Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/osaoR7jzEgAwg0GHFH38ZcjulMA.cer
File: osaoR7jzEgAwg0GHFH38ZcjulMA.cer (raw, json)
Hash identifier: D0pYf88rjuezADQsf4wsxgSv4WZa+Z6KVIR8CEyINLc=
Subject key identifier: A2:C6:A8:47:B8:F3:12:00:30:83:41:87:14:7D:FC:65:C8:EE:94:C0
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2D67
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3627BD6/366035A423F211E6BD17D823F8AEA228/osaoR7jzEgAwg0GHFH38ZcjulMA.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3627BD6/366035A423F211E6BD17D823F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:41:09 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 7020
IP: 196.4.250.0/23
IP: 196.10.1.0 -- 196.10.50.255
IP: 196.29.128.0/19
IP: 196.45.168.0/21
IP: 2c0f:fb80::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11623 (0x2d67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:41:09 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3627BD6AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:ca:b4:37:0d:1e:03:ca:13:39:4d:9e:b8:62:
ab:be:96:cb:c1:e0:15:d0:17:0b:f1:59:db:94:a1:
67:ff:32:f3:7d:23:5f:09:97:67:7b:c0:e6:03:1f:
77:00:07:cf:be:44:87:be:15:7d:45:39:c9:a2:5d:
12:ca:0b:fe:f1:c9:f5:66:0a:55:d4:ac:02:bf:c3:
4b:fc:bb:f0:3c:c3:dc:56:42:64:89:df:eb:75:21:
9f:49:1c:e6:44:dd:0a:b1:be:53:df:10:a9:7e:ec:
61:1f:8c:df:27:04:a1:4c:a1:f3:60:60:cd:23:18:
d1:f2:68:92:55:62:a2:67:2f:dd:18:0b:02:3f:1d:
8b:84:44:30:74:b0:a2:d9:e4:2d:75:44:48:aa:a3:
a6:ea:ba:c6:c1:e7:8e:6d:32:2e:a9:b2:d1:86:47:
f4:b5:e1:67:bc:79:15:48:00:68:d4:aa:da:03:d2:
1f:8a:c5:05:56:25:cc:df:b0:2e:5e:e3:89:56:aa:
ba:9e:8f:44:0a:09:43:7d:8d:33:07:f5:b2:b7:92:
fd:eb:fb:c4:07:5f:49:1e:f9:dc:24:bf:c5:98:d6:
8a:d8:dc:ce:ef:5c:e9:05:d0:52:91:61:fe:28:79:
62:cb:90:18:92:89:94:cf:92:e2:37:94:0f:7a:09:
bb:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:C6:A8:47:B8:F3:12:00:30:83:41:87:14:7D:FC:65:C8:EE:94:C0
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3627BD6/366035A423F211E6BD17D823F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3627BD6/366035A423F211E6BD17D823F8AEA228/osaoR7jzEgAwg0GHFH38ZcjulMA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7020
sbgp-ipAddrBlock: critical
IPv4:
196.4.250.0/23
196.10.1.0-196.10.50.255
196.29.128.0/19
196.45.168.0/21
IPv6:
2c0f:fb80::/32
Signature Algorithm: sha256WithRSAEncryption
