$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.cer File: 4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.cer (raw, json) Hash identifier: Ie1ghpD/kcn+oOim/tVD7oOyhkbivHcHb10xYr2tOkQ= Subject key identifier: 4B:13:DB:64:BC:C2:5C:9F:A9:9F:A2:B9:DF:AC:49:61:D3:DC:09:E0 Authority key identifier: 60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B Certificate issuer: /CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Certificate serial: 5CBE3846E0713EC84FF0E935E498F04CA09900AA Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Manifest: rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.mft caRepository: rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/ Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml Certificate not before: Thu 04 Apr 2024 07:27:48 +0000 Certificate not after: Thu 03 Apr 2025 07:32:48 +0000 Subordinate resources: AS: 28130 IP: 138.99.248.0/22 IP: 143.208.40.0/22 IP: 170.150.164.0/22 IP: 186.227.96.0/20 IP: 186.251.144.0/21 IP: 187.19.96.0/20 IP: 2804:1cc::/32 IP: 2804:2b8::/32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 24 Nov 2024 06:14:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:be:38:46:e0:71:3e:c8:4f:f0:e9:35:e4:98:f0:4c:a0:99:00:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Validity Not Before: Apr 4 07:27:48 2024 GMT Not After : Apr 3 07:32:48 2025 GMT Subject: CN=4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:64:5c:aa:6f:84:69:53:f9:93:2b:13:a0:b3: c1:f0:e4:37:1a:5b:96:7c:35:88:9c:54:40:0b:38: 2a:66:c0:f6:05:d7:92:bf:d1:74:a5:77:37:21:31: 3e:67:a0:9b:48:54:d4:4e:53:a5:c3:a7:63:7d:4f: e5:71:c8:63:50:35:e2:30:63:e4:c5:9b:f6:00:dc: 87:42:60:8f:86:6c:98:b0:dd:c8:e5:b3:bc:ba:83: 1d:b9:cd:9e:7c:6c:d3:fb:fc:95:40:1c:d1:61:05: 06:a6:0b:d8:4a:0d:8b:e7:7e:0c:cb:94:54:dd:9c: 71:02:cd:3f:d3:ad:b0:ab:b9:e1:61:81:3b:0f:4e: 9b:1c:f8:8f:a7:15:85:00:ff:da:5e:c6:2d:e2:cc: d5:68:1c:5d:2b:6f:9f:54:56:59:1b:92:06:b0:5a: de:b0:50:62:8a:ce:65:ed:8d:01:2e:bc:8c:7f:d4: 64:a4:cb:77:96:77:95:57:1a:13:8e:ae:ed:3b:11: 13:89:59:1c:22:ec:03:8b:da:e0:31:83:17:29:39: 2e:89:26:dc:21:50:70:42:b4:de:24:07:14:62:7e: fe:b0:6e:17:51:59:47:a8:32:1c:4f:67:3d:73:51: 22:f7:ad:94:c2:13:71:0c:0f:56:07:7a:90:3f:1d: 58:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4B:13:DB:64:BC:C2:5C:9F:A9:9F:A2:B9:DF:AC:49:61:D3:DC:09:E0 X509v3 Authority Key Identifier: keyid:60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Subject Information Access: CA Repository - URI:rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/ RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.mft RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.99.248.0/22 143.208.40.0/22 170.150.164.0/22 186.227.96.0/20 186.251.144.0/21 187.19.96.0/20 IPv6: 2804:1cc::/32 2804:2b8::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 28130 Signature Algorithm: sha256WithRSAEncryption 22:dc:ca:93:89:b1:a1:0c:46:78:09:db:28:1b:99:79:02:41: d4:ec:8d:b5:06:09:20:c0:4f:3b:01:46:ed:98:f8:a7:8d:ab: 97:da:94:2b:b5:35:f5:1d:41:a6:f4:d7:a8:93:7b:9d:53:f0: 19:1f:0d:7c:6e:33:41:09:27:e5:41:2d:e3:f9:30:5c:cd:c0: cd:7e:c6:2b:4b:80:01:82:4e:0b:97:e6:4e:2e:a8:32:c5:87: 24:08:11:de:71:20:6f:f4:bf:44:8f:7d:2d:be:04:bc:48:20: 79:c4:0c:ba:24:ba:d9:38:6e:35:38:24:9e:a3:8b:39:62:f7: 4d:05:18:e7:12:0b:53:33:05:09:ce:56:76:db:39:d9:2a:02: fb:51:7c:07:69:b4:78:7c:a8:98:04:cc:b8:eb:fe:6d:82:fd: 0a:3f:c6:46:a7:74:1f:af:97:7f:0c:42:9d:a9:d3:15:08:6b: 7a:35:bf:ba:7f:50:bd:55:b1:ad:e6:b6:75:9f:1f:21:1f:12: 0c:a5:d0:97:71:de:d2:5c:41:a6:c0:40:07:33:87:b0:d5:7b: e8:b4:9d:81:06:44:51:d8:75:91:0a:e4:a9:62:b7:cf:c1:70: b7:c4:df:1a:b0:44:20:64:65:a4:c2:da:7e:a0:29:70:f9:c0: e1:2e:08:24 -----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgIUXL44RuBxPshP8Ok15JjwTKCZAKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA1NDMyRTlFMUIwNUE3RTZDMjA4QjI5NDZGREM5Qzk2 N0NBOEE0QjAeFw0yNDA0MDQwNzI3NDhaFw0yNTA0MDMwNzMyNDhaMDMxMTAvBgNV BAMTKDRCMTNEQjY0QkNDMjVDOUZBOTlGQTJCOURGQUM0OTYxRDNEQzA5RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuZFyqb4RpU/mTKxOgs8Hw5Dca W5Z8NYicVEALOCpmwPYF15K/0XSldzchMT5noJtIVNROU6XDp2N9T+VxyGNQNeIw Y+TFm/YA3IdCYI+GbJiw3cjls7y6gx25zZ58bNP7/JVAHNFhBQamC9hKDYvnfgzL lFTdnHECzT/TrbCrueFhgTsPTpsc+I+nFYUA/9pexi3izNVoHF0rb59UVlkbkgaw Wt6wUGKKzmXtjQEuvIx/1GSky3eWd5VXGhOOru07EROJWRwi7AOL2uAxgxcpOS6J JtwhUHBCtN4kBxRifv6wbhdRWUeoMhxPZz1zUSL3rZTCE3EMD1YHepA/HViNAgMB AAGjggNcMIIDWDAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRLE9tkvMJcn6mf ornfrElh09wJ4DAfBgNVHSMEGDAWgBRgVDLp4bBafmwgiylG/cnJZ8qKSzAOBgNV HQ8BAf8EBAMCAQYwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtpLXJlcG8u cmVnaXN0cm8uYnIvcmVwby9uaWNicl9yZXBvLzEvNjA1NDMyRTlFMUIwNUE3RTZD MjA4QjI5NDZGREM5Qzk2N0NBOEE0Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGpMIGm BggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kv bGFjbmljL0ExNTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFB QTEwMDc1RjY3MTY1Qjk4QzRGNEVGQzMvMC82MDU0MzJFOUUxQjA1QTdFNkMyMDhC Mjk0NkZEQzlDOTY3Q0E4QTRCLmNlcjCCAT4GCCsGAQUFBwELBIIBMDCCASwwXQYI KwYBBQUHMAWGUXJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8vaFhw MzE0QVZvbjVWVUI4NTNvTVZENjlhWmtyS3N1R2ZKRHpveUd4Z0FzMi8xLzCBiQYI KwYBBQUHMAqGfXJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8vaFhw MzE0QVZvbjVWVUI4NTNvTVZENjlhWmtyS3N1R2ZKRHpveUd4Z0FzMi8xLzRCMTNE QjY0QkNDMjVDOUZBOTlGQTJCOURGQUM0OTYxRDNEQzA5RTAubWZ0MD8GCCsGAQUF BzANhjNodHRwczovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9ycmRwL25vdGlmaWNh dGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBTBggrBgEFBQcBBwEB /wREMEIwKgQCAAEwJAMEAopj+AMEAo/QKAMEAqqWpAMEBLrjYAMEA7r7kAMEBLsT YDAUBAIAAjAOAwUAKAQBzAMFACgEArgwGQYIKwYBBQUHAQgBAf8ECjAIoAYwBAIC beIwDQYJKoZIhvcNAQELBQADggEBACLcypOJsaEMRngJ2ygbmXkCQdTsjbUGCSDA TzsBRu2Y+KeNq5falCu1NfUdQab016iTe51T8BkfDXxuM0EJJ+VBLeP5MFzNwM1+ xitLgAGCTguX5k4uqDLFhyQIEd5xIG/0v0SPfS2+BLxIIHnEDLokutk4bjU4JJ6j izli900FGOcSC1MzBQnOVnbbOdkqAvtRfAdptHh8qJgEzLjr/m2C/Qo/xkandB+v l38MQp2p0xUIa3o1v7p/UL1Vsa3mtnWfHyEfEgyl0Jdx3tJcQabAQAczh7DVe+i0 nYEGRFHYdZEK5Klit8/BcLfE3xqwRCBkZaTC2n6gKXD5wOEuCCQ= -----END CERTIFICATE-----Generated at Sat Nov 23 05:01:29 2024 by rpki-client on console-fra.rpki-client.org