Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/ui_9XON8AcbtlPuVw1jXCimNyXQ.cer
File: ui_9XON8AcbtlPuVw1jXCimNyXQ.cer (raw, json)
Hash identifier: 7wh+4BNiVsqgin6EmiZR2g6hdPLRBBzQAXDdBTeEZZE=
Subject key identifier: BA:2F:FD:5C:E3:7C:01:C6:ED:94:FB:95:C3:58:D7:0A:29:8D:C9:74
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 303A
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3679680/67101F50E29111EEBC9A7258775412E6/ui_9XON8AcbtlPuVw1jXCimNyXQ.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3679680/67101F50E29111EEBC9A7258775412E6/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:09:16 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 329371
IP: 102.209.144.0/22
IP: 2c0f:ac0::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12346 (0x303a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:09:16 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3679680AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:2f:7b:00:8d:de:40:b7:f9:a6:6c:8f:f8:3e:
84:e4:88:63:10:84:43:57:b7:8d:3f:da:24:33:71:
66:dd:04:1c:84:ac:5a:8c:fa:d0:9f:23:97:7c:0e:
bc:d6:28:c0:1b:5a:e8:64:1c:e4:a1:49:db:bd:63:
2d:2a:ee:88:3a:00:5c:f9:f1:07:77:f1:59:38:7b:
f4:8e:f9:fd:f2:b3:51:b0:70:50:98:05:9e:90:61:
8f:0f:62:74:d8:5f:44:07:55:ee:49:b4:92:02:dc:
9c:b2:9b:27:c5:09:29:3e:17:bb:60:45:df:6f:99:
e1:fd:3c:70:ba:6b:e0:5f:40:ae:6d:fc:b8:52:ca:
85:04:38:06:fa:b2:9d:ec:5f:7c:e5:d6:85:75:69:
94:2b:ec:46:a5:1e:2c:f3:e2:3a:f2:5f:1c:6f:97:
b4:ae:77:4f:fe:c9:86:74:38:8c:e3:02:ce:fa:1d:
7f:66:77:d5:4c:43:a0:7f:52:98:8d:51:a2:17:08:
62:66:45:7b:b4:8c:2c:64:12:07:30:81:35:d9:51:
18:a4:51:37:b4:10:c2:3f:e0:57:58:da:de:fc:e3:
23:f3:7e:31:60:92:44:39:f5:4e:8a:78:4a:4d:09:
9a:29:00:ea:82:d1:58:97:b0:9d:83:73:58:e8:8e:
a3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:2F:FD:5C:E3:7C:01:C6:ED:94:FB:95:C3:58:D7:0A:29:8D:C9:74
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3679680/67101F50E29111EEBC9A7258775412E6/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3679680/67101F50E29111EEBC9A7258775412E6/ui_9XON8AcbtlPuVw1jXCimNyXQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
329371
sbgp-ipAddrBlock: critical
IPv4:
102.209.144.0/22
IPv6:
2c0f:ac0::/32
Signature Algorithm: sha256WithRSAEncryption
aa:5a:85:63:04:32:10:c2:c2:46:41:63:03:7a:12:a0:1c:37:
2d:c7:74:d8:b2:6b:48:b2:f6:d1:8a:2d:f3:d7:a3:60:5f:bb:
b9:6b:46:c6:e3:63:b2:20:da:1a:58:a4:47:1c:0a:39:f2:26:
42:00:08:55:2c:2e:fa:7c:c2:0c:fa:11:31:4f:66:a9:d8:5e:
7e:11:78:7c:58:58:8c:94:77:1f:ef:70:54:50:c8:f9:45:87:
5f:fc:10:17:fb:1e:90:22:ec:2e:f4:34:0f:76:be:fe:ad:68:
0c:1d:02:a1:8f:7e:45:d0:7c:d2:34:18:44:9a:a2:63:fd:20:
1f:7e:6e:6d:89:51:14:34:de:43:94:d5:a9:f3:4b:05:e3:01:
b2:0b:1c:c8:61:7c:3e:b7:1c:de:b5:41:fe:c4:99:31:6e:0d:
40:ba:83:a2:b9:94:2f:6a:08:7d:16:af:86:6b:17:ff:e1:a3:
b6:a5:d9:15:36:28:4e:eb:63:a7:92:1c:49:92:f0:96:15:41:
2f:e1:df:6f:fb:8a:ee:3d:1e:3b:c8:1e:4a:b5:c7:ef:2a:7e:
0c:8a:f7:64:df:4d:20:51:88:28:70:8b:f2:62:aa:50:02:5b:
6f:e0:b9:79:62:cb:f4:63:41:1d:0a:67:06:be:70:bf:cf:9a:
45:be:93:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:38:27 2025 by rpki-client