Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/l9Y19-2_mFQOYSLJxsIL43gotSY.cer
File: l9Y19-2_mFQOYSLJxsIL43gotSY.cer (raw, json)
Hash identifier: dVFftO9uUuw3TOEA9182CEhmsRhquewGZTxRZ6pIJVU=
Subject key identifier: 97:D6:35:F7:ED:BF:98:54:0E:61:22:C9:C6:C2:0B:E3:78:28:B5:26
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2D4D
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3624E32/08D6A70AEE7311ED942F54164AD9E6FC/l9Y19-2_mFQOYSLJxsIL43gotSY.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3624E32/08D6A70AEE7311ED942F54164AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:34:57 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328249
IP: 2c0f:ee08::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11597 (0x2d4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:34:57 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3624E32AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:16:b7:3a:84:1d:c2:97:55:c2:de:93:d3:27:
cc:69:91:04:a6:2e:6e:ba:4f:0a:58:c3:2d:7a:81:
e4:d7:25:58:18:c7:aa:47:c5:b3:6a:b7:93:77:55:
40:4b:1a:6a:fd:5c:a6:bb:ad:1c:98:7b:5e:2c:22:
51:88:8f:95:56:e1:df:4a:bb:4e:c9:df:80:eb:f5:
e4:d7:73:be:36:4c:8b:b2:5e:89:32:5c:53:54:52:
20:23:96:50:70:7e:16:e5:a3:a4:e6:b6:96:58:9b:
21:88:1e:77:ac:62:65:74:45:37:43:b3:4d:1d:00:
b6:d2:b2:a3:7a:24:ed:d0:59:ff:0a:c5:79:91:62:
a2:a6:3e:7e:a8:9d:15:75:59:fa:eb:f3:4f:82:e1:
b2:71:8d:59:7d:95:34:36:80:d3:d7:31:95:af:27:
1d:21:67:6b:51:bd:d7:02:f3:6e:52:70:85:63:c0:
76:80:f9:11:36:71:0d:d2:3e:9f:3e:1a:44:02:7f:
5e:ec:5b:0d:42:10:99:c3:5c:ab:4c:c8:bb:18:23:
75:e7:68:1e:6b:6a:c8:2f:18:77:27:ed:de:19:1b:
13:bf:bd:86:cb:87:e8:93:d5:e9:49:8f:00:ab:52:
5a:f5:0e:33:55:b4:ba:f6:88:e5:fe:90:f7:10:f4:
3e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D6:35:F7:ED:BF:98:54:0E:61:22:C9:C6:C2:0B:E3:78:28:B5:26
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3624E32/08D6A70AEE7311ED942F54164AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3624E32/08D6A70AEE7311ED942F54164AD9E6FC/l9Y19-2_mFQOYSLJxsIL43gotSY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328249
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ee08::/32
Signature Algorithm: sha256WithRSAEncryption
a0:f9:a6:f2:20:47:1e:81:e5:ca:ad:52:71:1e:32:d1:b2:8e:
63:ed:fa:7f:2a:a0:6b:11:a1:2e:34:9e:08:05:d2:19:0e:a9:
e2:d6:63:a3:09:d8:d0:2e:b4:c0:87:61:97:a7:93:0d:ff:2a:
2f:af:cf:d8:d7:c4:22:a8:4a:41:0e:83:47:28:c0:58:ee:e7:
56:34:82:c2:38:dc:2b:01:1e:67:7f:68:eb:52:9b:bb:7a:04:
db:a0:61:4f:11:82:4f:63:1a:e4:c6:9a:4f:3a:73:83:87:e5:
b9:a2:7b:74:96:e4:00:19:e4:30:72:18:78:e2:a4:a5:7f:f2:
87:53:71:eb:ce:96:ee:d5:2f:fa:c0:08:ca:42:ab:a5:ed:39:
1a:ad:6d:e4:f2:75:29:54:15:4c:2e:7e:98:07:c2:06:d9:27:
bc:9a:5b:cc:21:58:5f:b9:79:9a:5d:ab:f3:c7:2c:64:2d:fc:
59:50:b3:1f:97:a5:39:e7:a6:97:cd:3b:9a:cf:03:c9:1d:cf:
a8:ea:f9:71:0c:8a:20:f7:d3:82:4b:5b:eb:52:e1:b3:07:be:
1e:81:6c:f9:ea:af:8d:ea:bd:81:ba:73:5a:50:45:43:1b:2b:
9a:dc:74:e8:d3:36:6b:1d:61:0a:91:94:6e:2d:a3:b8:64:94:
54:8e:42:4c
-----BEGIN CERTIFICATE-----
MIIGFzCCBP+gAwIBAgICLU0wDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMDM0NTdaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjI0RTMyQUYxMTAvBgNVBAUTKDk3RDYzNUY3RURCRjk4NTQwRTYxMjJD
OUM2QzIwQkUzNzgyOEI1MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDvFrc6hB3Cl1XC3pPTJ8xpkQSmLm66TwpYwy16geTXJVgYx6pHxbNqt5N3VUBL
Gmr9XKa7rRyYe14sIlGIj5VW4d9Ku07J34Dr9eTXc742TIuyXokyXFNUUiAjllBw
fhblo6TmtpZYmyGIHnesYmV0RTdDs00dALbSsqN6JO3QWf8KxXmRYqKmPn6onRV1
Wfrr80+C4bJxjVl9lTQ2gNPXMZWvJx0hZ2tRvdcC825ScIVjwHaA+RE2cQ3SPp8+
GkQCf17sWw1CEJnDXKtMyLsYI3XnaB5rasgvGHcn7d4ZGxO/vYbLh+iT1elJjwCr
Ulr1DjNVtLr2iOX+kPcQ9D6xAgMBAAGjggMMMIIDCDAdBgNVHQ4EFgQUl9Y19+2/
mFQOYSLJxsIL43gotSYwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzYyNEUzMi8wOEQ2QTcwQUVFNzMx
MUVEOTQyRjU0MTY0QUQ5RTZGQy8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MjRFMzIvMDhENkE3MEFFRTczMTFFRDk0MkY1NDE2NEFEOUU2RkMvbDlZMTkt
Ml9tRlFPWVNMSnhzSUw0M2dvdFNZLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFAjkwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAsD+4IMA0GCSqGSIb3
DQEBCwUAA4IBAQCg+abyIEcegeXKrVJxHjLRso5j7fp/KqBrEaEuNJ4IBdIZDqni
1mOjCdjQLrTAh2GXp5MN/yovr8/Y18QiqEpBDoNHKMBY7udWNILCONwrAR5nf2jr
Upu7egTboGFPEYJPYxrkxppPOnODh+W5ont0luQAGeQwchh44qSlf/KHU3Hrzpbu
1S/6wAjKQqul7TkarW3k8nUpVBVMLn6YB8IG2Se8mlvMIVhfuXmaXavzxyxkLfxZ
ULMfl6U556aXzTuazwPJHc+o6vlxDIog99OCS1vrUuGzB74egWz56q+N6r2BunNa
UEVDGyua3HTo0zZrHWEKkZRuLaO4ZJRUjkJM
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:31:53 2025 by rpki-client