Certificate
$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/0/25D902397F4DA7D7A43A4B70BBEE3891DF3A65CC.cer
File: 25D902397F4DA7D7A43A4B70BBEE3891DF3A65CC.cer (raw, json)
Hash identifier: SrbDPIU3NlzoeDAyIISdMRsu+O98lhIpY76apSXWBP4=
Subject key identifier: 25:D9:02:39:7F:4D:A7:D7:A4:3A:4B:70:BB:EE:38:91:DF:3A:65:CC
Authority key identifier: EE:91:7E:BC:7A:15:87:83:B4:4B:C6:ED:82:21:74:34:F2:8A:DE:FB
Certificate issuer: /CN=EE917EBC7A158783B44BC6ED82217434F28ADEFB
Certificate serial: 06AE131623F28B90A75FE9A15C6E831D253774F6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd25c9bb7e5cac7419fa9193770f64a6edf20c19.cer
Manifest: rsync://rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/2/25D902397F4DA7D7A43A4B70BBEE3891DF3A65CC.mft
caRepository: rsync://rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/2/
Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml
Certificate not before: Wed 13 Mar 2024 18:11:48 +0000
Certificate not after: Wed 12 Mar 2025 18:16:48 +0000
Subordinate resources: AS: 28667
IP: 132.255.64.0/22
IP: 143.202.68.0/22
IP: 168.196.108.0/22
IP: 170.82.56.0/22
IP: 177.8.208.0/21
IP: 177.21.192.0/20
IP: 177.71.0.0/20
IP: 177.107.0.0/20
IP: 177.184.240.0/21
IP: 186.193.192.0/20
IP: 186.236.96.0/19
IP: 186.250.208.0/21
IP: 187.19.80.0/20
IP: 187.110.240.0/20
IP: 187.121.192.0/19
IP: 189.1.176.0/20
IP: 189.76.128.0/20
IP: 191.242.128.0/19
IP: 2804:4::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:ae:13:16:23:f2:8b:90:a7:5f:e9:a1:5c:6e:83:1d:25:37:74:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE917EBC7A158783B44BC6ED82217434F28ADEFB
Validity
Not Before: Mar 13 18:11:48 2024 GMT
Not After : Mar 12 18:16:48 2025 GMT
Subject: CN=25D902397F4DA7D7A43A4B70BBEE3891DF3A65CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5e:a4:43:3e:7a:5e:6d:ee:03:c2:35:78:34:
dd:3a:51:8f:46:dc:bd:ca:bc:24:b1:95:2f:2b:43:
a2:b7:49:a6:62:c9:4a:4a:2f:4c:10:12:cd:78:a1:
cf:6f:01:31:39:d3:8a:a7:a1:9b:fc:df:c5:db:e7:
6b:da:f6:cc:4f:1b:02:44:f4:d7:8e:e1:18:0d:57:
c6:dd:fb:66:0a:6a:8a:04:ab:5d:38:61:60:db:cf:
23:92:e4:7e:d7:da:7c:33:fc:29:2f:b6:54:e0:47:
58:f1:ec:18:fa:58:95:2f:d7:46:25:23:bd:23:aa:
9d:39:5d:69:12:2b:45:e1:24:90:05:82:c2:d8:b5:
b4:f8:3e:18:20:32:63:b7:c0:ad:ba:7f:b4:5b:38:
