$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/1/3E505BB16E0D43DCE61B34AB7BDBB574C916641B.cer File: 3E505BB16E0D43DCE61B34AB7BDBB574C916641B.cer (raw, json) Hash identifier: KfZc1fT3Lnyj+6GR5bOtzgUM/N9yJKzMZy07hrZIWFU= Subject key identifier: 3E:50:5B:B1:6E:0D:43:DC:E6:1B:34:AB:7B:DB:B5:74:C9:16:64:1B Authority key identifier: 60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B Certificate issuer: /CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Certificate serial: 5A160D26BEE5C444323CE6CA4066CB2CF8808A9F Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Manifest: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3E505BB16E0D43DCE61B34AB7BDBB574C916641B.mft caRepository: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/ Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml Certificate not before: Thu 23 May 2024 13:23:11 +0000 Certificate not after: Thu 22 May 2025 13:28:11 +0000 Subordinate resources: AS: 7048 AS: 28146 AS: 28224 AS: 262688 IP: 45.71.224.0/22 IP: 45.162.164.0/22 IP: 45.227.192.0/22 IP: 45.238.108.0/22 IP: 45.238.164.0/22 IP: 131.100.96.0/22 IP: 138.186.116.0/22 IP: 138.204.72.0/22 IP: 143.208.12.0/22 IP: 143.255.100.0/22 IP: 168.0.4.0/22 IP: 170.0.168.0/22 IP: 170.84.56.0/22 IP: 170.233.40.0/22 IP: 170.245.216.0/22 IP: 170.247.192.0/22 IP: 177.73.188.0/22 IP: 177.75.96.0/20 IP: 177.75.128.0/19 IP: 177.86.0.0/21 IP: 177.125.32.0/21 IP: 177.126.192.0/20 IP: 177.154.96.0/20 IP: 177.234.132.0/22 IP: 179.127.128.0/20 IP: 179.127.224.0/20 IP: 179.191.36.0/22 IP: 186.216.144.0/21 IP: 186.236.0.0 -- 186.236.47.255 IP: 186.250.88.0/22 IP: 187.18.32.0/20 IP: 187.45.96.0/19 IP: 187.49.224.0/20 IP: 187.87.208.0/20 IP: 187.110.176.0/20 IP: 189.126.48.0/20 IP: 191.36.132.0/22 IP: 200.229.176.0/20 IP: 2804:310::/32 IP: 2804:6dc::/32 IP: 2804:108c::/32 IP: 2804:1bd8::/32 IP: 2804:26e0::/32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 03 Jun 2024 02:38:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:16:0d:26:be:e5:c4:44:32:3c:e6:ca:40:66:cb:2c:f8:80:8a:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Validity Not Before: May 23 13:23:11 2024 GMT Not After : May 22 13:28:11 2025 GMT Subject: CN=3E505BB16E0D43DCE61B34AB7BDBB574C916641B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:37:89:78:27:7e:d8:15:b0:0a:3b:c2:75:ad: 43:4d:d5:02:2d:cf:c4:fa:f5:59:0f:7c:51:57:f9: 7c:57:48:68:78:77:c4:e0:78:f7:d8:71:07:1c:0a: 67:92:39:64:3c:69:ad:e3:64:aa:86:cb:b8:65:95: 13:da:92:cc:93:25:8a:f3:f0:50:46:b4:96:fa:75: d2:11:ce:8e:3f:00:85:3d:34:82:02:ee:f9:ff:20: 60:61:f8:50:8c:6c:5e:d8:60:1f:26:a6:de:28:b2: dc:bd:d2:96:09:1c:da:c5:0a:3b:18:58:c8:fa:ab: 5f:4b:d3:e0:fb:7d:54:82:5b:13:6a:1f:d9:e1:03: 17:6c:2b:22:fa:97:56:48:ba:a4:bb:50:08:21:97: 36:91:e3:41:f3:56:ce:e3:44:33:b0:8b:e3:65:aa: f3:f0:b2:d9:ad:cb:06:65:68:d4:e6:06:4f:a4:f2: 71:e5:c0:fd:46:51:b8:e5:49:ac:17:6a:7c:7f:32: f6:9c:19:bf:1f:8f:fa:ac:80:eb:f8:d0:72:2c:5b: 9b:06:db:7f:3f:b7:7b:8e:0b:ab:55:e0:1e:a3:0f: c3:1a:2f:29:20:f7:5e:f9:d5:53:7f:54:e2:22:0d: 4a:5c:4d:5f:c7:13:bc:d1:1d:3c:6b:47:6b:54:75: 8e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3E:50:5B:B1:6E:0D:43:DC:E6:1B:34:AB:7B:DB:B5:74:C9:16:64:1B X509v3 Authority Key Identifier: keyid:60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Subject Information Access: CA Repository - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/ RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3E505BB16E0D43DCE61B34AB7BDBB574C916641B.mft RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.71.224.0/22 45.162.164.0/22 45.227.192.0/22 45.238.108.0/22 45.238.164.0/22 131.100.96.0/22 138.186.116.0/22 138.204.72.0/22 143.208.12.0/22 143.255.100.0/22 168.0.4.0/22 170.0.168.0/22 170.84.56.0/22 170.233.40.0/22 170.245.216.0/22 170.247.192.0/22 177.73.188.0/22 177.75.96.0/20 177.75.128.0/19 177.86.0.0/21 177.125.32.0/21 177.126.192.0/20 177.154.96.0/20 177.234.132.0/22 179.127.128.0/20 179.127.224.0/20 179.191.36.0/22 186.216.144.0/21 186.236.0.0-186.236.47.255 186.250.88.0/22 187.18.32.0/20 187.45.96.0/19 187.49.224.0/20 187.87.208.0/20 187.110.176.0/20 189.126.48.0/20 191.36.132.0/22 200.229.176.0/20 IPv6: 2804:310::/32 2804:6dc::/32 2804:108c::/32 2804:1bd8::/32 2804:26e0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 7048 28146 28224 262688 Signature Algorithm: sha256WithRSAEncryption b8:34:cc:83:e4:db:5d:c5:c6:f6:db:1b:93:05:58:f9:17:15: 8b:e0:ac:9c:50:3b:b1:a7:a6:67:9a:4c:90:8b:de:47:fb:9d: 60:f4:17:05:53:a1:66:d1:0c:d5:ac:c2:a2:0b:9d:15:89:6c: 56:3d:ad:11:44:85:eb:84:10:45:22:a6:12:f0:0c:ce:c3:a2: 49:1e:91:86:9c:87:f0:15:55:a4:22:9c:b2:39:31:9c:61:49: 02:0b:08:e7:32:93:0e:92:fe:60:f0:e4:9e:01:bb:5b:b9:b7: b6:26:56:77:53:95:f8:9d:c4:1a:b5:35:25:42:79:01:8e:50: 34:2b:2d:43:4f:3c:e5:3a:2b:83:2d:f6:31:c0:00:5f:33:c4: cc:2e:24:5b:53:7f:db:da:26:7d:97:88:c5:74:d4:6e:cb:28: 7c:91:a7:aa:e6:71:69:84:63:b9:62:04:ad:b8:ee:23:d8:73: 4d:cc:7b:16:b6:28:25:a2:22:a3:d2:63:e3:a2:fb:fc:37:03: 0f:c7:d9:16:ef:65:72:33:a4:7a:ea:78:f8:67:a8:a3:24:a4: 76:4b:fb:b4:ec:c0:7c:d5:b2:5b:7f:ea:11:7c:45:44:bf:37: 8a:79:17:a4:71:bb:8e:f9:34:8f:8c:0a:84:b6:dc:13:ed:8e: c6:e7:98:25 -----BEGIN CERTIFICATE----- MIIHRTCCBi2gAwIBAgIUWhYNJr7lxEQyPObKQGbLLPiAip8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA1NDMyRTlFMUIwNUE3RTZDMjA4QjI5NDZGREM5Qzk2 