Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/arin/tIDko6bVxyRdD2BorIVLj3CuxU0.cer
File: tIDko6bVxyRdD2BorIVLj3CuxU0.cer (raw, json)
Hash identifier: lJ4rVuIuN3QHB1+OhiB2G6q57ghgriQs1BoLTpjOkMY=
Subject key identifier: B4:80:E4:A3:A6:D5:C7:24:5D:0F:60:68:AC:85:4B:8F:70:AE:C5:4D
Authority key identifier: B8:7C:5A:75:F3:D9:57:41:3A:B9:98:64:69:46:D4:54:1D:51:14:55
Certificate issuer: /CN=ARINTOAFRINIC/serialNumber=B87C5A75F3D957413AB998646946D4541D511455
Certificate serial: 1620
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F3619C8C/F5B78D8A5FDA11EFBF5D85AB762E951A/tIDko6bVxyRdD2BorIVLj3CuxU0.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F3619C8C/F5B78D8A5FDA11EFBF5D85AB762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:27:08 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 45.221.27.0/24
IP: 156.0.204.0/22
IP: 160.20.213.0/24
IP: 160.20.217.0/24
IP: 160.20.221.0/24
IP: 160.20.226.0/23
IP: 160.226.178.0/24
IP: 160.238.11.0/24
IP: 160.238.50.0/24
IP: 160.238.57.0/24
IP: 160.238.101.0/24
IP: 164.160.100.0/22
IP: 169.255.16.0/22
IP: 169.255.84.0/22
IP: 169.255.156.0/22
IP: 192.12.110.0/24
IP: 192.47.36.0/24
IP: 192.51.240.0/24
IP: 192.70.201.0/24
IP: 192.75.236.0/24
IP: 192.91.200.0/24
IP: 192.145.176.0/22
IP: 192.145.230.0/24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5664 (0x1620)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ARINTOAFRINIC
Validity
Not Before: Jan 1 00:27:08 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F3619C8CAR
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4d:17:63:d5:cd:77:0d:78:81:28:ed:70:53:
d2:af:89:be:9c:c7:76:8d:c0:b3:cc:f7:bb:58:7a:
e9:c4:8f:0d:2b:72:d2:f8:6a:6f:40:c3:d2:84:0a:
de:9c:8e:08:fa:75:3d:8a:71:f4:80:ed:a1:4d:41:
8c:eb:c5:17:57:86:f8:29:d9:39:d4:73:09:4d:08:
6c:e5:cb:b0:4b:19:05:e5:e8:00:4c:76:ae:b0:c3:
4e:73:d1:e5:20:cb:3c:74:7f:42:62:74:7c:1c:c1:
1f:e8:c1:38:6a:7f:6f:f6:c9:8d:de:b6:fc:48:05:
bc:42:cd:92:20:0c:a7:92:34:14:8c:19:73:6d:de:
84:b5:60:83:5f:1b:71:c6:cc:b2:bd:41:91:e7:64:
c0:1c:d2:eb:1e:cc:b5:97:ad:92:83:a0:86:98:36:
33:d2:0a:36:da:c5:fa:76:a4:fd:ed:c4:a6:fd:8b:
68:22:b2:45:61:f8:88:bb:53:3e:fe:6f:4a:69:71:
0a:03:98:56:84:6f:11:2b:0b:82:67:00:5d:a4:9f:
02:d2:d3:d8:28:29:15:03:9e:d6:c3:e1:a5:af:91:
3d:14:8e:71:0f:d8:be:1c:4e:86:4b:7d:81:cd:f2:
d3:eb:5b:4a:d7:70:94:f6:78:72:91:9f:ca:9f:4b:
c0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:80:E4:A3:A6:D5:C7:24:5D:0F:60:68:AC:85:4B:8F:70:AE:C5:4D
X509v3 Authority Key Identifier:
keyid:B8:7C:5A:75:F3:D9:57:41:3A:B9:98:64:69:46:D4:54:1D:51:14:55
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F3619C8C/F5B78D8A5FDA11EFBF5D85AB762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F3619C8C/F5B78D8A5FDA11EFBF5D85AB762E951A/tIDko6bVxyRdD2BorIVLj3CuxU0.mft
sbgp-ipAddrBlock: critical
IPv4:
45.221.27.0/24
156.0.204.0/22
160.20.213.0/24
160.20.217.0/24
160.20.221.0/24
160.20.226.0/23
160.226.178.0/24
160.238.11.0/24
160.238.50.0/24
160.238.57.0/24
160.238.101.0/24
164.160.100.0/22
169.255.16.0/22
169.255.84.0/22
169.255.156.0/22
192.12.110.0/24
192.47.36.0/24
192.51.240.0/24
192.70.201.0/24
192.75.236.0/24
192.91.200.0/24
192.145.176.0/22
192.145.230.0/24
Signature Algorithm: sha256WithRSAEncryption
42:5c:64:41:25:aa:0a:23:9a:aa:f9:21:65:09:40:d5:a3:90:
4b:c7:95:4c:ca:e0:06:5b:71:d0:db:d6:8f:b6:ed:8c:ab:96:
ac:b5:5e:65:b5:51:af:c1:92:de:c0:da:14:63:2b:05:73:dc:
ed:fe:74:d3:3a:c8:7a:9c:e4:e3:c0:3d:a5:8e:7f:c2:8a:d9:
92:6a:f2:05:85:8f:92:a6:66:45:54:2a:d9:17:6e:67:23:9b:
f4:5a:61:ff:73:c2:69:d5:d0:2c:d6:75:e4:c2:1c:3b:c7:82:
ff:27:00:f5:64:19:a0:31:db:f2:10:6c:0d:78:a2:d9:5f:a6:
2b:0b:e4:25:84:aa:0a:aa:51:c0:f9:8d:69:cd:c7:d6:99:64:
df:bb:68:95:71:87:94:1d:c8:c4:bf:ab:53:4d:59:03:73:d0:
17:07:0e:af:f5:e8:c6:75:41:e7:82:98:7e:29:40:64:ea:1d:
b0:a1:36:6d:43:c7:30:b1:1e:8e:85:f5:cf:9d:72:79:0a:9f:
5f:62:11:ce:1e:21:42:7f:ab:a9:0e:0b:3d:48:b4:fb:d9:16:
51:ff:6f:52:44:59:32:84:c7:50:28:d1:ef:ac:82:02:d1:b8:
3c:55:f5:1e:97:c1:fd:b7:12:8f:80:ba:3d:1e:f6:9e:41:a5:
eb:ea:84:6b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 12 07:59:36 2025 by rpki-client