f5:d9:4b:94:a8:73:df:e7:e4:89:65:e0:4f:a9:31:
d7:7f:0c:94:d8:e4:30:2e:b4:35:ec:b2:91:71:14:
c6:4b:a6:9a:81:21:72:09:b4:b7:cc:89:68:12:73:
cf:56:b0:04:fb:9b:cc:df:5d:bf:63:90:9c:09:cd:
37:a9:ee:64:e0:3b:36:f1:f6:f7:e4:f9:b9:26:2a:
18:a3:e0:c1:c2:04:1d:b0:bf:0e:30:38:26:4b:18:
38:22:24:4f:46:fc:02:af:b0:fe:3f:45:df:5e:29:
2e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
25:D9:02:39:7F:4D:A7:D7:A4:3A:4B:70:BB:EE:38:91:DF:3A:65:CC
X509v3 Authority Key Identifier:
keyid:EE:91:7E:BC:7A:15:87:83:B4:4B:C6:ED:82:21:74:34:F2:8A:DE:FB
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/EE917EBC7A158783B44BC6ED82217434F28ADEFB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd25c9bb7e5cac7419fa9193770f64a6edf20c19.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/2/
RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/2/25D902397F4DA7D7A43A4B70BBEE3891DF3A65CC.mft
RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.255.64.0/22
143.202.68.0/22
168.196.108.0/22
170.82.56.0/22
177.8.208.0/21
177.21.192.0/20
177.71.0.0/20
177.107.0.0/20
177.184.240.0/21
186.193.192.0/20
186.236.96.0/19
186.250.208.0/21
187.19.80.0/20
187.110.240.0/20
187.121.192.0/19
189.1.176.0/20
189.76.128.0/20
191.242.128.0/19
IPv6:
2804:4::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
28667
Signature Algorithm: sha256WithRSAEncryption
01:0f:bc:7e:4a:ae:46:1f:73:7d:2f:6a:e9:48:5a:1d:65:2f:
1b:68:50:5e:1e:02:f8:47:95:e1:31:ed:b8:5b:31:58:c3:aa:
14:00:95:ab:71:c0:b3:90:cb:06:22:29:12:6f:3e:21:89:53:
d9:17:66:6b:56:f1:86:70:a0:a1:06:37:32:93:46:58:73:49:
bc:f5:83:7d:78:20:ef:d4:e6:be:92:74:2b:ba:05:1c:48:bb:
2b:5e:7e:89:e8:15:6a:5a:4e:0c:a7:23:2b:28:ae:47:ac:1d:
35:34:3d:66:cb:4e:57:a2:16:bb:e6:70:55:ae:28:6e:7d:60:
e8:e5:ac:8d:15:1b:a9:92:41:2f:ce:c5:c2:0d:b1:9f:ed:1f:
76:75:a2:99:00:23:ae:73:6a:ac:2f:1b:c5:04:7e:97:af:ba:
05:c9:90:02:6d:fc:e2:6c:a2:eb:fc:71:c1:cb:76:97:78:31:
04:4d:33:0b:fe:9f:eb:e3:88:e1:d8:1f:32:64:32:40:76:cb:
bd:13:c6:e3:1e:76:8a:08:66:1a:b1:9c:1f:80:46:09:0c:9c:
f5:a1:4e:be:7d:27:4b:84:64:50:86:7d:2e:2a:79:6f:bf:0e:
17:bd:34:f2:e8:20:66:10:93:25:4f:79:21:79:83:ee:e5:2d:
ab:74:d5:a2
-----BEGIN CERTIFICATE-----
MIIGeTCCBWGgAwIBAgIUBq4TFiPyi5CnX+mhXG6DHSU3dPYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUU5MTdFQkM3QTE1ODc4M0I0NEJDNkVEODIyMTc0MzRG
