Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/ripe/lyz9rusSb2_NRpalkPcBiDeqX_I.cer
File: lyz9rusSb2_NRpalkPcBiDeqX_I.cer (raw, json)
Hash identifier: bxdyY+YC5sMpCqFa4CchM4qwJZ4/UDW29OSQHF8vXKg=
Subject key identifier: 97:2C:FD:AE:EB:12:6F:6F:CD:46:96:A5:90:F7:01:88:37:AA:5F:F2
Authority key identifier: 7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
Certificate issuer: /CN=RIPETOAFRINIC/serialNumber=7F7AC180897983E29E937C0A187803C072755545
Certificate serial: 0F2C
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/67F004C6BE1D11EB8576B942F8AEA228/lyz9rusSb2_NRpalkPcBiDeqX_I.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/67F004C6BE1D11EB8576B942F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 00:55:53 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 217.29.128.0/20
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3884 (0xf2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=RIPETOAFRINIC
Validity
Not Before: Jan 1 00:55:53 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36EBDD7RI
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f6:30:6d:26:87:52:81:c2:43:c3:b2:ae:e9:
5d:c3:cc:61:e5:61:a7:28:fa:f4:33:37:58:12:6d:
12:b8:53:59:50:16:bb:0f:08:13:54:c8:d8:b6:05:
93:f1:0b:4e:25:a4:1f:23:07:c2:15:98:c8:35:79:
5b:5d:9a:99:a5:3e:75:e1:3e:c5:5f:ab:eb:7e:74:
5d:92:35:9a:1f:39:00:dd:9f:67:43:da:e0:d7:49:
98:98:ab:77:0e:68:1b:8b:73:98:44:ba:8a:2f:50:
49:35:37:0b:00:35:4d:fa:f8:f9:fd:26:5d:2d:a2:
c6:fc:98:92:80:7e:0b:86:c2:3a:fa:de:cd:aa:fa:
ed:e9:f1:36:f5:f2:e1:32:9f:6c:8e:32:59:f2:91:
e5:36:67:71:77:78:64:99:f3:aa:ce:57:a7:34:a6:
0c:d4:e3:92:aa:5a:89:a9:f6:10:44:5f:6e:bd:0f:
0b:5e:d5:db:f2:27:16:5f:1f:b6:b2:72:b2:56:f2:
5e:31:e0:58:f0:38:c0:09:db:11:86:9c:20:0b:c1:
bd:5a:d0:c9:cc:43:5a:e3:88:cd:29:3c:0f:54:59:
b4:15:a9:98:1a:15:a5:53:6f:78:84:3c:11:61:6e:
a8:10:7b:58:92:f7:cc:90:63:bf:58:2a:a5:59:e9:
8d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:2C:FD:AE:EB:12:6F:6F:CD:46:96:A5:90:F7:01:88:37:AA:5F:F2
X509v3 Authority Key Identifier:
keyid:7F:7A:C1:80:89:79:83:E2:9E:93:7C:0A:18:78:03:C0:72:75:55:45
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/67F004C6BE1D11EB8576B942F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EBDD7/67F004C6BE1D11EB8576B942F8AEA228/lyz9rusSb2_NRpalkPcBiDeqX_I.mft
sbgp-ipAddrBlock: critical
IPv4:
217.29.128.0/20
Signature Algorithm: sha256WithRSAEncryption
12:f2:41:9b:d0:aa:73:54:03:71:1c:6e:83:eb:4b:e1:f7:f8:
dd:55:44:7b:3d:16:cb:9e:3d:c8:04:45:36:29:ea:6b:fe:97:
a7:d4:bd:11:a4:8a:f4:19:43:ad:85:74:42:ae:49:e3:81:0e:
c3:e3:e3:da:ab:46:5a:32:f7:f1:21:4d:64:e9:51:80:b3:5a:
d6:fd:62:c1:06:05:99:6f:f9:c5:f1:18:3b:5c:2f:10:04:5b:
83:b5:3b:15:48:4c:fa:79:65:72:3f:cb:93:67:a9:a3:3d:45:
e3:d4:b8:fc:94:95:15:97:8b:31:6b:1e:b5:c5:e3:ed:0d:de:
ee:dc:65:80:fc:ec:ab:46:48:b3:a2:93:ad:e1:be:d5:cc:8c:
be:31:f1:54:d0:79:b2:43:d4:35:62:61:c4:94:5a:a1:2c:dc:
ad:ba:86:6c:d3:00:b9:bb:b2:24:fc:81:27:63:11:b3:5f:ac:
ed:8a:e3:cc:2a:a8:40:75:b5:97:53:1f:62:a9:ab:c2:6e:01:
1c:4e:e1:28:e5:c8:9a:20:c9:1b:66:c4:53:2e:d6:67:9c:33:
c9:0c:a6:e9:c0:df:8b:09:73:d9:e7:c8:36:36:e2:d3:79:42:
a2:a7:26:ed:0f:e3:e6:49:d4:a1:51:04:81:d1:d1:90:c5:e2:
30:24:96:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:20:01 2025 by rpki-client