Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/pZcz3KUuEYvmm3dYljNX3ajFFCg.cer
File: pZcz3KUuEYvmm3dYljNX3ajFFCg.cer (raw, json)
Hash identifier: 38GTTrA+uCWESc5xA6y5ZqVpoWNq42+laUspD7JK1gE=
Subject key identifier: A5:97:33:DC:A5:2E:11:8B:E6:9B:77:58:96:33:57:DD:A8:C5:14:28
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 31E9
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/1C75D54040C311EE91B571434AD9E6FC/pZcz3KUuEYvmm3dYljNX3ajFFCg.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/1C75D54040C311EE91B571434AD9E6FC/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:40:00 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 16800
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12777 (0x31e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:40:00 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36AC63AAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:55:f4:c8:ae:1f:2d:43:87:b3:5d:10:91:c9:
16:28:93:ab:9b:99:12:fa:f0:87:5f:e4:1a:79:7f:
c2:1d:69:70:68:06:9d:60:9a:a8:a3:44:32:aa:0f:
df:84:8c:d0:ca:43:a1:d9:6b:46:68:f6:72:fd:4c:
4e:a6:ae:41:ad:eb:c8:5a:09:65:06:0f:cf:8e:64:
94:6e:12:87:db:c9:a7:4c:e8:c0:05:a1:e1:38:cd:
d7:70:47:27:7d:52:c2:48:5e:12:82:2e:4f:2d:b3:
0e:47:a5:34:ba:52:0e:a2:69:21:9d:08:64:6a:0f:
68:38:48:4e:21:ad:03:c3:72:b9:07:88:93:91:80:
6c:0e:20:1c:c8:84:19:15:ec:6d:d0:a7:6e:36:e4:
df:36:f8:2e:0e:08:c4:90:73:6f:6a:a5:12:29:65:
1d:71:ec:ac:37:18:ef:ad:d8:7f:27:79:75:38:fd:
f0:95:49:a9:9a:c8:96:1c:e5:1f:b1:58:ff:f6:7c:
4f:98:a3:fd:06:b6:37:72:42:e8:6e:a0:3c:40:e7:
a8:2f:51:84:eb:6e:91:a6:e3:a4:e8:c6:4c:ca:03:
37:08:45:15:1a:27:d5:76:d4:a9:29:0f:63:41:1c:
54:7f:1e:35:df:47:b7:88:bf:04:1a:03:31:00:70:
89:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:97:33:DC:A5:2E:11:8B:E6:9B:77:58:96:33:57:DD:A8:C5:14:28
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/1C75D54040C311EE91B571434AD9E6FC/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AC63A/1C75D54040C311EE91B571434AD9E6FC/pZcz3KUuEYvmm3dYljNX3ajFFCg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
16800
Signature Algorithm: sha256WithRSAEncryption
69:f0:6f:9d:f1:df:e9:46:a2:60:b8:ed:11:66:3e:dc:fa:4b:
50:b9:b5:50:9f:db:d5:c6:c2:19:1b:3a:21:a9:5a:0c:4c:1c:
5b:14:31:48:47:6d:1a:e0:8a:52:64:eb:c8:0a:e1:35:1d:ca:
5b:27:ff:b2:ab:4d:01:26:b4:a7:c6:16:11:6f:15:88:36:a1:
6e:51:b4:4e:2c:6a:e5:38:7c:63:5e:fa:4f:8f:33:c3:05:73:
30:94:7a:06:89:b4:7e:36:c4:4e:9f:98:46:2f:14:f8:89:45:
cf:ee:f2:54:29:e6:6a:a1:f1:e5:7b:40:af:3e:27:3b:b1:1e:
76:96:14:ff:7d:26:b0:ca:07:0b:04:88:3e:f3:d7:c5:24:14:
2d:f8:df:bf:78:d2:3e:8f:82:5b:63:a5:bf:18:f7:24:91:b9:
54:b2:0d:9a:7f:b8:2a:94:df:3e:9a:e5:f3:1d:dd:3e:30:bf:
cd:d4:f6:b7:45:8c:24:8b:8f:a2:26:f6:a7:60:2d:85:97:c6:
df:6e:6b:be:d2:24:03:5c:1a:2e:b9:ac:0f:4a:f6:63:a3:5d:
ce:c9:06:cf:29:28:31:ab:af:b0:a6:cc:ce:1f:47:40:f5:cc:
2f:25:1b:29:f6:ff:e8:eb:d9:0c:b7:94:64:4e:0f:bf:da:c5:
2b:2b:60:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:38:26 2025 by rpki-client