Certificate
$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/0/2AA1791D91BFFF6ECDE295F6F522FB764A332153.cer
File: 2AA1791D91BFFF6ECDE295F6F522FB764A332153.cer (raw, json)
Hash identifier: OjbqpwOuwI57CqU1UIukozbt/s31q/maBsa5xpMC46w=
Subject key identifier: 2A:A1:79:1D:91:BF:FF:6E:CD:E2:95:F6:F5:22:FB:76:4A:33:21:53
Authority key identifier: EE:91:7E:BC:7A:15:87:83:B4:4B:C6:ED:82:21:74:34:F2:8A:DE:FB
Certificate issuer: /CN=EE917EBC7A158783B44BC6ED82217434F28ADEFB
Certificate serial: 262F34FFD516069537BCD47463309FE77D0AA004
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd25c9bb7e5cac7419fa9193770f64a6edf20c19.cer
Manifest: rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0/2AA1791D91BFFF6ECDE295F6F522FB764A332153.mft
caRepository: rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0
Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml
Certificate not before: Fri 07 Jul 2023 12:01:54 +0000
Certificate not after: Fri 05 Jul 2024 12:06:54 +0000
Subordinate resources: AS: 262535
IP: 167.249.56.0/22
IP: 177.67.240.0/21
IP: 177.84.208.0/21
IP: 201.159.116.0/22
IP: 2804:5b8::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:2f:34:ff:d5:16:06:95:37:bc:d4:74:63:30:9f:e7:7d:0a:a0:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE917EBC7A158783B44BC6ED82217434F28ADEFB
Validity
Not Before: Jul 7 12:01:54 2023 GMT
Not After : Jul 5 12:06:54 2024 GMT
Subject: CN=2AA1791D91BFFF6ECDE295F6F522FB764A332153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:80:f2:54:d9:ad:a0:b1:75:8d:69:04:0a:e4:
5a:c3:75:5a:51:62:e1:c0:58:52:ea:2d:fc:ee:40:
d1:eb:d4:0a:08:ea:e6:e7:e3:ee:b3:68:fa:3c:76:
16:bc:1c:e8:cb:5f:70:89:d4:cf:21:93:f9:48:dd:
32:35:cf:4d:fd:51:49:b4:49:b1:d2:83:f5:db:a1:
70:ec:68:b1:a5:f0:27:a8:ef:31:34:13:fe:27:de:
27:66:7c:0a:69:f4:8e:82:30:a0:ea:fe:40:4b:30:
fb:51:2e:66:63:6a:30:f0:a5:f9:d1:d6:aa:7f:9c:
18:7d:dd:3b:45:9b:43:29:6e:b0:7a:ee:fc:85:f4:
63:ac:a4:cc:e6:ff:ab:ce:9e:4e:c1:e0:fe:2f:d5:
4b:9c:71:04:fb:fe:63:07:83:db:39:5c:75:29:ff:
60:3b:46:9e:05:06:6e:50:3b:bd:98:94:10:50:3e:
7c:7f:49:c7:77:2b:39:81:a0:8d:d8:c7:c9:54:52:
67:1b:f1:29:48:5e:1d:b5:76:3e:4e:f9:03:a9:e8:
70:51:fb:60:b7:63:a1:33:b3:6a:09:bd:f7:4f:8a:
5c:ea:9f:2d:30:02:92:ec:3b:53:ec:9f:85:c8:8c:
02:b8:aa:2d:e1:ea:27:e3:f1:cb:7d:de:51:fa:0c:
58:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
2A:A1:79:1D:91:BF:FF:6E:CD:E2:95:F6:F5:22:FB:76:4A:33:21:53
X509v3 Authority Key Identifier:
keyid:EE:91:7E:BC:7A:15:87:83:B4:4B:C6:ED:82:21:74:34:F2:8A:DE:FB
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/EE917EBC7A158783B44BC6ED82217434F28ADEFB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd25c9bb7e5cac7419fa9193770f64a6edf20c19.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0
RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0/2AA1791D91BFFF6ECDE295F6F522FB764A332153.mft
RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.249.56.0/22
177.67.240.0/21
177.84.208.0/21
201.159.116.0/22
IPv6:
2804:5b8::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
262535
Signature Algorithm: sha256WithRSAEncryption
2e:62:be:98:67:96:e8:b9:95:c1:e0:44:60:7a:84:43:ce:3b:
64:57:a9:78:fb:b1:67:04:29:cd:31:31:6e:07:61:78:67:3b:
32:2e:50:2d:cc:b3:9a:a1:95:b8:e3:46:24:aa:99:5e:35:46:
f8:78:53:fa:b0:10:5a:90:c3:8d:fd:b0:15:61:0a:be:1d:8e:
af:c8:37:75:7f:79:2a:75:0d:3a:9b:14:ac:09:4c:0b:76:de:
57:81:8b:88:6a:e8:d5:2e:d7:ac:bd:cc:f2:e1:7a:a0:83:78:
4c:57:79:15:f0:84:8c:a9:62:20:9b:37:ac:db:03:13:f5:f2:
00:ab:59:85:2e:63:9c:3d:78:95:63:38:a2:9d:5b:f5:b7:03:
d1:06:8e:3f:ab:7f:4d:27:b5:22:bc:3e:1e:c3:f5:f7:a0:3f:
86:ff:dc:aa:6d:29:f5:db:2b:01:ca:ed:af:b3:17:19:ed:4b:
60:ae:e1:bb:30:2a:5c:ab:e8:1a:7c:47:a5:02:de:b7:80:ff:
4c:cc:ca:6e:be:10:97:61:a2:a6:dd:f0:5d:1a:d5:9b:92:f9:
0e:1e:c9:2c:4b:46:e3:72:2a:ea:49:e2:33:cf:ec:38:77:fa:
33:fa:9d:48:1b:16:8e:e9:b3:bb:1d:19:c4:19:a2:e7:de:a7:
6f:2b:bf:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:44:21 2024 by rpki-client on console-ams.rpki-client.org