Certificate
$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/1/324A8DC3B78A5D181C0DAC3FC7D5A5F148E0235E.cer
File: 324A8DC3B78A5D181C0DAC3FC7D5A5F148E0235E.cer (raw, json)
Hash identifier: UBqmfZrgVM6cnrE6nvHVTMcMfxRTPyhY0BM5ZZtagpA=
Subject key identifier: 32:4A:8D:C3:B7:8A:5D:18:1C:0D:AC:3F:C7:D5:A5:F1:48:E0:23:5E
Authority key identifier: 60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B
Certificate issuer: /CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B
Certificate serial: 737015802715CDECE499AF9D4269EB8A3BD0DFFE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
Manifest: rsync://rpki-repo.registro.br/repo/GctGUw1naZxQ9w8DDUqYPehBYFi2wHt9jLbtGKFi4TZN/0/324A8DC3B78A5D181C0DAC3FC7D5A5F148E0235E.mft
caRepository: rsync://rpki-repo.registro.br/repo/GctGUw1naZxQ9w8DDUqYPehBYFi2wHt9jLbtGKFi4TZN/0/
Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml
Certificate not before: Tue 07 Jan 2025 19:13:38 +0000
Certificate not after: Tue 06 Jan 2026 19:18:38 +0000
Subordinate resources: AS: 262460
IP: 143.255.72.0/22
IP: 177.53.72.0/21
IP: 2804:4b4::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:70:15:80:27:15:cd:ec:e4:99:af:9d:42:69:eb:8a:3b:d0:df:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B
Validity
Not Before: Jan 7 19:13:38 2025 GMT
Not After : Jan 6 19:18:38 2026 GMT
Subject: CN=324A8DC3B78A5D181C0DAC3FC7D5A5F148E0235E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c1:75:5c:6b:85:e3:85:4d:1d:18:4e:fd:31:
cf:9a:7f:d0:9d:22:1a:47:b8:89:25:95:46:f0:62:
d9:5e:c0:ec:78:7a:e2:41:96:08:2e:aa:4b:7f:90:
46:6e:ca:59:b5:d2:bd:e9:89:14:2f:55:36:f1:a5:
59:7e:c8:34:37:b6:6f:7b:5b:b3:ea:a5:dd:db:b7:
ad:4f:ff:6d:91:51:52:d4:6c:a8:da:ed:d7:e8:c8:
cd:50:f6:85:65:a0:8f:4c:75:df:5d:ce:77:df:4e:
e0:3a:29:85:06:67:97:2c:1c:40:b4:53:4a:59:31:
94:41:de:3c:b1:36:b7:84:86:62:84:bb:0b:e7:3c:
fd:ad:42:63:78:7d:04:33:f2:9c:bc:86:c2:9b:86:
11:81:35:cd:94:bd:cd:57:e1:bc:4f:09:89:25:d0:
44:1b:85:1b:16:ad:da:f9:b0:46:ae:9f:a4:1d:42:
0f:de:08:66:ee:49:e7:da:44:f5:a9:0b:ff:86:bb:
d0:a2:ed:c3:ea:25:35:d2:1a:40:de:3a:26:11:ee:
39:ca:06:03:52:66:ae:a2:88:de:31:b3:12:8d:76:
ca:65:7a:b1:db:06:db:e0:ef:a4:4b:a7:0e:c7:05:
1a:fa:46:d4:f3:ff:84:ee:e5:2e:ab:29:c2:0e:b4:
9d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
32:4A:8D:C3:B7:8A:5D:18:1C:0D:AC:3F:C7:D5:A5:F1:48:E0:23:5E
X509v3 Authority Key Identifier:
keyid:60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.registro.br/repo/GctGUw1naZxQ9w8DDUqYPehBYFi2wHt9jLbtGKFi4TZN/0/
RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/GctGUw1naZxQ9w8DDUqYPehBYFi2wHt9jLbtGKFi4TZN/0/324A8DC3B78A5D181C0DAC3FC7D5A5F148E0235E.mft
RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.255.72.0/22
177.53.72.0/21
IPv6:
2804:4b4::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
262460
Signature Algorithm: sha256WithRSAEncryption
cd:1c:1b:5f:f8:33:c4:91:4b:2c:e0:6e:f9:17:2f:9c:88:ac:
e6:28:b0:66:73:ff:ad:70:80:72:1f:05:92:c3:50:4c:67:0e:
0e:5d:73:56:63:3f:e4:ec:84:b3:7c:ba:e3:4d:0e:5c:ab:4e:
61:ff:17:28:ff:15:cf:81:b2:35:71:3e:c2:b6:c3:f1:6d:ff:
15:b1:2b:e7:58:25:8d:74:b6:7c:b3:d0:52:96:9b:9e:bf:2d:
6d:76:17:5f:73:c4:ad:fe:c1:15:83:22:38:61:33:a4:fa:ce:
5f:15:09:2b:cd:82:7a:29:d8:87:26:0e:53:c2:16:0d:3e:6a:
00:f3:31:8a:7f:dc:4a:e3:4f:d8:a4:e0:e0:72:ce:80:76:45:
53:60:e8:5c:cf:3e:40:95:fa:eb:72:1a:a9:e9:7c:55:3e:c8:
a1:f4:6b:ea:a3:82:b8:cf:35:80:6a:f4:3d:ae:f3:8e:1a:6f:
15:c2:60:bf:d5:dd:4d:65:ac:19:70:92:ba:84:88:c0:2b:9e:
48:45:5d:0a:a1:38:ff:c0:03:6f:e2:5f:4d:fb:92:76:c0:e7:
d8:95:d7:04:3e:e8:96:37:b0:d9:90:b0:a3:99:9e:20:59:d8:
4c:da:50:10:8e:1d:75:a7:d9:6b:1a:7f:cd:42:47:b4:2f:20:
a4:c8:c8:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 01:24:41 2025 by rpki-client