MjhBREVGQjAeFw0yNDAzMTMxODExNDhaFw0yNTAzMTIxODE2NDhaMDMxMTAvBgNV
BAMTKDI1RDkwMjM5N0Y0REE3RDdBNDNBNEI3MEJCRUUzODkxREYzQTY1Q0MwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8XqRDPnpebe4DwjV4NN06UY9G
3L3KvCSxlS8rQ6K3SaZiyUpKL0wQEs14oc9vATE504qnoZv838Xb52va9sxPGwJE
9NeO4RgNV8bd+2YKaooEq104YWDbzyOS5H7X2nwz/CkvtlTgR1jx7Bj6WJUv10Yl
I70jqp05XWkSK0XhJJAFgsLYtbT4PhggMmO3wK26f7RbOPXZS5Soc9/n5Ill4E+p
Mdd/DJTY5DAutDXsspFxFMZLppqBIXIJtLfMiWgSc89WsAT7m8zfXb9jkJwJzTep
7mTgOzbx9vfk+bkmKhij4MHCBB2wvw4wOCZLGDgiJE9G/AKvsP4/Rd9eKS5tAgMB
AAGjggODMIIDfzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBQl2QI5f02n16Q6
S3C77jiR3zplzDAfBgNVHSMEGDAWgBTukX68ehWHg7RLxu2CIXQ08ore+zAOBgNV
HQ8BAf8EBAMCAQYwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtpLXJlcG8u
cmVnaXN0cm8uYnIvcmVwby9uaWNicl9yZXBvLzAvRUU5MTdFQkM3QTE1ODc4M0I0
NEJDNkVEODIyMTc0MzRGMjhBREVGQi5jcmwwgZoGCCsGAQUFBwEBBIGNMIGKMIGH
BggrBgEFBQcwAoZ7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNDhmMDgzYmItZjYwMy00ODkzLTk5OTAtMDI4NGMwNGNlYjg1L2ZkMjVj
OWJiN2U1Y2FjNzQxOWZhOTE5Mzc3MGY2NGE2ZWRmMjBjMTkuY2VyMIIBQAYIKwYB
BQUHAQsEggEyMIIBLjBeBggrBgEFBQcwBYZScnN5bmM6Ly9ycGtpLXJlcG8ucmVn
aXN0cm8uYnIvcmVwby9EYUZ5d3FMS3RaZkVZTFU2Zm1TeVFpV2M0U1dqVTRRRTRS
NFNKQmpReE44aC8yLzCBigYIKwYBBQUHMAqGfnJzeW5jOi8vcnBraS1yZXBvLnJl
Z2lzdHJvLmJyL3JlcG8vRGFGeXdxTEt0WmZFWUxVNmZtU3lRaVdjNFNXalU0UUU0
UjRTSkJqUXhOOGgvMi8yNUQ5MDIzOTdGNERBN0Q3QTQzQTRCNzBCQkVFMzg5MURG
M0E2NUNDLm1mdDA/BggrBgEFBQcwDYYzaHR0cHM6Ly9ycGtpLXJlcG8ucmVnaXN0
cm8uYnIvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwgZYGCCsGAQUFBwEHAQH/BIGGMIGDMHIEAgABMGwDBAKE/0ADBAKPykQD
BAKoxGwDBAKqUjgDBAOxCNADBASxFcADBASxRwADBASxawADBAOxuPADBAS6wcAD
BAW67GADBAO6+tADBAS7E1ADBAS7bvADBAW7ecADBAS9AbADBAS9TIADBAW/8oAw
DQQCAAIwBwMFACgEAAQwGQYIKwYBBQUHAQgBAf8ECjAIoAYwBAICb/swDQYJKoZI
hvcNAQELBQADggEBAAEPvH5KrkYfc30vaulIWh1lLxtoUF4eAvhHleEx7bhbMVjD
qhQAlatxwLOQywYiKRJvPiGJU9kXZmtW8YZwoKEGNzKTRlhzSbz1g314IO/U5r6S
dCu6BRxIuytefonoFWpaTgynIysorkesHTU0PWbLTleiFrvmcFWuKG59YOjlrI0V
G6mSQS/OxcINsZ/tH3Z1opkAI65zaqwvG8UEfpevugXJkAJt/OJsouv8ccHLdpd4
MQRNMwv+n+vjiOHYHzJkMkB2y70TxuMedooIZhqxnB+ARgkMnPWhTr59J0uEZFCG
fS4qeW+/Dhe9NPLoIGYQkyVPeSF5g+7lLat01aI=
-----END CERTIFICATE-----
Generated at Sat Apr 19 19:03:30 2025 by rpki-client