Certificate
$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/1/3E505BB16E0D43DCE61B34AB7BDBB574C916641B.cer
File: 3E505BB16E0D43DCE61B34AB7BDBB574C916641B.cer (raw, json)
Hash identifier: KfZc1fT3Lnyj+6GR5bOtzgUM/N9yJKzMZy07hrZIWFU=
Subject key identifier: 3E:50:5B:B1:6E:0D:43:DC:E6:1B:34:AB:7B:DB:B5:74:C9:16:64:1B
Authority key identifier: 60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B
Certificate issuer: /CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B
Certificate serial: 5A160D26BEE5C444323CE6CA4066CB2CF8808A9F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
Manifest: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3E505BB16E0D43DCE61B34AB7BDBB574C916641B.mft
caRepository: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/
Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml
Certificate not before: Thu 23 May 2024 13:23:11 +0000
Certificate not after: Thu 22 May 2025 13:28:11 +0000
Subordinate resources: AS: 7048
AS: 28146
AS: 28224
AS: 262688
IP: 45.71.224.0/22
IP: 45.162.164.0/22
IP: 45.227.192.0/22
IP: 45.238.108.0/22
IP: 45.238.164.0/22
IP: 131.100.96.0/22
IP: 138.186.116.0/22
IP: 138.204.72.0/22
IP: 143.208.12.0/22
IP: 143.255.100.0/22
IP: 168.0.4.0/22
IP: 170.0.168.0/22
IP: 170.84.56.0/22
IP: 170.233.40.0/22
IP: 170.245.216.0/22
IP: 170.247.192.0/22
IP: 177.73.188.0/22
IP: 177.75.96.0/20
IP: 177.75.128.0/19
IP: 177.86.0.0/21
IP: 177.125.32.0/21
IP: 177.126.192.0/20
IP: 177.154.96.0/20
IP: 177.234.132.0/22
IP: 179.127.128.0/20
IP: 179.127.224.0/20
IP: 179.191.36.0/22
IP: 186.216.144.0/21
IP: 186.236.0.0 -- 186.236.47.255
IP: 186.250.88.0/22
IP: 187.18.32.0/20
IP: 187.45.96.0/19
IP: 187.49.224.0/20
IP: 187.87.208.0/20
IP: 187.110.176.0/20
IP: 189.126.48.0/20
IP: 191.36.132.0/22
IP: 200.229.176.0/20
IP: 2804:310::/32
IP: 2804:6dc::/32
IP: 2804:108c::/32
IP: 2804:1bd8::/32
IP: 2804:26e0::/32
Validation: Failed, certificate revoked on Fri 08 Nov 2024 18:11:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:16:0d:26:be:e5:c4:44:32:3c:e6:ca:40:66:cb:2c:f8:80:8a:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B
Validity
Not Before: May 23 13:23:11 2024 GMT
Not After : May 22 13:28:11 2025 GMT
Subject: CN=3E505BB16E0D43DCE61B34AB7BDBB574C916641B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:37:89:78:27:7e:d8:15:b0:0a:3b:c2:75:ad:
43:4d:d5:02:2d:cf:c4:fa:f5:59:0f:7c:51:57:f9:
7c:57:48:68:78:77:c4:e0:78:f7:d8:71:07:1c:0a:
67:92:39:64:3c:69:ad:e3:64:aa:86:cb:b8:65:95:
13:da:92:cc:93:25:8a:f3:f0:50:46:b4:96:fa:75:
d2:11:ce:8e:3f:00:85:3d:34:82:02:ee:f9:ff:20:
60:61:f8:50:8c:6c:5e:d8:60:1f:26:a6:de:28:b2:
dc:bd:d2:96:09:1c:da:c5:0a:3b:18:58:c8:fa:ab:
5f:4b:d3:e0:fb:7d:54:82:5b:13:6a:1f:d9:e1:03:
17:6c:2b:22:fa:97:56:48:ba:a4:bb:50:08:21:97:
36:91:e3:41:f3:56:ce:e3:44:33:b0:8b:e3:65:aa:
f3:f0:b2:d9:ad:cb:06:65:68:d4:e6:06:4f:a4:f2:
71:e5:c0:fd:46:51:b8:e5:49:ac:17:6a:7c:7f:32:
f6:9c:19:bf:1f:8f:fa:ac:80:eb:f8:d0:72:2c:5b:
9b:06:db:7f:3f:b7:7b:8e:0b:ab:55:e0:1e:a3:0f:
c3:1a:2f:29:20:f7:5e:f9:d5:53:7f:54:e2:22:0d:
4a:5c:4d:5f:c7:13:bc:d1:1d:3c:6b:47:6b:54:75:
8e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
3E:50:5B:B1:6E:0D:43:DC:E6:1B:34:AB:7B:DB:B5:74:C9:16:64:1B
X509v3 Authority Key Identifier:
keyid:60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/
RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3E505BB16E0D43DCE61B34AB7BDBB574C916641B.mft
RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.71.224.0/22
45.162.164.0/22
45.227.192.0/22
45.238.108.0/22
45.238.164.0/22
131.100.96.0/22
138.186.116.0/22
138.204.72.0/22
143.208.12.0/22
143.255.100.0/22
168.0.4.0/22
170.0.168.0/22
170.84.56.0/22
170.233.40.0/22
170.245.216.0/22
170.247.192.0/22
177.73.188.0/22
177.75.96.0/20
177.75.128.0/19
177.86.0.0/21
177.125.32.0/21
177.126.192.0/20
177.154.96.0/20
177.234.132.0/22
179.127.128.0/20
179.127.224.0/20
179.191.36.0/22
186.216.144.0/21
186.236.0.0-186.236.47.255
186.250.88.0/22
187.18.32.0/20
187.45.96.0/19
187.49.224.0/20
187.87.208.0/20
187.110.176.0/20
189.126.48.0/20
191.36.132.0/22
200.229.176.0/20
IPv6:
2804:310::/32
2804:6dc::/32
2804:108c::/32
2804:1bd8::/32
2804:26e0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7048
28146
28224
262688
Signature Algorithm: sha256WithRSAEncryption
b8:34:cc:83:e4:db:5d:c5:c6:f6:db:1b:93:05:58:f9:17:15:
8b:e0:ac:9c:50:3b:b1:a7:a6:67:9a:4c:90:8b:de:47:fb:9d:
60:f4:17:05:53:a1:66:d1:0c:d5:ac:c2:a2:0b:9d:15:89:6c:
56:3d:ad:11:44:85:eb:84:10:45:22:a6:12:f0:0c:ce:c3:a2:
49:1e:91:86:9c:87:f0:15:55:a4:22:9c:b2:39:31:9c:61:49:
02:0b:08:e7:32:93:0e:92:fe:60:f0:e4:9e:01:bb:5b:b9:b7:
b6:26:56:77:53:95:f8:9d:c4:1a:b5:35:25:42:79:01:8e:50:
34:2b:2d:43:4f:3c:e5:3a:2b:83:2d:f6:31:c0:00:5f:33:c4:
cc:2e:24:5b:53:7f:db:da:26:7d:97:88:c5:74:d4:6e:cb:28:
7c:91:a7:aa:e6:71:69:84:63:b9:62:04:ad:b8:ee:23:d8:73:
4d:cc:7b:16:b6:28:25:a2:22:a3:d2:63:e3:a2:fb:fc:37:03:
0f:c7:d9:16:ef:65:72:33:a4:7a:ea:78:f8:67:a8:a3:24:a4:
76:4b:fb:b4:ec:c0:7c:d5:b2:5b:7f:ea:11:7c:45:44:bf:37:
8a:79:17:a4:71:bb:8e:f9:34:8f:8c:0a:84:b6:dc:13:ed:8e:
c6:e7:98:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 19:43:12 2024 by rpki-client on console-fra.rpki-client.org