Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/zVIytjxqgymQyGcHy3Ob3ATbmlk.cer
File: zVIytjxqgymQyGcHy3Ob3ATbmlk.cer (raw, json)
Hash identifier: joVIxaKoItU5jp5Q0LbgMWOpVa0Jq+5McXv6UKNG/XA=
Subject key identifier: CD:52:32:B6:3C:6A:83:29:90:C8:67:07:CB:73:9B:DC:04:DB:9A:59
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2CC5
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/zVIytjxqgymQyGcHy3Ob3ATbmlk.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:02:33 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 327752
IP: 102.68.128.0/21
IP: 102.214.104.0/22
IP: 154.73.28.0/22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11461 (0x2cc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 00:02:33 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36114AAAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:07:85:a3:7e:a5:6f:93:33:98:d0:96:2d:71:
ae:4b:86:0b:75:34:60:50:fd:60:86:e2:2a:1d:db:
4e:59:0e:05:80:0c:ee:3b:b6:f1:cd:d6:02:9c:68:
02:43:36:2a:ab:9b:d2:b9:d1:21:37:e3:7a:b1:54:
13:e0:a1:9a:82:17:14:61:1c:67:87:19:b7:28:b2:
4d:33:05:c3:3d:32:9a:70:95:7f:cd:27:b8:06:88:
d8:10:82:42:7b:f0:32:48:9d:94:88:49:c2:5f:2a:
10:6a:06:0f:62:09:fa:65:b9:90:2a:69:11:56:f6:
be:4f:8b:56:26:e4:fd:46:41:05:f3:2a:f4:7c:72:
90:4a:6d:9b:a0:69:74:76:7d:81:fd:bb:3f:24:36:
a6:39:b3:df:8f:a1:06:d7:23:cd:e2:b0:0a:59:92:
51:cd:56:1d:e1:75:32:c2:52:f6:ec:4d:2c:1c:01:
5d:2f:64:9b:73:c8:c3:3a:55:54:97:ab:37:5b:f5:
d1:e6:17:ff:66:1d:ab:26:44:8c:f0:09:3b:ce:f7:
36:86:10:ab:4b:00:bb:e0:1e:0e:68:52:6e:e1:67:
44:c0:76:50:8f:57:43:50:cf:0d:98:87:c3:1c:55:
3c:ba:81:3b:1f:14:37:5c:3b:c6:c0:c4:40:42:1d:
a0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:52:32:B6:3C:6A:83:29:90:C8:67:07:CB:73:9B:DC:04:DB:9A:59
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36114AA/86D6E57EBE8F11EE832F4491775412E6/zVIytjxqgymQyGcHy3Ob3ATbmlk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
327752
sbgp-ipAddrBlock: critical
IPv4:
102.68.128.0/21
102.214.104.0/22
154.73.28.0/22
Signature Algorithm: sha256WithRSAEncryption
c3:8a:a4:12:6b:27:d7:ed:8c:84:86:0b:4d:cb:4a:9d:aa:4c:
4e:f7:6d:21:56:7a:79:b8:9e:d1:f2:a4:67:41:8b:cc:9c:1a:
36:81:05:aa:1d:4f:c4:18:94:4c:05:3a:b6:86:ab:e6:ae:49:
6d:df:dc:9f:b5:7c:b1:9e:51:27:03:df:78:b8:45:ad:15:5f:
0a:58:9e:51:34:e9:71:f5:00:e7:e9:72:94:30:44:78:6f:bc:
82:66:80:53:f2:e6:c3:54:56:50:19:fb:86:a2:31:68:2f:8c:
b8:0d:1c:13:e3:f9:e4:00:03:7b:9e:f0:13:74:c7:89:71:3c:
00:48:d8:e8:37:70:88:79:25:97:b4:26:4d:16:62:46:bd:53:
25:09:0b:16:d5:1a:d0:6f:ee:0a:7f:6a:fc:12:d5:53:dc:15:
5b:05:50:4c:9e:d1:05:3e:5d:76:be:d0:26:74:a0:82:bf:72:
a3:0c:3a:85:cb:7a:60:d1:ac:66:5b:34:d1:9f:46:a2:2e:06:
ee:f0:ee:48:01:e2:22:6a:9e:68:c7:52:01:af:cd:e2:2c:c2:
51:25:9c:63:ba:73:be:4e:ec:03:01:82:02:ed:83:97:ae:fb:
27:56:85:c9:be:a6:f1:d5:ad:de:6e:09:b3:e9:72:ab:55:4a:
70:ce:90:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:55:21 2025 by rpki-client