Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/zES432VSaGhWOxfptlH5NdVgDNA.cer
File: zES432VSaGhWOxfptlH5NdVgDNA.cer (raw, json)
Hash identifier: pNYUdmU65E6WnkaBa96juU+RTohBjR08KHNZr3KJ5vQ=
Subject key identifier: CC:44:B8:DF:65:52:68:68:56:3B:17:E9:B6:51:F9:35:D5:60:0C:D0
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2E25
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F363FCC8/C2E12A8ACCF211EA8B7C4133F8AEA228/zES432VSaGhWOxfptlH5NdVgDNA.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F363FCC8/C2E12A8ACCF211EA8B7C4133F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:20:59 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 328677
IP: 102.222.188.0/22
IP: 2c0f:5d00::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11813 (0x2e25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 01:20:59 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F363FCC8AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:78:d9:79:05:77:c8:55:99:44:6a:13:59:05:
70:27:35:e4:00:40:b8:f1:f9:4d:2c:89:88:45:b7:
44:c9:dd:33:de:5a:a1:67:f3:98:39:e4:9e:5f:0e:
5a:8a:a5:3a:5d:c3:da:d9:fc:16:6d:96:03:8b:00:
0e:a8:79:5d:2b:2e:07:d9:6f:ed:28:5d:f4:b5:ad:
8e:1a:fa:bf:9f:8c:47:db:a9:8a:63:04:db:9a:bf:
d6:69:e0:2c:c2:b3:d8:dd:59:2c:c8:c9:93:89:2f:
1d:29:e8:c5:f1:11:08:a4:38:7f:18:17:df:0b:70:
2e:d4:c6:83:f7:ad:e1:d8:ce:a4:aa:0b:76:b4:e5:
1a:61:ce:c1:2c:c9:70:3a:0c:63:01:7e:d4:32:b9:
14:41:7a:c2:b5:97:ac:a6:a9:22:19:db:31:99:0a:
37:34:da:86:c9:11:c8:dc:53:50:5c:a6:55:3c:2e:
ed:ec:e5:bc:97:c8:d8:97:9d:0b:a4:f8:15:c6:5c:
3d:c1:d3:86:f9:67:03:ba:2d:06:7e:fd:b2:c9:d4:
53:67:77:5b:ca:dc:ea:ae:12:b1:09:c2:47:ec:ff:
3c:88:a7:45:68:ef:89:a1:11:83:10:0c:b8:71:2a:
18:0e:d3:58:1f:7c:15:8a:bb:af:e6:6f:ae:e8:c5:
61:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:44:B8:DF:65:52:68:68:56:3B:17:E9:B6:51:F9:35:D5:60:0C:D0
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F363FCC8/C2E12A8ACCF211EA8B7C4133F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F363FCC8/C2E12A8ACCF211EA8B7C4133F8AEA228/zES432VSaGhWOxfptlH5NdVgDNA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
328677
sbgp-ipAddrBlock: critical
IPv4:
102.222.188.0/22
IPv6:
2c0f:5d00::/32
Signature Algorithm: sha256WithRSAEncryption
a9:f1:51:f0:f4:ee:fd:4f:b5:5c:26:5b:b7:f3:58:65:c8:93:
b5:8a:a7:ec:b9:7f:d9:1e:88:3a:62:e4:23:f8:42:85:f2:2f:
dd:2a:51:a8:97:3e:63:c7:6c:7a:79:5b:6c:07:b5:36:46:4f:
4d:1c:46:73:a4:04:22:8a:90:e7:78:10:71:33:06:32:79:46:
ac:8a:c3:a6:22:77:99:22:bd:eb:45:ac:5d:bd:5e:ee:bf:b2:
f3:a3:e1:40:8f:4d:f9:a7:b9:a1:e3:d3:e4:64:3a:1a:3b:2d:
71:f1:af:de:0b:a5:8f:71:c5:04:46:b3:59:26:95:e9:7f:ee:
24:65:55:f9:24:aa:87:c4:e1:71:cf:36:84:7d:c0:40:f9:15:
