Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/kcmeRXlnuZKbLt55eXKLD-Jjmtk.cer
File: kcmeRXlnuZKbLt55eXKLD-Jjmtk.cer (raw, json)
Hash identifier: 9rUOpjM8StGS+Nllp9ZCDrinf3hc0qCj7iA+0FkDrpw=
Subject key identifier: 91:C9:9E:45:79:67:B9:92:9B:2E:DE:79:79:72:8B:0F:E2:63:9A:D9
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 31F1
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/kcmeRXlnuZKbLt55eXKLD-Jjmtk.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:41:41 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329278
IP: 102.212.244.0/22
IP: 2c0f:4440::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12785 (0x31f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:41:41 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36AE219AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bb:53:64:78:05:b4:1a:f4:b9:fe:e6:ea:c0:
a6:a1:d5:9f:4c:72:19:55:ea:7a:02:e1:f6:75:25:
03:64:9b:8d:0d:5c:8a:93:9f:bd:68:dc:64:69:59:
96:f0:92:f0:04:59:f7:37:d3:34:6a:3a:41:7f:26:
6b:54:d9:b3:a0:00:aa:95:88:db:02:7e:5e:7b:42:
9b:fc:74:b6:89:a7:f9:78:42:00:a2:af:e0:d0:88:
f5:52:06:55:31:42:9d:b9:c1:f6:10:9a:03:a4:38:
4f:e9:95:7a:39:dd:55:2c:6f:8c:78:84:89:5e:f2:
1b:44:e1:98:bf:ac:55:76:53:14:7c:76:f2:be:48:
29:38:08:7a:1c:86:11:50:a0:f0:ef:96:e3:b6:52:
2f:38:e9:1c:f5:1b:e8:87:8f:d3:6e:14:0f:e7:00:
73:94:51:be:fd:f8:b9:90:cf:0b:48:ac:f4:cd:de:
5c:1b:a4:32:30:9c:39:7f:f9:6f:84:7f:fd:b4:bd:
f1:15:0a:df:d4:77:62:bd:24:8a:b6:0f:6e:e3:57:
68:86:c7:5c:52:47:37:b1:78:00:75:99:6a:3d:3c:
ac:79:4a:a0:36:50:05:88:40:80:da:01:ec:f3:15:
fd:2f:7b:22:77:82:50:21:17:8a:c9:51:fb:f1:33:
60:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C9:9E:45:79:67:B9:92:9B:2E:DE:79:79:72:8B:0F:E2:63:9A:D9
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AE219/52BAC3D8231011EF92871F3A7DDC24C2/kcmeRXlnuZKbLt55eXKLD-Jjmtk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329278
sbgp-ipAddrBlock: critical
IPv4:
102.212.244.0/22
IPv6:
2c0f:4440::/32
Signature Algorithm: sha256WithRSAEncryption
4e:f1:1f:b4:63:21:66:c4:d4:21:ee:ed:59:f7:9c:c0:bb:94:
fa:84:2d:bf:57:99:1d:10:c2:ab:e8:08:4b:8f:5c:c3:c2:b4:
93:b8:88:e3:91:a6:08:b0:66:ec:08:62:6a:14:4e:9a:a4:3e:
be:42:7c:37:30:4b:1c:5f:96:8c:16:68:22:49:6a:71:c6:a1:
d1:23:40:2e:73:97:cd:a9:13:d0:fe:05:da:a7:d2:f9:b9:93:
fe:e1:99:53:fe:44:f7:31:5b:23:bf:b1:21:58:e3:5f:32:fd:
63:02:e1:6a:bc:2d:aa:c8:73:19:32:80:c1:21:1d:72:fc:3f:
37:55:81:4a:8f:21:b7:de:a4:ab:8b:27:fa:96:7d:93:5a:d9:
94:36:13:f5:43:be:43:73:44:86:33:36:4c:ed:98:34:d7:f4:
d8:12:f4:6e:a9:cf:5d:db:a3:1e:c1:56:74:3b:5b:6c:3f:02:
68:d8:cd:ba:c2:46:25:27:88:90:71:99:36:27:f2:91:b2:0b:
99:e9:6d:2b:76:ba:d8:34:c3:76:16:3d:5f:56:a9:5e:18:7d:
35:a1:d9:94:6a:d4:ea:74:61:b4:2f:7d:9f:d4:78:70:56:2d:
d4:9b:8b:ba:8d:fc:92:ae:47:27:65:54:04:77:90:3d:03:ac:
ac:f2:16:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:36:31 2025 by rpki-client