Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/ki5AVQsnbd4essFQ31YlgeKM6LY.cer
File: ki5AVQsnbd4essFQ31YlgeKM6LY.cer (raw, json)
Hash identifier: B48VMeDCjGzk784eNj/2PZJiAYHl25vFO4r16X0jA98=
Subject key identifier: 92:2E:40:55:0B:27:6D:DE:1E:B2:C1:50:DF:56:25:81:E2:8C:E8:B6
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3373
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36F0F1F/EDA5AFEC314011EE95A038344AD9E6FC/ki5AVQsnbd4essFQ31YlgeKM6LY.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36F0F1F/EDA5AFEC314011EE95A038344AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 06:06:40 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329062
IP: 102.216.0.0/22
IP: 2c0f:1880::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13171 (0x3373)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 06:06:40 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36F0F1FAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:23:d1:80:7b:25:5a:42:4c:0e:bf:7b:6a:53:
df:e0:af:38:b5:52:c8:fb:d7:a2:5e:9e:e4:0f:31:
a1:88:33:d5:49:ea:c8:8c:fc:2e:88:ed:06:a6:16:
80:49:bd:5e:83:c7:d7:a6:22:c5:be:d1:68:58:58:
1b:42:a7:20:68:4f:c3:4e:35:bf:e5:4f:3c:98:e8:
f6:85:3f:6f:04:51:6a:c9:b2:d9:cb:26:5d:83:9d:
ef:56:23:40:b7:04:9c:78:07:c8:11:06:9d:a3:21:
8d:31:39:54:b9:ca:c5:92:91:e2:11:d7:3f:e9:6c:
11:b6:65:7c:e3:26:a7:6b:4b:de:91:22:8a:a1:9c:
76:c0:7d:fa:26:31:48:ae:d9:17:2f:69:7c:f5:a0:
b5:f6:e3:fa:2f:cb:5f:6b:5e:72:fc:ab:80:a9:0d:
af:bb:13:08:8a:ca:2d:7a:48:a0:07:48:92:07:fa:
c5:9e:b4:e8:44:18:c5:38:07:e9:19:ad:a1:11:75:
fe:81:05:6f:19:15:ce:48:78:03:20:36:13:c3:f5:
9e:1a:cf:3a:6c:10:13:60:a2:f4:72:b8:1f:16:0b:
c5:51:99:ea:0d:e6:d7:4b:f0:36:4c:cc:f5:6e:17:
f2:ca:d3:d6:23:57:c1:e5:eb:e7:38:91:86:e4:2f:
c5:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:2E:40:55:0B:27:6D:DE:1E:B2:C1:50:DF:56:25:81:E2:8C:E8:B6
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0F1F/EDA5AFEC314011EE95A038344AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0F1F/EDA5AFEC314011EE95A038344AD9E6FC/ki5AVQsnbd4essFQ31YlgeKM6LY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329062
sbgp-ipAddrBlock: critical
IPv4:
102.216.0.0/22
IPv6:
2c0f:1880::/32
Signature Algorithm: sha256WithRSAEncryption
22:fd:d2:ff:5d:c4:de:84:1b:37:15:e4:71:9e:5a:21:1d:b1:
0a:cb:a7:e8:fc:bb:f7:39:d2:e7:81:e4:3a:a7:07:b8:4a:c3:
d8:a7:3f:53:1f:e8:84:b8:ea:7c:c1:07:36:d1:4d:5f:8d:ad:
eb:d9:16:d8:6c:50:51:6b:0a:1c:67:ee:bc:96:69:7c:11:13:
04:c2:a3:62:40:2b:72:1d:99:1c:51:67:b7:6e:43:07:c8:05:
8d:8f:85:d6:b5:48:44:65:cb:92:8f:d5:57:f5:a7:96:21:44:
79:38:4a:5c:32:6c:00:17:f0:44:4e:7e:b9:82:be:24:4c:13:
72:e6:b2:b8:1c:3b:fd:0a:99:bf:36:fd:51:55:01:d8:91:ec:
2b:d1:7e:e3:63:24:c7:66:ef:bf:f2:e2:94:e0:4d:ce:3d:2a:
12:46:1c:f8:00:86:f5:6e:5d:cb:9b:9d:f6:26:e5:67:c0:ba:
35:4f:00:4a:e0:d1:61:73:42:ad:4f:b0:0d:52:a9:47:6a:bc:
cc:f4:ff:11:ba:b4:c9:26:c6:94:b8:2b:17:7c:09:69:74:be:
ac:9d:bb:cd:68:ee:b1:28:02:28:8c:b8:e3:1d:e2:31:5b:b0:
ed:d7:d7:55:25:be:28:9e:8f:e0:38:1a:8f:3b:c6:7b:39:e8:
08:83:f0:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:40:32 2025 by rpki-client