Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/rhXmNVsISpProhxKndYbzcJYtZ4.cer
File: rhXmNVsISpProhxKndYbzcJYtZ4.cer (raw, json)
Hash identifier: JSATLDdhssp6JjAxOY89AicNsuzxiXQLHJbOE8rnVUw=
Subject key identifier: AE:15:E6:35:5B:08:4A:93:EB:A2:1C:4A:9D:D6:1B:CD:C2:58:B5:9E
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2F6A
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3660C14/CAD5F3629BFA11E9B1BFC179F8AEA228/rhXmNVsISpProhxKndYbzcJYtZ4.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3660C14/CAD5F3629BFA11E9B1BFC179F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:27:18 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328213
IP: 2001:43f8:de0::/48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12138 (0x2f6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:27:18 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3660C14AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:78:a2:d3:4b:c2:2d:cf:15:ba:0c:f6:29:bc:
a6:02:12:1f:ee:af:07:45:b8:52:d6:1b:c2:d8:b6:
4e:42:ab:34:fd:c4:9c:35:b8:95:91:f7:f0:8a:49:
03:f3:29:b1:62:c3:3c:78:f1:33:10:61:d1:90:a4:
65:46:1c:59:de:14:fa:d2:66:ee:7d:c5:fe:cf:ab:
b4:cb:9f:a0:a9:66:7b:a7:20:6a:df:91:66:f7:2c:
60:e1:9a:2e:ca:54:3d:5e:82:03:cf:4b:b4:a8:f6:
f4:f9:bd:f4:09:9c:1a:b8:55:12:50:e2:b4:22:7a:
9a:95:ab:99:9b:67:d6:11:f2:51:ab:56:16:a8:40:
c6:f7:54:88:54:b3:de:90:b6:5d:86:99:30:0e:dd:
4b:0c:de:5a:d7:b6:2d:10:2a:71:b8:d4:88:73:c5:
9c:b8:68:4d:cc:e8:2a:2a:11:08:6f:8f:61:8d:ab:
f5:4b:8b:90:f9:98:15:7b:eb:51:a6:9a:70:62:fb:
9c:1b:28:36:61:d6:20:84:70:72:b5:d4:f2:72:3f:
7d:bb:f1:ae:7e:44:ce:dc:d1:8d:d4:51:01:ac:f2:
69:31:22:0c:c8:f7:07:10:c7:1d:71:b6:64:eb:27:
01:7f:a4:e6:02:b4:8c:bc:e6:a9:dd:f9:6c:dd:c0:
50:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:15:E6:35:5B:08:4A:93:EB:A2:1C:4A:9D:D6:1B:CD:C2:58:B5:9E
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3660C14/CAD5F3629BFA11E9B1BFC179F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3660C14/CAD5F3629BFA11E9B1BFC179F8AEA228/rhXmNVsISpProhxKndYbzcJYtZ4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328213
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:de0::/48
Signature Algorithm: sha256WithRSAEncryption
33:8e:7a:1a:65:a3:a1:ca:0e:28:94:da:8a:e3:96:df:d8:e5:
eb:16:a0:94:80:eb:98:1b:73:9a:2f:19:fd:df:8a:23:78:54:
b8:76:f0:2b:c2:ea:79:4a:5c:7a:f2:7e:e2:e3:d2:74:41:e8:
a8:e7:d5:d1:be:c5:99:17:d9:78:f5:54:ac:28:35:b0:93:b5:
5a:85:57:cf:ed:fc:62:d7:f6:66:eb:57:10:b6:ef:d6:4c:40:
f1:30:86:02:ff:62:43:e7:c9:e5:d1:57:69:f2:b7:5b:39:dc:
95:62:c6:61:40:c5:8e:1f:7d:ed:b3:ab:74:b8:da:1d:6b:9f:
78:7f:44:48:b5:b5:bd:ce:d2:1f:40:30:86:9c:b5:f4:8c:08:
44:82:b9:d5:d1:29:e4:74:6e:43:0d:16:6a:dd:33:ef:b8:1d:
11:aa:1c:c1:83:0c:84:60:1c:67:89:fd:92:0d:3a:72:86:30:
27:a1:d9:e6:db:e5:21:41:1f:5e:98:eb:79:15:a7:12:aa:5e:
e2:0c:31:6f:e0:e9:db:a0:f6:d0:f5:c4:c2:08:68:69:f3:d5:
0c:4c:50:13:6e:93:76:18:a1:6f:5a:7d:ed:1d:f5:9e:38:6e:
47:a3:07:c4:68:48:d4:91:a3:b5:ca:3f:8e:78:c9:af:b2:ee:
4b:f8:21:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:55:23 2025 by rpki-client