Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/lHgxWh5cVhWpIou-ykijlocLhH4.cer
File: lHgxWh5cVhWpIou-ykijlocLhH4.cer (raw, json)
Hash identifier: pN5mgCcgghM+J1zyFNBwsEYWgTKl6Tahb96jz6AxVug=
Subject key identifier: 94:78:31:5A:1E:5C:56:15:A9:22:8B:BE:CA:48:A3:96:87:0B:84:7E
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 318E
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F369F2FA/69B05CBABB0C11ECA7DC65BB5A40D577/lHgxWh5cVhWpIou-ykijlocLhH4.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F369F2FA/69B05CBABB0C11ECA7DC65BB5A40D577/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:19:54 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 22750
AS: 37310
IP: 41.66.64.0/18
IP: 196.1.101.0 -- 196.1.102.255
IP: 196.44.64.0/19
IP: 196.44.224.0/20
IP: 197.211.128.0/18
IP: 2c0f:fc68::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12686 (0x318e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:19:54 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F369F2FAAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:46:ac:3f:c8:99:08:16:f1:0b:2a:70:dd:8a:
a2:e9:a3:a2:33:72:b7:02:79:7b:48:3f:71:35:b1:
72:4b:03:a5:1b:6e:8d:33:7e:5c:fc:22:fb:44:b3:
59:ce:3b:9a:50:f2:31:b9:5d:37:08:8c:28:4d:82:
c2:8e:fa:30:5b:c3:52:1d:50:a9:ef:0e:ce:b8:90:
45:5e:9a:2f:9b:00:b7:7f:6a:4c:cf:b4:c0:3c:a7:
ad:d9:e4:dd:18:8c:bf:34:65:8e:d4:cb:d8:96:3a:
c2:db:c3:c0:4a:88:fa:de:4c:96:53:c6:09:4b:92:
38:70:24:e1:d5:f8:59:6d:bb:79:3a:fa:1f:39:93:
66:61:a6:d7:4a:1c:8d:08:f6:4c:77:b3:0e:a1:9c:
94:87:cc:f4:77:ed:9d:0d:96:5e:f8:7d:e2:48:b8:
24:8f:44:db:72:7b:f2:bb:25:d3:63:eb:dd:a9:50:
12:53:cb:c7:c7:68:2c:8d:57:61:b7:66:3a:a1:8d:
32:6f:00:ab:3c:a9:32:ea:db:40:fc:84:95:a5:8c:
91:36:c3:01:e1:d5:f9:fa:be:6d:71:e8:a5:38:4b:
43:fd:0d:14:6d:03:9c:d5:99:20:e9:7d:a6:fc:4e:
5b:73:cd:e7:a0:89:06:6a:61:fd:e0:88:db:69:03:
27:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:78:31:5A:1E:5C:56:15:A9:22:8B:BE:CA:48:A3:96:87:0B:84:7E
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F369F2FA/69B05CBABB0C11ECA7DC65BB5A40D577/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F369F2FA/69B05CBABB0C11ECA7DC65BB5A40D577/lHgxWh5cVhWpIou-ykijlocLhH4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
22750
37310
sbgp-ipAddrBlock: critical
IPv4:
41.66.64.0/18
196.1.101.0-196.1.102.255
196.44.64.0/19
196.44.224.0/20
197.211.128.0/18
IPv6:
2c0f:fc68::/32
Signature Algorithm: sha256WithRSAEncryption
b1:7f:d1:4e:9b:5e:7a:b1:c6:9f:62:57:cc:08:f7:f6:32:eb:
1a:a2:96:e2:b9:ec:6c:3c:d1:dc:90:40:1e:c3:d5:52:ca:42:
d2:0c:c1:07:c9:0a:d9:8d:24:2f:63:34:1a:0a:a5:89:48:f1:
e2:6c:21:30:21:2a:65:73:ab:cd:d4:ae:22:47:65:2d:0a:77:
ee:dc:c7:a8:1b:5a:48:ea:f8:79:65:af:22:d3:2a:85:75:f9:
af:e7:b6:ad:2a:b9:79:25:dd:2f:56:5d:39:cb:6b:27:2c:3f:
59:6a:f3:bf:c7:a8:66:88:81:5b:d9:be:2c:02:37:00:7c:df:
02:20:93:5e:5a:74:cc:98:c9:06:67:f3:26:40:05:63:e9:a2:
e4:55:bd:c4:9a:9a:84:0b:7f:f3:f7:46:c1:de:0e:16:ba:1a:
76:40:e5:1e:cd:c8:f1:d3:26:67:56:03:69:2d:3a:1c:0a:fc:
d0:c6:4b:d2:48:45:bf:7d:c6:50:d4:31:d3:4f:83:b2:4f:ad:
a6:90:8f:a8:54:74:4f:c5:16:b1:35:85:e3:5d:99:f2:f0:71:
b3:eb:7f:44:32:7f:85:d0:33:a2:2e:ed:14:40:f1:0e:b3:6f:
6a:03:95:c5:0d:b1:f1:b0:06:c0:73:46:a4:aa:b9:f5:29:a2:
c0:0a:12:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:55:24 2025 by rpki-client