Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/xfjkPM0fcvciuyN0u3q9C4iwVz8.cer
File: xfjkPM0fcvciuyN0u3q9C4iwVz8.cer (raw, json)
Hash identifier: peRcsH00zttxEfFZA4de/EJw+LFhFj8ADZjJ18+2RMc=
Subject key identifier: C5:F8:E4:3C:CD:1F:72:F7:22:BB:23:74:BB:7A:BD:0B:88:B0:57:3F
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 33B4
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36FB1A3/3C789C6ED12611ECB70663DDF1222468/xfjkPM0fcvciuyN0u3q9C4iwVz8.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36FB1A3/3C789C6ED12611ECB70663DDF1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 06:22:47 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328736
IP: 102.36.192.0/24
IP: 2001:43f8:1450::/48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13236 (0x33b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 06:22:47 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36FB1A3AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:17:a0:fa:86:e2:99:15:49:25:5d:62:ee:da:
ea:9a:bb:55:11:9e:2f:e2:08:91:7c:a0:cc:f5:24:
b5:af:36:31:d9:a5:fd:01:cf:e9:32:9f:3f:73:f8:
d0:d8:0e:6c:38:1a:97:ab:b9:e3:8b:8c:ec:64:14:
f9:88:42:83:e2:d0:ed:69:13:b9:ff:cc:a3:13:fc:
51:b3:0a:b0:a4:24:85:23:82:35:5f:02:e5:dc:ae:
38:de:1c:b8:5c:3a:d1:14:90:da:3b:f1:e2:84:f3:
c4:28:ee:3c:ed:a1:17:54:df:58:33:40:d3:c6:ed:
ed:95:c8:13:73:82:97:94:06:00:22:89:48:40:66:
fa:b0:4c:68:ce:1b:35:ca:02:56:5f:bd:dd:db:51:
46:8c:97:f8:a8:03:05:ee:5c:4f:b4:1b:11:78:73:
43:26:2a:4e:fc:c5:31:0f:35:04:7b:e6:cc:53:1a:
7b:9d:30:a4:6f:ea:6e:4b:d9:2c:aa:05:f2:a4:71:
65:dd:cc:00:96:88:5b:87:e2:b0:fa:79:23:e6:b0:
1b:7e:c0:13:5e:68:fd:a2:61:30:c4:90:57:26:62:
8a:cc:d6:51:cf:72:6a:0d:77:40:de:25:1b:a8:e6:
d0:b9:c7:75:63:20:aa:05:49:9b:c6:b0:5b:ee:5f:
69:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F8:E4:3C:CD:1F:72:F7:22:BB:23:74:BB:7A:BD:0B:88:B0:57:3F
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FB1A3/3C789C6ED12611ECB70663DDF1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FB1A3/3C789C6ED12611ECB70663DDF1222468/xfjkPM0fcvciuyN0u3q9C4iwVz8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328736
sbgp-ipAddrBlock: critical
IPv4:
102.36.192.0/24
IPv6:
2001:43f8:1450::/48
Signature Algorithm: sha256WithRSAEncryption
68:a1:a6:31:df:0f:ab:b2:5b:c1:a0:e5:8b:01:bf:c4:ee:bd:
f3:96:07:69:58:a9:15:9b:ca:7a:e4:21:b0:64:fe:11:b5:58:
c6:32:71:df:80:2e:17:12:0f:43:7d:a3:b4:88:af:4b:17:34:
fd:9a:5c:60:06:7c:56:5b:5a:43:ae:5c:51:86:23:19:82:4a:
3b:9a:61:93:a7:0f:50:a0:3f:32:f9:4b:72:10:fc:08:44:f4:
4c:06:db:46:40:3f:12:d3:70:01:f7:18:c5:e6:e1:5d:8c:8a:
6a:a7:66:60:3b:6b:7b:5b:ef:4e:f4:6d:fd:1b:16:c8:16:79:
c7:2b:58:90:1a:e0:a8:10:9a:43:c0:8b:b5:99:bb:42:52:24:
0a:38:07:81:29:9e:f5:e0:ae:64:83:e8:c1:b2:f4:85:24:d5:
10:b0:e9:ae:c2:b4:e4:55:b8:19:25:f3:f1:b5:a5:43:1c:a2:
a2:c3:ef:b9:0f:41:48:bd:a0:1c:3b:e4:24:39:da:a1:e4:1b:
82:17:e4:7f:0d:f4:d0:22:41:d0:06:4e:48:8b:c3:3d:d9:83:
39:8f:ab:0b:9b:1f:02:c0:f8:6a:c3:c2:8c:b0:1e:fb:30:5c:
2f:cc:18:1f:34:47:4f:7a:13:c0:b5:a1:10:c0:6a:28:5c:52:
67:47:3d:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:41:45 2025 by rpki-client