N0NBOEE0QjAeFw0yNDA1MjMxMzIzMTFaFw0yNTA1MjIxMzI4MTFaMDMxMTAvBgNV BAMTKDNFNTA1QkIxNkUwRDQzRENFNjFCMzRBQjdCREJCNTc0QzkxNjY0MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeN4l4J37YFbAKO8J1rUNN1QIt z8T69VkPfFFX+XxXSGh4d8TgePfYcQccCmeSOWQ8aa3jZKqGy7hllRPaksyTJYrz 8FBGtJb6ddIRzo4/AIU9NIIC7vn/IGBh+FCMbF7YYB8mpt4osty90pYJHNrFCjsY WMj6q19L0+D7fVSCWxNqH9nhAxdsKyL6l1ZIuqS7UAghlzaR40HzVs7jRDOwi+Nl qvPwstmtywZlaNTmBk+k8nHlwP1GUbjlSawXanx/MvacGb8fj/qsgOv40HIsW5sG 238/t3uOC6tV4B6jD8MaLykg91751VN/VOIiDUpcTV/HE7zRHTxrR2tUdY6tAgMB AAGjggRPMIIESzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBQ+UFuxbg1D3OYb NKt727V0yRZkGzAfBgNVHSMEGDAWgBRgVDLp4bBafmwgiylG/cnJZ8qKSzAOBgNV HQ8BAf8EBAMCAQYwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtpLXJlcG8u cmVnaXN0cm8uYnIvcmVwby9uaWNicl9yZXBvLzEvNjA1NDMyRTlFMUIwNUE3RTZD MjA4QjI5NDZGREM5Qzk2N0NBOEE0Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGpMIGm BggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kv bGFjbmljL0ExNTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFB QTEwMDc1RjY3MTY1Qjk4QzRGNEVGQzMvMC82MDU0MzJFOUUxQjA1QTdFNkMyMDhC Mjk0NkZEQzlDOTY3Q0E4QTRCLmNlcjCCAUAGCCsGAQUFBwELBIIBMjCCAS4wXgYI KwYBBQUHMAWGUnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8vOEZE Q2g2WDV5cktkN0NZWXZacERMOVNxU3pNQUJqUGFhNmRzMUtSSzZxSzYvMC8wgYoG CCsGAQUFBzAKhn5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBvLzhG RENoNlg1eXJLZDdDWVl2WnBETDlTcVN6TUFCalBhYTZkczFLUks2cUs2LzAvM0U1 MDVCQjE2RTBENDNEQ0U2MUIzNEFCN0JEQkI1NzRDOTE2NjQxQi5tZnQwPwYIKwYB BQUHMA2GM2h0dHBzOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBNQYIKwYBBQUH AQcBAf8EggEkMIIBIDCB8gQCAAEwgesDBAItR+ADBAItoqQDBAIt48ADBAIt7mwD BAIt7qQDBAKDZGADBAKKunQDBAKKzEgDBAKP0AwDBAKP/2QDBAKoAAQDBAKqAKgD BAKqVDgDBAKq6SgDBAKq9dgDBAKq98ADBAKxSbwDBASxS2ADBAWxS4ADBAOxVgAD BAOxfSADBASxfsADBASxmmADBAKx6oQDBASzf4ADBASzf+ADBAKzvyQDBAO62JAw CwMDArrsAwQEuuwgAwQCuvpYAwQEuxIgAwQFuy1gAwQEuzHgAwQEu1fQAwQEu26w AwQEvX4wAwQCvySEAwQEyOWwMCkEAgACMCMDBQAoBAMQAwUAKAQG3AMFACgEEIwD BQAoBBvYAwUAKAQm4DAmBggrBgEFBQcBCAEB/wQXMBWgEzARAgIbiAICbfICAm5A AgMEAiAwDQYJKoZIhvcNAQELBQADggEBALg0zIPk213FxvbbG5MFWPkXFYvgrJxQ O7GnpmeaTJCL3kf7nWD0FwVToWbRDNWswqILnRWJbFY9rRFEheuEEEUiphLwDM7D okkekYach/AVVaQinLI5MZxhSQILCOcykw6S/mDw5J4Bu1u5t7YmVndTlfidxBq1 NSVCeQGOUDQrLUNPPOU6K4Mt9jHAAF8zxMwuJFtTf9vaJn2XiMV01G7LKHyRp6rm cWmEY7liBK247iPYc03Mexa2KCWiIqPSY+Oi+/w3Aw/H2RbvZXIzpHrqePhnqKMk pHZL+7TswHzVslt/6hF8RUS/N4p5F6Rxu475NI+MCoS23BPtjsbnmCU= -----END CERTIFICATE-----Generated at Sun Jun 2 02:06:32 2024 by rpki-client on console-fra.rpki-client.org