Certificate
$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/1/64C9BD31A828250E2C2A3E88A002A940122B6432.cer
File: 64C9BD31A828250E2C2A3E88A002A940122B6432.cer (raw, json)
Hash identifier: +yz9o0F/zl8YgRXjs/RH/K+LS3UE3leg4fUKzQmJ6bU=
Subject key identifier: 64:C9:BD:31:A8:28:25:0E:2C:2A:3E:88:A0:02:A9:40:12:2B:64:32
Authority key identifier: 60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B
Certificate issuer: /CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B
Certificate serial: 39030F4A8350DC12FB533E46E378FFA00867D832
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
Manifest: rsync://rpki-repo.registro.br/repo/3yjGaXpjhPnDEXhRq8h8dQT8u3qbvCzjSmTVv3xTLzWi/1/64C9BD31A828250E2C2A3E88A002A940122B6432.mft
caRepository: rsync://rpki-repo.registro.br/repo/3yjGaXpjhPnDEXhRq8h8dQT8u3qbvCzjSmTVv3xTLzWi/1/
Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml
Certificate not before: Wed 03 Apr 2024 18:31:24 +0000
Certificate not after: Wed 02 Apr 2025 18:36:24 +0000
Subordinate resources: AS: 263627
IP: 143.202.236.0/22
IP: 170.80.0.0/22
IP: 177.12.92.0/22
IP: 2804:1044::/32
Validation: Failed, certificate revoked on Tue 23 Apr 2024 17:14:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:03:0f:4a:83:50:dc:12:fb:53:3e:46:e3:78:ff:a0:08:67:d8:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B
Validity
Not Before: Apr 3 18:31:24 2024 GMT
Not After : Apr 2 18:36:24 2025 GMT
Subject: CN=64C9BD31A828250E2C2A3E88A002A940122B6432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ed:f3:02:69:89:2a:60:5d:0a:a6:0b:8c:9e:
43:33:e3:3f:a3:64:c4:9c:95:55:f9:e5:21:f0:bd:
3a:d7:e4:57:eb:ea:fb:7e:4b:cb:06:02:9e:dc:37:
d1:7b:7c:ad:36:78:88:3e:74:06:d6:c2:01:3d:23:
48:cf:6e:7b:18:40:7b:d3:50:17:b9:5f:8e:b9:5c:
e6:2b:9f:70:fb:d0:c7:fd:78:26:b7:21:e6:45:01:
a5:be:e3:e3:b5:a7:92:97:f4:de:9e:31:bc:d2:ef:
dd:2b:c6:92:6b:3a:92:f6:91:6b:a0:3d:22:e2:4b:
bd:75:db:21:57:a2:44:e3:c4:46:c7:7b:34:21:a9:
2d:f3:52:12:56:f3:4f:06:e0:2f:39:71:65:d6:81:
08:06:d1:6f:31:aa:cd:84:21:f7:e0:58:a7:9f:c9:
8b:6e:4a:49:bb:48:9c:ad:f7:2b:a8:7d:eb:e4:cf:
33:9f:97:2d:0f:c8:04:aa:e1:a2:2f:32:a6:da:7f:
29:05:94:05:28:9c:46:72:8e:54:48:12:9c:3c:1c:
de:e8:21:4e:55:2f:11:b9:31:04:ad:f0:bd:0d:27:
cc:25:33:1a:8f:87:05:45:5a:8a:1a:f1:ec:a9:6c:
0e:e7:d6:72:05:d2:0b:ff:27:30:5c:f2:b7:7c:8c:
8d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
64:C9:BD:31:A8:28:25:0E:2C:2A:3E:88:A0:02:A9:40:12:2B:64:32
X509v3 Authority Key Identifier:
keyid:60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.registro.br/repo/3yjGaXpjhPnDEXhRq8h8dQT8u3qbvCzjSmTVv3xTLzWi/1/
RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/3yjGaXpjhPnDEXhRq8h8dQT8u3qbvCzjSmTVv3xTLzWi/1/64C9BD31A828250E2C2A3E88A002A940122B6432.mft
RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.202.236.0/22
170.80.0.0/22
177.12.92.0/22
IPv6:
2804:1044::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
263627
Signature Algorithm: sha256WithRSAEncryption
76:2c:3d:87:65:e1:29:e7:05:7e:6b:d5:15:06:e9:db:8c:a6:
d3:9a:9d:36:ad:10:04:99:ba:ff:ce:30:2d:e6:15:2a:fa:f0:
e8:73:30:6e:ea:25:e5:eb:25:01:ab:d7:8e:f8:8e:b4:0d:46:
0a:be:60:7b:2c:ae:8e:a1:ae:d0:cd:72:9c:c8:d3:b9:6d:46:
1a:01:9d:40:f2:84:fe:6a:d1:b9:36:49:43:8e:9f:4a:c5:9e:
c3:a7:b9:f8:5c:d4:5c:5c:92:ac:a5:a8:c4:55:e6:4c:7a:ca:
81:c4:11:d6:2b:d5:8b:33:be:8c:1f:81:d5:95:58:60:fe:d2:
05:a9:68:99:0c:b8:94:30:f2:c4:fc:76:22:4d:a3:b8:54:5b:
99:2d:da:75:0a:83:37:a2:1a:63:49:7f:73:be:bc:44:4a:7f:
f5:93:73:5a:2b:ff:7b:bf:83:c0:fd:a8:3b:6b:76:6d:a8:2a:
31:4e:dc:c2:66:44:b4:ba:be:c4:e0:3e:51:19:59:1e:9b:fe:
4d:9e:7d:6d:1e:77:db:3a:eb:ea:ab:39:b2:5d:7e:e4:26:f0:
47:c6:17:53:f6:ae:05:d8:6b:86:0d:82:ba:32:84:8a:35:84:
72:9b:ad:72:aa:70:16:7e:5d:bf:73:24:04:64:a0:63:23:09:
4a:1f:9f:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:23 2024 by rpki-client on console-ams.rpki-client.org