0c:5e:ea:7a:c0:bf:df:5b:fa:4b:2d:60:73:63:7d:f5:fc:70:
5e:a8:b3:4f:f0:a5:19:9b:08:38:2f:f4:1b:4e:13:9c:06:61:
ea:eb:7d:1a:6f:1f:2b:f2:0c:6e:01:c4:ce:5e:99:fa:39:6f:
b8:59:02:40:a8:49:52:4c:a4:13:aa:1f:8b:0b:85:9f:5b:0e:
a0:7e:95:9d:55:33:05:b2:3d:c8:13:b0:22:aa:fc:d6:45:cc:
f9:c5:c2:b9:47:4c:9d:5a:1b:76:28:a6:a9:e1:71:82:9a:75:
20:4e:77:bd:b9:67:e4:d9:29:07:85:f6:8d:57:de:44:78:87:
61:50:f3:18:c2:f2:61:8c:bc:89:af:e1:79:ca:28:4e:03:99:
b6:8d:57:62:1c:2a:b7:2f:eb:ae:3e:df:b3:6c:d5:35:ae:19:
4d:1c:b3:62:2e:13:6e:64:9c:1a:31:e8:d7:a4:ed:16:27:01:
04:af:fb:fa:8c:6d:e0:d5:97:47:f0:9d:f6:22:dc:13:58:b7:
59:71:be:9f:d5:44:ca:53:3e:b6:ff:05:76:f1:5e:6a:01:06:
16:19:4c:13:4c:c9:c7:6e:c1:dd:71:d7:6c:09:c1:d3:7d:c8:
24:7a:4f:0c:4e:6f:a6:1a:22:ed:4c:b0:56:69:23:3d:da:05:
0d:e6:20:3f
-----BEGIN CERTIFICATE-----
MIIGPjCCBSagAwIBAgICLWcwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMDQxMDlaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjI3QkQ2QUYxMTAvBgNVBAUTKEEyQzZBODQ3QjhGMzEyMDAzMDgzNDE4
NzE0N0RGQzY1QzhFRTk0QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQD0yrQ3DR4DyhM5TZ64Yqu+lsvB4BXQFwvxWduUoWf/MvN9I18Jl2d7wOYDH3cA
B8++RIe+FX1FOcmiXRLKC/7xyfVmClXUrAK/w0v8u/A8w9xWQmSJ3+t1IZ9JHOZE
3QqxvlPfEKl+7GEfjN8nBKFMofNgYM0jGNHyaJJVYqJnL90YCwI/HYuERDB0sKLZ
5C11REiqo6bqusbB545tMi6pstGGR/S14We8eRVIAGjUqtoD0h+KxQVWJczfsC5e
44lWqrqej0QKCUN9jTMH9bK3kv3r+8QHX0ke+dwkv8WY1orY3M7vXOkF0FKRYf4o
eWLLkBiSiZTPkuI3lA96CbvNAgMBAAGjggMzMIIDLzAdBgNVHQ4EFgQUosaoR7jz
EgAwg0GHFH38ZcjulMAwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzYyN0JENi8zNjYwMzVBNDIzRjIx
MUU2QkQxN0Q4MjNGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MjdCRDYvMzY2MDM1QTQyM0YyMTFFNkJEMTdEODIzRjhBRUEyMjgvb3Nhb1I3
anpFZ0F3ZzBHSEZIMzhaY2p1bE1BLm1mdDAZBggrBgEFBQcBCAEB/wQKMAigBjAE
AgIbbDBIBggrBgEFBQcBBwEB/wQ5MDcwJgQCAAEwIAMEAcQE+jAMAwQAxAoBAwQA
xAoyAwQFxB2AAwQDxC2oMA0EAgACMAcDBQAsD/uAMA0GCSqGSIb3DQEBCwUAA4IB
AQAMXup6wL/fW/pLLWBzY331/HBeqLNP8KUZmwg4L/QbThOcBmHq630abx8r8gxu
AcTOXpn6OW+4WQJAqElSTKQTqh+LC4WfWw6gfpWdVTMFsj3IE7AiqvzWRcz5xcK5
R0ydWht2KKap4XGCmnUgTne9uWfk2SkHhfaNV95EeIdhUPMYwvJhjLyJr+F5yihO
A5m2jVdiHCq3L+uuPt+zbNU1rhlNHLNiLhNuZJwaMejXpO0WJwEEr/v6jG3g1ZdH
8J32ItwTWLdZcb6f1UTKUz62/wV28V5qAQYWGUwTTMnHbsHdcddsCcHTfcgkek8M
Tm+mGiLtTLBWaSM92gUN5iA/
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:37:33 2025 by rpki-client