Certificate
$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/0/2AA1791D91BFFF6ECDE295F6F522FB764A332153.cer
File: 2AA1791D91BFFF6ECDE295F6F522FB764A332153.cer (raw, json)
Hash identifier: JdeoZpNPGazE+L5ECc8EnyHaP9gpmJ9hHAlYvk4bWxs=
Subject key identifier: 2A:A1:79:1D:91:BF:FF:6E:CD:E2:95:F6:F5:22:FB:76:4A:33:21:53
Authority key identifier: EE:91:7E:BC:7A:15:87:83:B4:4B:C6:ED:82:21:74:34:F2:8A:DE:FB
Certificate issuer: /CN=EE917EBC7A158783B44BC6ED82217434F28ADEFB
Certificate serial: 65CCD04322C2FA7AC32783F7DE63F9BB5AB7F04A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd25c9bb7e5cac7419fa9193770f64a6edf20c19.cer
Manifest: rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0/2AA1791D91BFFF6ECDE295F6F522FB764A332153.mft
caRepository: rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0
Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml
Certificate not before: Mon 13 Mar 2023 15:08:39 +0000
Certificate not after: Mon 11 Mar 2024 15:13:39 +0000
Subordinate resources: AS: 262535
IP: 167.249.56.0/22
IP: 177.67.240.0/21
IP: 177.84.208.0/21
IP: 201.159.116.0/22
IP: 2804:5b8::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:cc:d0:43:22:c2:fa:7a:c3:27:83:f7:de:63:f9:bb:5a:b7:f0:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE917EBC7A158783B44BC6ED82217434F28ADEFB
Validity
Not Before: Mar 13 15:08:39 2023 GMT
Not After : Mar 11 15:13:39 2024 GMT
Subject: CN=2AA1791D91BFFF6ECDE295F6F522FB764A332153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:80:f2:54:d9:ad:a0:b1:75:8d:69:04:0a:e4:
5a:c3:75:5a:51:62:e1:c0:58:52:ea:2d:fc:ee:40:
d1:eb:d4:0a:08:ea:e6:e7:e3:ee:b3:68:fa:3c:76:
16:bc:1c:e8:cb:5f:70:89:d4:cf:21:93:f9:48:dd:
32:35:cf:4d:fd:51:49:b4:49:b1:d2:83:f5:db:a1:
70:ec:68:b1:a5:f0:27:a8:ef:31:34:13:fe:27:de:
27:66:7c:0a:69:f4:8e:82:30:a0:ea:fe:40:4b:30:
fb:51:2e:66:63:6a:30:f0:a5:f9:d1:d6:aa:7f:9c:
18:7d:dd:3b:45:9b:43:29:6e:b0:7a:ee:fc:85:f4:
63:ac:a4:cc:e6:ff:ab:ce:9e:4e:c1:e0:fe:2f:d5:
4b:9c:71:04:fb:fe:63:07:83:db:39:5c:75:29:ff:
60:3b:46:9e:05:06:6e:50:3b:bd:98:94:10:50:3e:
7c:7f:49:c7:77:2b:39:81:a0:8d:d8:c7:c9:54:52:
67:1b:f1:29:48:5e:1d:b5:76:3e:4e:f9:03:a9:e8:
70:51:fb:60:b7:63:a1:33:b3:6a:09:bd:f7:4f:8a:
5c:ea:9f:2d:30:02:92:ec:3b:53:ec:9f:85:c8:8c:
02:b8:aa:2d:e1:ea:27:e3:f1:cb:7d:de:51:fa:0c:
58:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
2A:A1:79:1D:91:BF:FF:6E:CD:E2:95:F6:F5:22:FB:76:4A:33:21:53
X509v3 Authority Key Identifier:
keyid:EE:91:7E:BC:7A:15:87:83:B4:4B:C6:ED:82:21:74:34:F2:8A:DE:FB
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/EE917EBC7A158783B44BC6ED82217434F28ADEFB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd25c9bb7e5cac7419fa9193770f64a6edf20c19.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0
RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0/2AA1791D91BFFF6ECDE295F6F522FB764A332153.mft
RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.249.56.0/22
177.67.240.0/21
177.84.208.0/21
201.159.116.0/22
IPv6:
2804:5b8::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
262535
Signature Algorithm: sha256WithRSAEncryption
