Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/x4zcO11LE2dctIrTtjvgHsWoB_g.cer
File: x4zcO11LE2dctIrTtjvgHsWoB_g.cer (raw, json)
Hash identifier: qmVsZ8PJxBQFHnE3N2JKqVBNwWCG/xrQKGnhlYBbvuk=
Subject key identifier: C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 33CE
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 06:28:47 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328977
IP: 102.207.160.0/20
IP: 102.208.0.0/22
IP: 102.208.60.0/22
IP: 102.208.168.0/22
IP: 102.210.12.0/22
IP: 102.217.156.0/22
IP: 2c0f:6300::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13262 (0x33ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 06:28:47 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36FE19EAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:38:66:47:1b:f2:0a:a8:1d:0c:9a:96:d6:37:
3f:91:ac:69:a3:5e:d5:56:c2:b1:cf:98:72:49:58:
80:bf:79:50:da:07:48:1d:38:9e:f3:01:69:25:c3:
e5:3e:65:eb:7b:d0:8b:3d:73:0f:3c:b1:eb:16:f9:
eb:c0:c0:2a:23:3b:35:0e:7c:97:d5:78:87:35:fe:
cf:ed:9a:b7:4d:82:de:39:d3:20:90:36:e2:f9:30:
49:a3:de:fe:eb:30:94:8b:aa:05:82:fc:13:0c:25:
9c:52:a9:3a:c3:ba:f5:91:f9:05:07:0b:56:df:1b:
b3:ba:1c:5e:0d:35:a5:f2:6b:ae:35:c2:ad:8c:35:
06:98:e6:66:11:54:8e:da:bd:85:b6:bd:a3:5a:18:
77:f2:34:b2:8e:ee:45:b6:aa:e2:59:47:6c:18:be:
4c:82:d8:61:a9:a6:68:cb:d0:51:d5:0c:2d:47:fb:
7e:36:16:29:a8:d1:14:7b:8f:17:e9:96:b1:05:d2:
fa:31:9c:0b:7a:e5:f4:1b:fb:4b:a5:35:8a:0c:82:
c8:8e:84:f6:b3:64:ab:f1:fb:87:bd:97:b9:af:1a:
b8:e3:39:26:ec:c4:e4:88:fd:e6:ae:0f:90:05:cd:
86:3f:77:63:78:2f:74:00:03:1a:a2:c7:28:70:ff:
40:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:8C:DC:3B:5D:4B:13:67:5C:B4:8A:D3:B6:3B:E0:1E:C5:A8:07:F8
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FE19E/AB7E78BE48DF11EDA761B29CF1222468/x4zcO11LE2dctIrTtjvgHsWoB_g.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328977
sbgp-ipAddrBlock: critical
IPv4:
102.207.160.0/20
102.208.0.0/22
102.208.60.0/22
102.208.168.0/22
102.210.12.0/22
102.217.156.0/22
IPv6:
2c0f:6300::/32
Signature Algorithm: sha256WithRSAEncryption
6d:ad:e4:4b:6d:6b:b8:62:0f:73:25:30:12:e4:3e:2e:4f:dd:
22:ee:6a:a6:c8:4a:32:ed:56:bc:49:59:92:e0:6f:a2:b4:68:
8c:24:fe:90:ed:96:75:d0:94:14:f4:6f:05:fc:16:01:39:50:
86:27:53:69:09:53:58:62:14:c5:36:b3:8a:d9:cd:ff:fc:07:
27:22:f9:d9:9c:0f:1c:bc:e6:c6:73:5b:d3:ad:8d:98:be:53:
b8:8b:08:c7:f4:61:9c:b8:a1:5c:2b:aa:20:d3:75:70:df:92:
ee:3b:da:d7:b7:93:38:67:8c:56:8b:bf:03:d7:7d:32:13:e9:
9c:c7:46:1c:8a:d4:06:1e:b2:ae:0a:0c:27:83:97:78:2f:a3:
23:89:dd:df:06:e6:bb:d7:70:90:e2:f9:80:10:11:7d:dc:b9:
b7:9a:32:66:cd:29:c8:8c:6d:77:e0:b8:60:0a:84:ad:b4:05:
11:d2:6d:52:f6:e3:e2:bd:3e:7c:cf:57:65:71:fc:32:8b:11:
9f:57:ef:3f:0f:7d:72:87:be:12:65:7d:2e:4f:6a:67:2c:af:
09:90:99:56:4b:5a:91:6e:57:27:a9:63:f7:3b:ec:f5:a7:01:
73:0f:39:58:60:63:42:08:90:a5:f5:6b:a4:ae:83:8e:05:96:
3e:f6:8a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:31:52 2025 by rpki-client