:2a:22:a9:2e:e6:83:d8:
7a:d5:17:83:54:8e:b9:37:35:cb:ed:a9:9c:a0:a7:59:c8:73:
d4:8e:c5:f4:66:e9:14:02:e3:f2:43:59:57:0f:81:83:75:cb:
98:3c:9e:91:9a:e8:0f:07:05:b4:68:7e:60:2c:75:0e:de:ce:
4d:cd:fd:ee:cd:30:ee:70:2a:ca:1c:60:18:aa:8a:32:a8:23:
30:3b:87:c5:1d:49:0a:43:bf:fb:b6:0c:5a:d5:03:8c:60:c8:
ed:2c:31:da:c1:42:e9:95:1e:3f:7d:26:23:f5:7a:90:79:51:
b4:36:98:83:0a:d9:0e:fb:20:44:84:ce:64:11:ee:17:52:6e:
48:93:93:1b:42:ae:a7:a5:22:15:a8:8f:ed:e5:64:18:2e:88:
29:bf:c8:fc:d4:f8:99:92:a7:05:4d:94:81:96:75:b3:0e:a1:
f0:9e:e4:57:bf:75:ad:f4:73:4c:d3:15:1d:72:de:0c:a3:73:
0d:dd:0f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:53:20 2025 by rpki-client