Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/rvfHd6w2NsZ7rooMxp5EY46aAJ8.cer
File: rvfHd6w2NsZ7rooMxp5EY46aAJ8.cer (raw, json)
Hash identifier: bRNjTHY55jYqz3DWql5qwlRxZiOLzLd92ELZVFx9PSU=
Subject key identifier: AE:F7:C7:77:AC:36:36:C6:7B:AE:8A:0C:C6:9E:44:63:8E:9A:00:9F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 31C1
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36A4C9E/EA6F480C01B111ED8D98EB89F1222468/rvfHd6w2NsZ7rooMxp5EY46aAJ8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36A4C9E/EA6F480C01B111ED8D98EB89F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 04:31:14 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328758
IP: 102.221.182.0/23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12737 (0x31c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 04:31:14 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36A4C9EAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:71:f1:af:f4:34:38:f3:43:7d:c2:b5:f0:54:
48:ea:e8:44:ac:bd:0c:ad:1b:a9:05:ad:47:fe:30:
3d:6f:1c:d9:b6:e4:dc:aa:93:9f:b9:87:e0:8c:78:
9a:66:4f:03:93:a3:67:3d:95:a5:68:a3:61:15:aa:
e3:c9:80:0a:0b:f1:f2:67:75:11:a6:2f:2d:e0:c6:
ee:70:2f:31:38:80:b8:56:66:af:3a:23:4e:cb:c2:
ed:c7:09:df:21:2f:ca:de:91:0a:d5:33:71:91:55:
63:52:71:ef:b9:e6:c4:8c:7d:13:6a:a6:2f:c9:ea:
9b:91:12:3a:ae:61:71:7c:34:10:7c:5d:8d:3b:da:
d8:b2:c9:59:79:71:12:58:3e:35:86:c5:40:85:94:
51:d8:1d:96:cf:93:65:a5:9a:89:0b:88:94:3e:4e:
03:ed:2b:1d:06:e5:5a:1b:a1:e1:26:12:37:32:cc:
e7:31:88:00:c0:78:96:51:91:00:ae:23:8a:b2:da:
cb:8e:6c:42:dc:c3:f4:95:8d:38:de:37:ea:a4:5d:
92:ea:06:7c:c2:f1:94:e0:dc:88:17:50:e1:7d:50:
34:8f:2b:27:f2:bb:ed:04:3c:c9:f8:58:c7:68:1f:
98:e1:f3:22:8c:99:f6:1d:4b:77:7b:7a:14:0a:5c:
57:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F7:C7:77:AC:36:36:C6:7B:AE:8A:0C:C6:9E:44:63:8E:9A:00:9F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A4C9E/EA6F480C01B111ED8D98EB89F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A4C9E/EA6F480C01B111ED8D98EB89F1222468/rvfHd6w2NsZ7rooMxp5EY46aAJ8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328758
sbgp-ipAddrBlock: critical
IPv4:
102.221.182.0/23
Signature Algorithm: sha256WithRSAEncryption
88:ff:34:78:34:c6:c0:cf:e3:47:3e:6f:7b:70:3c:66:a8:3c:
7c:8d:97:d6:b6:f5:73:76:36:2a:e5:1d:eb:85:55:e0:43:00:
7e:c0:2c:d9:40:70:7e:b6:68:90:dd:8c:71:0f:5f:61:37:0c:
df:ea:87:57:7f:94:54:04:13:95:bc:f7:2f:7d:9d:ea:85:2e:
c2:55:3e:e6:ed:b7:53:0f:86:60:3e:37:83:c8:0a:05:5d:8b:
73:c9:ea:6f:fd:49:ce:a4:30:17:f7:06:90:7e:14:81:75:13:
91:59:64:7e:2d:c3:4d:e0:6d:2e:34:e7:fd:6c:46:b0:38:82:
de:d5:cb:1b:00:a6:b2:e5:b3:f0:4e:29:d9:95:b5:22:cf:c3:
09:aa:73:f8:0c:09:a7:6d:b5:ab:48:b7:e9:da:7f:68:fa:43:
10:d8:a4:7c:09:2e:0c:06:2f:46:9d:70:74:49:d5:14:b0:6f:
7f:2f:bf:0b:21:8f:c2:47:4c:44:02:1b:17:27:49:d8:1a:04:
b5:33:47:08:47:ac:e9:59:42:85:50:d3:42:48:bb:11:5d:4d:
6e:1e:b4:7a:54:09:79:38:a2:26:7c:52:d1:9c:4b:15:63:99:
6f:0d:e7:d9:90:e9:f0:4d:a7:95:23:fe:54:16:1e:23:09:4a:
f2:ed:8d:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:30:30 2025 by rpki-client