Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/tcdCRu5ePI-pmYQd3EQ2U_hUun0.cer
File: tcdCRu5ePI-pmYQd3EQ2U_hUun0.cer (raw, json)
Hash identifier: 30+mrCzH5FXiT9tBnHGbk42CxsKZq5Dk0C/veTJOOr0=
Subject key identifier: B5:C7:42:46:EE:5E:3C:8F:A9:99:84:1D:DC:44:36:53:F8:54:BA:7D
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 3352
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E75A9/55520340C40611EE8F4A288D775412E6/tcdCRu5ePI-pmYQd3EQ2U_hUun0.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E75A9/55520340C40611EE8F4A288D775412E6/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:59:02 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329378
IP: 102.210.104.0/22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13138 (0x3352)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 05:59:02 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E75A9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:64:bc:67:32:4b:d1:24:1f:80:49:bb:e9:23:
d7:28:49:09:a9:0a:61:3d:7d:99:ea:8f:ad:49:0b:
e7:b1:91:34:87:41:d4:12:a1:4a:16:56:1f:82:4d:
41:d2:64:77:8b:72:a3:a8:03:0a:36:d8:9c:6d:99:
28:02:c3:1b:b7:aa:7c:17:a0:41:2e:d0:6d:5d:7f:
fd:17:9a:81:bb:1b:7e:4b:7b:63:27:e1:1e:e3:a8:
bf:64:fc:0e:74:3d:e4:e1:35:13:be:ea:cf:6f:92:
4d:ae:de:1f:4c:50:64:de:f7:8e:60:64:d9:f2:36:
df:49:fb:82:a5:1a:ce:4f:e8:c1:e6:db:97:58:54:
60:a0:55:9f:bb:86:fe:b8:2a:e9:c1:99:6d:3d:15:
c1:63:67:6d:87:6e:1d:8c:1c:8c:4b:67:45:6a:e0:
1b:f1:f2:a8:43:5f:9c:f7:fc:d0:e4:46:fc:0c:d3:
e2:b9:16:0b:70:03:ea:3c:25:fc:c5:b7:1a:79:e3:
83:03:27:c0:ce:53:d6:0f:05:9c:75:5e:18:08:f3:
f0:c5:09:81:30:09:4f:7f:48:0e:61:ac:f0:9b:a3:
58:b1:c4:04:74:55:aa:63:d7:5f:87:96:b4:32:a9:
29:6e:f9:ad:f1:dc:dc:72:2b:b7:0b:a0:c8:02:1f:
af:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C7:42:46:EE:5E:3C:8F:A9:99:84:1D:DC:44:36:53:F8:54:BA:7D
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E75A9/55520340C40611EE8F4A288D775412E6/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E75A9/55520340C40611EE8F4A288D775412E6/tcdCRu5ePI-pmYQd3EQ2U_hUun0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329378
sbgp-ipAddrBlock: critical
IPv4:
102.210.104.0/22
Signature Algorithm: sha256WithRSAEncryption
73:b8:89:af:cd:65:5b:e1:4e:16:6e:98:8d:d7:15:b8:0d:f4:
a5:39:ce:fe:65:8a:07:67:de:4d:ee:49:14:73:4b:4f:25:77:
51:06:fa:6c:4b:7b:ea:f6:e9:2f:60:8c:69:a9:ba:7d:ea:17:
66:e6:52:02:86:6a:d8:21:77:8b:84:17:c2:eb:e0:63:ae:15:
1d:c8:49:3e:eb:9d:82:57:94:80:6b:63:d5:f1:2e:f0:8e:5e:
55:a8:e5:83:38:ee:4d:b8:1a:34:7a:d1:03:92:5f:4a:88:e4:
5e:61:96:ab:a5:b2:3d:cb:ac:e4:64:d3:19:df:8f:39:ae:4e:
65:dd:33:07:c1:ed:15:b7:79:62:e3:98:94:35:4f:84:65:be:
6f:5d:f2:95:e8:c3:43:ca:64:20:e5:9e:e5:0d:35:53:fd:ae:
7c:ef:ae:e8:ed:b8:8c:a4:40:5e:ce:cc:8f:35:71:44:f8:63:
e3:aa:e3:67:c5:d4:5c:56:0a:6d:f8:9c:dc:bd:92:18:53:4e:
25:43:4c:21:22:67:e7:23:c8:65:9c:3d:9a:d7:1d:d5:04:46:
16:9d:89:7a:9f:fc:81:80:25:0a:c9:f1:e2:fa:1f:7f:17:40:
33:6a:a4:c9:72:9d:e5:3d:b1:35:c8:09:4e:ef:85:4f:b0:75:
1b:86:44:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:28:44 2025 by rpki-client