Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/sPj_pbvOzTE9-Y6kSk8-pc_XxHw.cer
File: sPj_pbvOzTE9-Y6kSk8-pc_XxHw.cer (raw, json)
Hash identifier: QuNU5cgMYx/uykMPocyQrpYaMFtSY1PWR5PknbtRxP8=
Subject key identifier: B0:F8:FF:A5:BB:CE:CD:31:3D:F9:8E:A4:4A:4F:3E:A5:CF:D7:C4:7C
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2FF2
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36702EE/3E8613EA8D6311EBAA2EE15EF8AEA228/sPj_pbvOzTE9-Y6kSk8-pc_XxHw.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36702EE/3E8613EA8D6311EBAA2EE15EF8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:54:29 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328298
IP: 102.164.56.0/22
IP: 2c0f:efd8::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12274 (0x2ff2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:54:29 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36702EEAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bd:9c:4f:21:25:87:9c:60:bd:a7:0b:1e:83:
45:d0:e4:0d:7a:e4:ee:b2:e2:1a:95:f8:57:a7:02:
39:60:de:16:cb:52:de:7f:ca:8a:4a:2d:62:91:91:
a6:f7:75:57:cc:b8:df:60:cb:4b:f3:60:60:e6:8f:
71:43:b8:9b:80:c9:c2:22:0a:f3:30:52:30:f3:f0:
8a:9e:4a:a3:c2:87:38:b3:2c:7a:2e:85:df:d1:ad:
ec:55:10:50:d4:f9:57:5c:5c:a2:2a:8c:10:52:ed:
cb:8e:ac:af:50:0e:86:2f:d6:64:5e:c0:99:9b:81:
3a:91:b3:27:7a:49:a4:20:35:91:ee:20:11:45:0a:
b1:e5:2e:dd:6c:1a:d0:4f:3b:19:df:06:2d:aa:23:
ef:08:62:94:2d:28:d9:a7:a1:db:74:e2:a6:58:13:
d8:47:d7:eb:25:46:4d:3c:3f:89:d1:10:e0:ec:f1:
4c:cf:c4:08:86:52:e2:32:13:9c:cb:dd:54:26:55:
d9:5b:59:f7:3f:26:74:bf:89:27:12:83:d4:a1:57:
84:d4:0a:11:05:f3:74:f7:9f:73:b1:a7:f1:8e:87:
05:0e:f4:be:fd:5a:06:44:8b:9e:89:55:5d:23:a7:
1b:51:51:d6:5f:b2:c3:1b:da:44:61:eb:21:d1:f3:
11:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F8:FF:A5:BB:CE:CD:31:3D:F9:8E:A4:4A:4F:3E:A5:CF:D7:C4:7C
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36702EE/3E8613EA8D6311EBAA2EE15EF8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36702EE/3E8613EA8D6311EBAA2EE15EF8AEA228/sPj_pbvOzTE9-Y6kSk8-pc_XxHw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328298
sbgp-ipAddrBlock: critical
IPv4:
102.164.56.0/22
IPv6:
2c0f:efd8::/32
Signature Algorithm: sha256WithRSAEncryption
4e:34:5b:23:9d:5a:5f:f0:60:c4:3d:7f:06:e4:35:5f:98:9c:
13:e7:b9:d2:3c:41:6b:b8:83:d4:39:19:30:e3:3c:7f:ab:49:
e1:d3:d7:b2:28:8a:b7:04:fe:eb:f1:0a:a8:b1:b7:34:52:56:
0d:40:03:6e:f9:ce:2f:2f:7b:1b:c1:84:d7:d7:09:cd:00:44:
e4:bb:70:0b:fe:58:b0:13:b9:11:05:47:6b:30:73:27:51:d4:
0b:cf:34:a5:7f:50:3d:d1:ee:64:1e:9d:4a:f7:1a:43:39:af:
e4:0f:d0:e0:ba:8a:91:ae:ed:2e:cc:e1:fb:c4:17:c9:27:8d:
dd:2e:6b:2d:79:06:83:11:f0:a8:3d:2b:4a:93:8e:cd:eb:8e:
fc:f8:a9:ac:cc:23:f0:64:fa:3f:94:c8:55:0c:c3:18:c0:0a:
b4:3c:2e:4c:e4:e1:31:65:93:1e:df:70:ff:a1:f9:f5:dc:af:
c4:77:2a:7a:41:7b:4a:e1:2c:25:09:e2:e0:f9:e0:60:8c:ca:
3b:b9:6a:0d:c4:80:09:f8:bf:96:12:8e:55:0a:ae:07:b6:7e:
11:bc:4f:0d:25:83:f8:8d:6d:68:d5:ee:36:a6:13:d3:01:a1:
61:93:f2:15:0b:88:42:f6:bd:5c:74:ad:0e:5f:db:82:61:28:
e8:a3:33:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:55:24 2025 by rpki-client