$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.cer File: 4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.cer (raw, json) Hash identifier: 5SuJcEbeKu1et4aDXlUd7mfosTYryssihZIG5Z0GRwQ= Subject key identifier: 4B:13:DB:64:BC:C2:5C:9F:A9:9F:A2:B9:DF:AC:49:61:D3:DC:09:E0 Authority key identifier: 60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B Certificate issuer: /CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Certificate serial: 5726E3FF76BABC8DD98DD646D30502E0181D9DF1 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Manifest: rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.mft caRepository: rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/ Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml Certificate not before: Fri 07 Mar 2025 00:38:18 +0000 Certificate not after: Fri 06 Mar 2026 00:43:18 +0000 Subordinate resources: AS: 28130 IP: 138.99.248.0/22 IP: 143.208.40.0/22 IP: 170.150.164.0/22 IP: 186.227.96.0/20 IP: 186.251.144.0/21 IP: 187.19.96.0/20 IP: 2804:1cc::/32 IP: 2804:2b8::/32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 05 Apr 2025 22:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:26:e3:ff:76:ba:bc:8d:d9:8d:d6:46:d3:05:02:e0:18:1d:9d:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Validity Not Before: Mar 7 00:38:18 2025 GMT Not After : Mar 6 00:43:18 2026 GMT Subject: CN=4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:64:5c:aa:6f:84:69:53:f9:93:2b:13:a0:b3: c1:f0:e4:37:1a:5b:96:7c:35:88:9c:54:40:0b:38: 2a:66:c0:f6:05:d7:92:bf:d1:74:a5:77:37:21:31: 3e:67:a0:9b:48:54:d4:4e:53:a5:c3:a7:63:7d:4f: e5:71:c8:63:50:35:e2:30:63:e4:c5:9b:f6:00:dc: 87:42:60:8f:86:6c:98:b0:dd:c8:e5:b3:bc:ba:83: 1d:b9:cd:9e:7c:6c:d3:fb:fc:95:40:1c:d1:61:05: 06:a6:0b:d8:4a:0d:8b:e7:7e:0c:cb:94:54:dd:9c: 71:02:cd:3f:d3:ad:b0:ab:b9:e1:61:81:3b:0f:4e: 9b:1c:f8:8f:a7:15:85:00:ff:da:5e:c6:2d:e2:cc: d5:68:1c:5d:2b:6f:9f:54:56:59:1b:92:06:b0:5a: de:b0:50:62:8a:ce:65:ed:8d:01:2e:bc:8c:7f:d4: 64:a4:cb:77:96:77:95:57:1a:13:8e:ae:ed:3b:11: 13:89:59:1c:22:ec:03:8b:da:e0:31:83:17:29:39: 2e:89:26:dc:21:50:70:42:b4:de:24:07:14:62:7e: fe:b0:6e:17:51:59:47:a8:32:1c:4f:67:3d:73:51: 22:f7:ad:94:c2:13:71:0c:0f:56:07:7a:90:3f:1d: 58:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4B:13:DB:64:BC:C2:5C:9F:A9:9F:A2:B9:DF:AC:49:61:D3:DC:09:E0 X509v3 Authority Key Identifier: keyid:60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Subject Information Access: CA Repository - URI:rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/ RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.mft RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.99.248.0/22 143.208.40.0/22 170.150.164.0/22 186.227.96.0/20 186.251.144.0/21 187.19.96.0/20 IPv6: 2804:1cc::/32 2804:2b8::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 28130 Signature Algorithm: sha256WithRSAEncryption 4a:68:f5:2e:10:be:46:ac:20:1b:b3:2d:2f:1e:32:1c:72:28: 5d:bd:0d:76:ea:47:35:6d:2a:ae:14:d4:b4:8e:db:72:e5:a4: 86:91:66:b4:10:00:b6:82:aa:ba:36:b4:76:be:6f:4d:6d:ab: 