Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/ripe/YiXGU2dIRI8cYBvpr6uCfJptjJg.cer
File: YiXGU2dIRI8cYBvpr6uCfJptjJg.cer (raw, json)
Hash identifier: x30oGqbSvDOgtg8EVHsWv0U6J+s6R5CmW9IqDdDHFik=
Subject key identifier: 62:25:C6:53:67:48:44:8F:1C:60:1B:E9:AF:AB:82:7C:9A:6D:8C:98
Authority key identifier: 7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
Certificate issuer: /CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Certificate serial: 0F28
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/YiXGU2dIRI8cYBvpr6uCfJptjJg.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:55:08 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 80.250.32.0/20
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3880 (0xf28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=RIPETOAFRINIC
Validity
Not Before: Jan 1 00:55:08 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36E1028RI
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9b:c4:25:c0:5f:b9:97:54:2c:44:9a:5c:a2:
62:63:02:90:c3:ca:a8:86:b9:31:13:d5:d0:af:5c:
b6:78:76:d0:56:30:00:c6:d9:ce:c1:2c:e0:58:04:
8b:c3:14:5d:d3:e1:ed:bd:64:e8:7f:7f:33:cb:3a:
12:b6:fa:6c:fe:21:65:41:1e:ed:7f:c0:e0:28:ab:
0f:63:d3:9c:97:4c:45:11:05:53:93:15:94:97:81:
39:55:fc:7c:92:1b:d0:89:8f:6a:0b:a0:84:a9:76:
54:af:81:92:3c:91:ae:a4:8f:ca:3d:dc:5d:07:b2:
82:ec:36:c2:26:40:e5:78:81:25:0f:87:a9:f2:24:
3c:8d:1e:ba:4e:d2:db:b7:b8:64:b5:b1:c8:eb:6d:
0d:ba:b7:3a:12:93:eb:81:b5:3f:62:92:cd:9b:e6:
93:51:ff:0f:af:59:46:f2:6b:52:b9:65:c6:13:1c:
9a:6d:00:10:01:fe:42:00:bb:38:b1:44:fe:9d:36:
8a:77:9b:bf:41:88:e7:33:ac:0d:72:0b:8d:14:8d:
b5:11:39:75:9e:7a:97:af:f0:4f:01:23:7e:dd:be:
18:42:cf:49:ec:8d:d0:df:73:83:b8:17:39:49:7c:
a9:46:70:58:e1:1d:0b:0e:52:62:eb:56:c8:be:8d:
68:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:25:C6:53:67:48:44:8F:1C:60:1B:E9:AF:AB:82:7C:9A:6D:8C:98
X509v3 Authority Key Identifier:
keyid:7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E1028/2526B4EAC8A411EC887B5F99F1222468/YiXGU2dIRI8cYBvpr6uCfJptjJg.mft
sbgp-ipAddrBlock: critical
IPv4:
80.250.32.0/20
Signature Algorithm: sha256WithRSAEncryption
7a:a7:9a:6e:d9:c4:0d:66:fc:3a:90:37:96:26:4d:c3:a1:9b:
e8:f5:f1:34:eb:b5:0d:46:be:5a:ec:4b:8c:06:a8:aa:9c:df:
cf:22:ce:9c:d3:75:b4:8b:80:5c:63:a1:87:dc:9b:83:ff:32:
15:0f:3f:bb:fb:50:79:d8:88:9b:c2:62:8b:7d:bf:e0:87:18:
90:14:c9:8b:46:19:b5:4c:35:6b:01:c2:df:fe:1a:72:2b:f2:
c7:43:fe:69:4a:4b:a9:9e:1e:13:73:fc:57:6a:bf:47:7d:10:
6d:3b:04:82:bf:6d:7e:0f:8a:ee:b1:66:47:4e:9c:47:1b:d5:
e0:42:b1:12:c5:20:a0:1a:4b:ee:f4:53:12:7e:d5:00:76:19:
45:e1:61:3f:fc:09:ea:a9:7e:13:92:4c:60:d5:d5:da:ab:3f:
56:f5:fc:a0:af:51:31:5e:95:f7:43:41:4c:d6:f5:d8:8b:5f:
86:48:75:c3:b9:15:e0:91:d5:60:36:de:f3:08:be:ee:f4:3d:
aa:87:8e:f8:ca:9c:00:bd:db:ce:60:37:8f:b4:20:c1:ec:c8:
73:e2:02:6d:f3:0c:62:a0:ff:a9:09:d3:e7:09:95:74:b6:02:
57:92:f4:99:9f:ac:92:a3:a3:11:30:fc:33:01:ce:4d:56:33:
95:6c:4a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 01:25:54 2025 by rpki-client