69:5b:68:ba:93:98:bb:10:f5:de:27:ce:b1:73:27:81:d1:9d:
1b:0b:5a:62:81:38:2e:dc:07:15:7b:aa:bb:9a:78:30:b3:d3:
0d:c3:f9:e2:ef:b4:b3:54:45:24:2f:b1:5c:eb:2f:e9:31:ee:
71:81:e5:5b:cb:c7:b0:cb:dd:fe:0e:db:1e:7a:71:64:38:5c:
7c:2c:ed:19:09:13:5d:6d:cc:54:a4:d1:d1:a5:c1:34:87:0b:
74:f7:a7:07:9d:c3:b0:39:cd:cc:41:ca:61:7c:6c:07:a4:e7:
e7:f4:71:41:08:e0:f0:c5:b2:e0:af:5f:b3:16:8e:5a:31:ed:
dc:a1:7e:b1:e7:44:be:80:1d:a3:e8:65:45:77:56:50:ac:1b:
4a:ea:c3:af:74:97:07:18:6e:c5:c6:1e:93:c3:03:66:99:72:
ed:a0:a8:56:32:2c:f6:13:3e:39:a4:af:ff:32:06:d9:1e:16:
c0:62:90:39:f0:87:ef:60:9e:f9:29:1a:53:90:bf:ea:57:15:
63:9e:81:aa:87:61:90:f4:77:01:bd:8c:2a:27:e6:2f:22:e9:
9a:db:09:9c:f7:df:7c:6f:1c:33:0b:e7:30:9f:68:14:01:59:
7f:39:b8:3c:02:5a:cf:1a:34:46:7d:46:6c:aa:ae:83:32:24:
36:4f:d8:32
-----BEGIN CERTIFICATE-----
MIIGIjCCBQqgAwIBAgIUZczQQyLC+nrDJ4P33mP5u1q38EowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUU5MTdFQkM3QTE1ODc4M0I0NEJDNkVEODIyMTc0MzRG
MjhBREVGQjAeFw0yMzAzMTMxNTA4MzlaFw0yNDAzMTExNTEzMzlaMDMxMTAvBgNV
BAMTKDJBQTE3OTFEOTFCRkZGNkVDREUyOTVGNkY1MjJGQjc2NEEzMzIxNTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNgPJU2a2gsXWNaQQK5FrDdVpR
YuHAWFLqLfzuQNHr1AoI6ubn4+6zaPo8dha8HOjLX3CJ1M8hk/lI3TI1z039UUm0
SbHSg/XboXDsaLGl8Ceo7zE0E/4n3idmfApp9I6CMKDq/kBLMPtRLmZjajDwpfnR
1qp/nBh93TtFm0MpbrB67vyF9GOspMzm/6vOnk7B4P4v1UuccQT7/mMHg9s5XHUp
/2A7Rp4FBm5QO72YlBBQPnx/Scd3KzmBoI3Yx8lUUmcb8SlIXh21dj5O+QOp6HBR
+2C3Y6Ezs2oJvfdPilzqny0wApLsO1Psn4XIjAK4qi3h6ifj8ct93lH6DFj/AgMB
AAGjggMsMIIDKDAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBQqoXkdkb//bs3i
lfb1Ivt2SjMhUzAfBgNVHSMEGDAWgBTukX68ehWHg7RLxu2CIXQ08ore+zAOBgNV
HQ8BAf8EBAMCAQYwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtpLXJlcG8u
cmVnaXN0cm8uYnIvcmVwby9uaWNicl9yZXBvLzAvRUU5MTdFQkM3QTE1ODc4M0I0
NEJDNkVEODIyMTc0MzRGMjhBREVGQi5jcmwwgZoGCCsGAQUFBwEBBIGNMIGKMIGH
BggrBgEFBQcwAoZ7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNDhmMDgzYmItZjYwMy00ODkzLTk5OTAtMDI4NGMwNGNlYjg1L2ZkMjVj
OWJiN2U1Y2FjNzQxOWZhOTE5Mzc3MGY2NGE2ZWRmMjBjMTkuY2VyMIIBPwYIKwYB
BQUHAQsEggExMIIBLTBdBggrBgEFBQcwBYZRcnN5bmM6Ly9ycGtpLXJlcG8ucmVn
aXN0cm8uYnIvcmVwby9FcW0yQW80NW05YjdrckNCb3VRa3JZN1JWOVhXNnBXWnVy
cjFFczVHZ3hyaS8wMIGKBggrBgEFBQcwCoZ+cnN5bmM6Ly9ycGtpLXJlcG8ucmVn
aXN0cm8uYnIvcmVwby9FcW0yQW80NW05YjdrckNCb3VRa3JZN1JWOVhXNnBXWnVy
cjFFczVHZ3hyaS8wLzJBQTE3OTFEOTFCRkZGNkVDREUyOTVGNkY1MjJGQjc2NEEz
MzIxNTMubWZ0MD8GCCsGAQUFBzANhjNodHRwczovL3Jwa2ktcmVwby5yZWdpc3Ry
by5ici9ycmRwL25vdGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEF
BQcOAjBABggrBgEFBQcBBwEB/wQxMC8wHgQCAAEwGAMEAqf5OAMEA7FD8AMEA7FU
0AMEAsmfdDANBAIAAjAHAwUAKAQFuDAaBggrBgEFBQcBCAEB/wQLMAmgBzAFAgME
AYcwDQYJKoZIhvcNAQELBQADggEBAGlbaLqTmLsQ9d4nzrFzJ4HRnRsLWmKBOC7c
BxV7qruaeDCz0w3D+eLvtLNURSQvsVzrL+kx7nGB5VvLx7DL3f4O2x56cWQ4XHws
7RkJE11tzFSk0dGlwTSHC3T3pwedw7A5zcxBymF8bAek5+f0cUEI4PDFsuCvX7MW
jlox7dyhfrHnRL6AHaPoZUV3VlCsG0rqw690lwcYbsXGHpPDA2aZcu2gqFYyLPYT
Pjmkr/8yBtkeFsBikDnwh+9gnvkpGlOQv+pXFWOegaqHYZD0dwG9jCon5i8i6Zrb
CZz333xvHDML5zCfaBQBWX85uDwCWs8aNEZ9RmyqroMyJDZP2DI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:17 2024 by rpki-client on console-fra.rpki-client.org