3f:fe:e1:9a:b1:fe:da:ed:60:ac:a3:73:26:a7:ae:a9:f9:de: b7:c5:4a:1d:90:68:6d:5a:0b:87:d7:35:e1:8b:80:49:16:9a: 27:68:c3:91:e4:3b:a4:cb:89:fc:52:6b:05:a6:e4:96:e9:88: 14:00:ff:f7:3a:22:02:88:08:77:ec:f2:cb:31:74:4a:fa:13: ee:95:6a:f9:58:cb:1e:30:c1:16:f8:de:78:9f:11:48:c7:35: 31:3c:28:17:79:34:2d:fa:7d:1a:b6:2b:15:7f:f9:67:59:4d: d9:93:03:7d:f1:71:8d:c0:0c:14:f2:10:36:c4:54:71:02:33: 7c:44:32:8d:cc:ba:22:9f:8c:50:3f:a1:40:92:78:c2:da:4a: a3:ca:c6:9c:62:a3:60:0d:b9:46:cb:b8:f0:0c:c3:50:ba:af: b1:60:a3:ef:e5:84:b7:6b:49:f9:42:10:49:72:ba:c7:bc:ef: 19:ec:d4:fa:ae:04:c3:2e:99:ce:d6:8e:2e:0a:fc:2d:71:b2: a0:f6:6d:04 -----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgIUVybj/3a6vI3ZjdZG0wUC4BgdnfEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA1NDMyRTlFMUIwNUE3RTZDMjA4QjI5NDZGREM5Qzk2 N0NBOEE0QjAeFw0yNTAzMDcwMDM4MThaFw0yNjAzMDYwMDQzMThaMDMxMTAvBgNV BAMTKDRCMTNEQjY0QkNDMjVDOUZBOTlGQTJCOURGQUM0OTYxRDNEQzA5RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuZFyqb4RpU/mTKxOgs8Hw5Dca W5Z8NYicVEALOCpmwPYF15K/0XSldzchMT5noJtIVNROU6XDp2N9T+VxyGNQNeIw Y+TFm/YA3IdCYI+GbJiw3cjls7y6gx25zZ58bNP7/JVAHNFhBQamC9hKDYvnfgzL lFTdnHECzT/TrbCrueFhgTsPTpsc+I+nFYUA/9pexi3izNVoHF0rb59UVlkbkgaw Wt6wUGKKzmXtjQEuvIx/1GSky3eWd5VXGhOOru07EROJWRwi7AOL2uAxgxcpOS6J JtwhUHBCtN4kBxRifv6wbhdRWUeoMhxPZz1zUSL3rZTCE3EMD1YHepA/HViNAgMB AAGjggNcMIIDWDAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRLE9tkvMJcn6mf ornfrElh09wJ4DAfBgNVHSMEGDAWgBRgVDLp4bBafmwgiylG/cnJZ8qKSzAOBgNV HQ8BAf8EBAMCAQYwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtpLXJlcG8u cmVnaXN0cm8uYnIvcmVwby9uaWNicl9yZXBvLzEvNjA1NDMyRTlFMUIwNUE3RTZD MjA4QjI5NDZGREM5Qzk2N0NBOEE0Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGpMIGm BggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kv bGFjbmljL0ExNTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFB QTEwMDc1RjY3MTY1Qjk4QzRGNEVGQzMvMC82MDU0MzJFOUUxQjA1QTdFNkMyMDhC Mjk0NkZEQzlDOTY3Q0E4QTRCLmNlcjCCAT4GCCsGAQUFBwELBIIBMDCCASwwXQYI KwYBBQUHMAWGUXJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8vaFhw MzE0QVZvbjVWVUI4NTNvTVZENjlhWmtyS3N1R2ZKRHpveUd4Z0FzMi8xLzCBiQYI KwYBBQUHMAqGfXJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8vaFhw MzE0QVZvbjVWVUI4NTNvTVZENjlhWmtyS3N1R2ZKRHpveUd4Z0FzMi8xLzRCMTNE QjY0QkNDMjVDOUZBOTlGQTJCOURGQUM0OTYxRDNEQzA5RTAubWZ0MD8GCCsGAQUF BzANhjNodHRwczovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBTBggrBgEFBQcBBwEB /wREMEIwKgQCAAEwJAMEAopj+AMEAo/QKAMEAqqWpAMEBLrjYAMEA7r7kAMEBLsT YDAUBAIAAjAOAwUAKAQBzAMFACgEArgwGQYIKwYBBQUHAQgBAf8ECjAIoAYwBAIC beIwDQYJKoZIhvcNAQELBQADggEBAEpo9S4QvkasIBuzLS8eMhxyKF29DXbqRzVt Kq4U1LSO23LlpIaRZrQQALaCqro2tHa+b01tqz/+4Zqx/trtYKyjcyanrqn53rfF Sh2QaG1aC4fXNeGLgEkWmidow5HkO6TLifxSawWm5JbpiBQA//c6IgKICHfs8ssx dEr6E+6VavlYyx4wwRb43nifEUjHNTE8KBd5NC36fRq2KxV/+WdZTdmTA33xcY3A DBTyEDbEVHECM3xEMo3MuiKfjFA/oUCSeMLaSqPKxpxio2ANuUbLuPAMw1C6r7Fg o+/lhLdrSflCEElyuse87xns1PquBMMumc7Wji4K/C1xsqD2bQQ= -----END CERTIFICATE-----Generated at Fri Apr 4 22:49:58 2025 by rpki-client