f7:71:9b:35:96:16:13:f6:10:2c:dc:52:30:11:12:0f:38:01:
4b:03:5e:5a:4f:3f:92:70:00:bb:88:e7:56:d1:a3:3a:87:30:
35:35:ea:c5:b8:cd:d0:86:cd:da:38:b1:d2:90:48:75:9d:3b:
db:8d:0b:0e:d7:96:44:1f:25:52:a5:ef:95:5b:12:0f:ac:88:
39:d4:ef:d9:b8:b6:d8:bb:ad:aa:aa:45:68:fb:a7:b5:98:5a:
a8:f0:62:2c:bf:88:3c:3c:92:00:93:a7:7e:63:2d:a5:b0:2f:
41:e5:d2:fa
-----BEGIN CERTIFICATE-----
MIIGJTCCBQ2gAwIBAgICLiUwDQYJKoZIhvcNAQELBQAwRTEQMA4GA1UEAxMHQUZS
SU5JQzExMC8GA1UEBRMoMkI1Nzg5N0E3Q0E5NjRDM0M4QjdGN0JEREFBN0E0REEz
NEE5OEY4MDAeFw0yNTAxMDEwMTIwNTlaFw0yNjAzMzEwMDAwMDBaMEgxEzARBgNV
BAMTCkYzNjNGQ0M4QUYxMTAvBgNVBAUTKENDNDRCOERGNjU1MjY4Njg1NjNCMTdF
OUI2NTFGOTM1RDU2MDBDRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDbeNl5BXfIVZlEahNZBXAnNeQAQLjx+U0siYhFt0TJ3TPeWqFn85g55J5fDlqK
pTpdw9rZ/BZtlgOLAA6oeV0rLgfZb+0oXfS1rY4a+r+fjEfbqYpjBNuav9Zp4CzC
s9jdWSzIyZOJLx0p6MXxEQikOH8YF98LcC7UxoP3reHYzqSqC3a05RphzsEsyXA6
DGMBftQyuRRBesK1l6ymqSIZ2zGZCjc02obJEcjcU1BcplU8Lu3s5byXyNiXnQuk
+BXGXD3B04b5ZwO6LQZ+/bLJ1FNnd1vK3OquErEJwkfs/zyIp0Vo74mhEYMQDLhx
KhgO01gffBWKu6/mb67oxWE3AgMBAAGjggMaMIIDFjAdBgNVHQ4EFgQUzES432VS
aGhWOxfptlH5NdVgDNAwHwYDVR0jBBgwFoAUK1eJenypZMPIt/e92qek2jSpj4Aw
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wXAYDVR0fBFUwUzBRoE+g
TYZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZyaW5pYy9L
MWVKZW55cFpNUEl0X2U5MnFlazJqU3BqNEEuY3JsMG8GCCsGAQUFBwEBBGMwYTBf
BggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkv
MDRFOEIwRDgwRjREMTFFMEI2NTdEODkzMTM2N0FFN0QvYWZyaW5pYy1jYS5jZXIw
TwYDVR0gAQH/BEUwQzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczov
L3Jwa2kuYWZyaW5pYy5uZXQvcG9saWN5L0NQUy5wZGYwggFFBggrBgEFBQcBCwSC
ATcwggEzMGwGCCsGAQUFBzAFhmByc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVw
b3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9yeS9GMzYzRkNDOC9DMkUxMkE4QUNDRjIx
MUVBOEI3QzQxMzNGOEFFQTIyOC8wNQYIKwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5h
ZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMIGLBggrBgEFBQcwCoZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2M0ZDQzgvQzJFMTJBOEFDQ0YyMTFFQThCN0M0MTMzRjhBRUEyMjgvekVTNDMy
VlNhR2hXT3hmcHRsSDVOZFZnRE5BLm1mdDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF
AgMFA+UwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJm3rwwDQQCAAIwBwMF
ACwPXQAwDQYJKoZIhvcNAQELBQADggEBAKnxUfD07v1PtVwmW7fzWGXIk7WKp+y5
f9keiDpi5CP4QoXyL90qUaiXPmPHbHp5W2wHtTZGT00cRnOkBCKKkOd4EHEzBjJ5
RqyKw6Yid5kivetFrF29Xu6/svOj4UCPTfmnuaHj0+RkOho7LXHxr94LpY9xxQRG
s1kmlel/7iRlVfkkqofE4XHPNoR9wED5FfdxmzWWFhP2ECzcUjAREg84AUsDXlpP
P5JwALuI51bRozqHMDU16sW4zdCGzdo4sdKQSHWdO9uNCw7XlkQfJVKl75VbEg+s
iDnU79m4tti7raqqRWj7p7WYWqjwYiy/iDw8kgCTp35jLaWwL0Hl0vo=
-----END CERTIFICATE-----
Generated at Wed Apr 2 08:41:42 2025 by rpki-client