Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/ki0mxmsPTvhSNY472eGm8bVde4c.cer
File: ki0mxmsPTvhSNY472eGm8bVde4c.cer (raw, json)
Hash identifier: w5mP23aisWoheBkRrjctiAswaScEfBfwb7j6B6YNSZk=
Subject key identifier: 92:2D:26:C6:6B:0F:4E:F8:52:35:8E:3B:D9:E1:A6:F1:B5:5D:7B:87
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 303C
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/ki0mxmsPTvhSNY472eGm8bVde4c.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:09:46 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 24757
IP: 102.218.0.0/22
IP: 196.188.0.0/14
IP: 197.156.64.0/18
IP: 2c0f:f348::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12348 (0x303c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:09:46 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F367972FAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f3:a0:0e:ff:4c:80:a6:fd:9e:cf:25:85:28:
09:dd:af:3f:b8:87:c0:02:a7:81:78:cc:b7:6b:9f:
9e:6b:d5:f2:84:46:76:cd:16:eb:73:71:a1:80:d3:
14:95:28:4a:35:1c:a2:b9:c4:11:3e:88:cd:c1:a2:
41:d9:3e:3b:e3:0a:cf:8d:aa:ce:ed:fb:94:6d:e1:
f2:e9:00:ad:2f:f7:18:7b:e0:79:63:14:4a:6e:1a:
ca:cc:4c:14:aa:1c:5d:99:99:4f:ac:b2:23:a9:12:
0c:58:12:7e:7d:c7:9d:09:08:5e:e5:5e:d3:4b:c0:
74:30:29:ac:1a:f8:f2:84:44:c3:06:18:ed:5c:ba:
0a:d3:6b:86:a3:c8:40:34:0e:eb:9b:bd:4c:dd:21:
17:25:46:0d:3a:d0:12:4b:6a:bf:1e:76:c4:91:fa:
ef:96:40:a0:4a:ed:d0:71:0f:42:21:35:e3:b2:43:
61:82:82:07:0f:0d:10:2c:b9:29:ca:e0:6d:6c:cc:
80:9d:a2:1d:84:7c:f7:bf:82:66:a9:94:7f:b5:c5:
14:68:d0:0d:3d:44:9b:cd:b9:49:1e:70:86:28:e7:
e8:83:c1:3c:5d:06:23:2d:d4:ca:a1:48:cf:eb:2e:
bd:42:ee:c5:a4:7f:5f:cb:64:44:1e:ad:30:d9:2f:
0b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:2D:26:C6:6B:0F:4E:F8:52:35:8E:3B:D9:E1:A6:F1:B5:5D:7B:87
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F367972F/6110705C901011ED9475399BF1222468/ki0mxmsPTvhSNY472eGm8bVde4c.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24757
sbgp-ipAddrBlock: critical
IPv4:
102.218.0.0/22
196.188.0.0/14
197.156.64.0/18
IPv6:
2c0f:f348::/32
Signature Algorithm: sha256WithRSAEncryption
a5:2a:43:77:ab:0c:b0:87:4a:f9:b6:c4:48:a4:9a:0b:01:f2:
cf:dc:50:0b:00:49:1d:e6:03:15:cd:b7:4e:c6:9f:8a:bc:a9:
f5:56:4b:a8:63:88:f0:b7:5d:e2:b2:9b:4e:97:43:bb:45:75:
bf:5d:82:30:97:e2:8b:8e:d2:8e:60:4b:cd:5f:77:b9:c1:94:
66:54:84:6f:8a:8f:7c:86:44:e1:df:83:27:c7:b0:da:9d:e6:
ad:e8:6b:0d:ae:31:60:31:af:4f:4f:e9:25:fa:0e:19:25:9f:
22:40:b5:29:ea:55:a1:17:29:76:cc:d6:89:dd:6e:6c:87:18:
97:f3:46:9d:72:7d:e0:e3:b8:68:6f:fd:a4:64:e3:4d:da:e2:
63:40:d9:79:ad:06:66:34:55:59:2a:80:f1:4f:64:60:37:41:
ae:a3:70:0d:96:9c:c3:87:8a:98:bb:85:42:01:54:81:2c:25:
00:e1:15:8d:94:d7:3e:99:77:69:14:68:4a:de:52:0d:e6:1f:
72:1b:82:21:9e:e8:e5:35:2e:2f:0f:9e:9a:23:6c:57:02:a8:
39:b0:de:9b:fe:d3:29:ba:1e:13:ec:f4:2a:9d:57:a9:c8:b5:
c1:24:01:02:66:3f:32:7d:36:cc:9e:5b:6d:94:d0:d1:f3:31:
bc:30:23:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:51:18 2025 by rpki-client