Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/yLuITQS6vBYFq333lYeWBZySwmo.cer
File: yLuITQS6vBYFq333lYeWBZySwmo.cer (raw, json)
Hash identifier: I6cKWo2Vct6RBbgKNH6tKjNte7hXG/UHo7VT0oGePtw=
Subject key identifier: C8:BB:88:4D:04:BA:BC:16:05:AB:7D:F7:95:87:96:05:9C:92:C2:6A
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2FF5
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3670369/691565D27E7811ECB77461CB5A40D577/yLuITQS6vBYFq333lYeWBZySwmo.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3670369/691565D27E7811ECB77461CB5A40D577/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:55:04 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328072
IP: 2c0f:ef20::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12277 (0x2ff5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:55:04 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3670369AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3f:12:52:fe:70:dc:87:3f:7d:cc:40:c1:10:
c5:ab:48:2b:19:03:18:17:38:81:f4:20:a4:55:b1:
e2:d0:07:19:67:52:4f:0d:a7:3d:da:be:f3:51:24:
b8:f0:ea:d0:f1:03:fc:69:04:77:e4:d1:fa:c2:ca:
44:44:0e:8a:39:af:f4:5f:7b:d3:13:2d:85:4d:3a:
36:0e:92:57:56:02:da:7e:01:e8:60:f0:6e:59:9d:
96:fb:c3:9c:13:f9:75:ed:5b:08:65:55:87:06:92:
07:95:d7:65:84:e1:b3:a2:3b:80:f6:15:0d:c4:4f:
a5:67:f6:98:33:e0:af:83:da:c4:03:1b:f1:64:9c:
8e:f3:4d:db:eb:0f:ec:ea:59:94:42:96:76:de:92:
4c:00:25:62:ed:18:e9:b6:57:10:24:22:a1:09:3b:
98:ea:b5:cc:a8:25:5a:e4:d5:58:fd:fe:60:48:87:
8a:16:bf:ff:73:7f:81:a4:4b:4b:13:6c:9d:88:9f:
1a:c8:68:82:64:9a:21:24:3a:ab:42:3b:93:ed:f0:
78:55:e2:03:9d:0a:93:95:41:23:51:0c:8e:29:94:
af:c7:e2:32:b7:40:7d:b2:0f:9b:a1:b2:0e:f9:d3:
c5:e4:13:76:2c:20:35:07:ab:94:56:24:8d:7c:c1:
4a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:BB:88:4D:04:BA:BC:16:05:AB:7D:F7:95:87:96:05:9C:92:C2:6A
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3670369/691565D27E7811ECB77461CB5A40D577/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3670369/691565D27E7811ECB77461CB5A40D577/yLuITQS6vBYFq333lYeWBZySwmo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328072
sbgp-ipAddrBlock: critical
IPv6:
2c0f:ef20::/32
Signature Algorithm: sha256WithRSAEncryption
8b:46:df:52:6c:72:6d:a3:52:41:bf:98:26:0a:8c:fe:83:ed:
4e:d3:44:7e:5b:fc:c1:65:c6:6d:3c:29:50:18:e4:c9:80:75:
65:24:47:30:22:7e:84:de:05:9b:12:ca:8a:af:9e:45:1c:ff:
76:30:09:06:1b:58:bb:48:16:64:78:09:1c:73:90:10:ab:27:
27:2c:ae:41:98:98:2a:57:0f:eb:28:ee:08:50:53:0d:be:6e:
d1:21:2d:c3:0a:2d:37:bb:32:a5:8d:f0:4d:d8:e2:6f:8d:ea:
8e:df:8b:49:8e:56:f6:81:41:92:ca:15:de:f5:2f:82:bc:72:
6c:6a:1e:7c:92:64:04:68:42:a9:83:19:d4:2e:a7:7d:dd:8d:
6e:05:99:c7:40:84:63:4b:65:41:00:a9:e1:c6:0b:2b:eb:99:
5f:65:92:bd:9a:eb:b8:84:4e:d3:8b:4b:79:b2:b6:fe:b1:b0:
5b:e4:4c:1c:df:7f:d3:4b:b6:15:bb:db:64:0d:8d:5c:69:4c:
b7:13:c4:a2:64:b5:07:43:44:49:87:b3:26:c3:09:0e:21:44:
a3:f6:ca:84:ea:d8:41:13:3c:d6:72:8d:f9:dc:7f:c2:aa:f0:
2b:7c:6b:f7:3b:68:58:cf:f3:d3:43:9b:81:00:cc:4f:e6:9e:
19:24:29:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:44:56 2025 by rpki-client