$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/1/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer File: C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer (raw, json) Hash identifier: Vt1QZrsvVfvNeeJ1X6vFkgmWsDi8bNex/aONsuzV+Yc= Subject key identifier: C3:3A:5D:DC:75:4B:D1:65:55:FE:13:2A:7E:E0:F0:58:C2:FF:7B:56 Authority key identifier: 60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B Certificate issuer: /CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Certificate serial: 7BA0CDB38973A86BE2C07855EF63CCDF8144FDBC Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Manifest: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.mft caRepository: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/ Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml Certificate not before: Fri 08 Nov 2024 18:18:13 +0000 Certificate not after: Fri 07 Nov 2025 18:23:13 +0000 Subordinate resources: AS: 7048 AS: 28146 AS: 28224 AS: 262688 IP: 45.71.224.0/22 IP: 45.162.164.0/22 IP: 45.227.192.0/22 IP: 45.238.108.0/22 IP: 45.238.164.0/22 IP: 131.100.96.0/22 IP: 138.186.116.0/22 IP: 138.204.72.0/22 IP: 143.208.12.0/22 IP: 143.255.100.0/22 IP: 168.0.4.0/22 IP: 170.0.168.0/22 IP: 170.84.56.0/22 IP: 170.233.40.0/22 IP: 170.245.216.0/22 IP: 170.247.192.0/22 IP: 177.73.188.0/22 IP: 177.75.96.0/20 IP: 177.75.128.0/19 IP: 177.86.0.0/21 IP: 177.125.32.0/21 IP: 177.126.192.0/20 IP: 177.154.96.0/20 IP: 177.234.132.0/22 IP: 179.127.128.0/20 IP: 179.127.224.0/20 IP: 179.191.36.0/22 IP: 186.216.144.0/21 IP: 186.236.0.0 -- 186.236.47.255 IP: 186.250.88.0/22 IP: 187.18.32.0/20 IP: 187.45.96.0/19 IP: 187.49.224.0/20 IP: 187.87.208.0/20 IP: 187.110.176.0/20 IP: 189.126.48.0/20 IP: 191.36.132.0/22 IP: 200.229.176.0/20 IP: 2804:310::/32 IP: 2804:6dc::/32 IP: 2804:108c::/32 IP: 2804:1bd8::/32 IP: 2804:26e0::/32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 28 Nov 2024 00:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:a0:cd:b3:89:73:a8:6b:e2:c0:78:55:ef:63:cc:df:81:44:fd:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Validity Not Before: Nov 8 18:18:13 2024 GMT Not After : Nov 7 18:23:13 2025 GMT Subject: CN=C33A5DDC754BD16555FE132A7EE0F058C2FF7B56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e8:d5:98:fa:f3:8b:5d:a5:0d:5b:14:4d:84: f4:64:84:e4:2a:00:65:46:65:8d:19:64:d2:1f:b8: ae:7a:95:c5:fd:ac:8a:a5:52:6f:2a:91:23:db:c1: f2:39:40:cd:77:4e:d5:9f:77:58:83:30:fd:27:4f: 94:6e:d5:20:0c:4d:93:74:a1:65:06:dd:7f:9f:d5: ea:29:a7:10:32:72:66:f4:f6:42:f7:c8:07:db:54: 9b:dc:c1:c6:c7:a0:f9:4c:d9:9e:84:1a:1f:15:46: 83:8d:81:2f:30:e0:e9:78:30:03:e3:d5:f9:a8:c9: 33:23:2c:5a:0c:c8:f4:70:6e:53:25:12:cc:65:99: 2f:a2:a3:04:70:4f:98:86:df:14:49:a6:ed:21:bf: 7e:f5:f6:cd:4a:b8:29:e9:32:2e:5e:f5:8f:4f:5a: 94:64:57:77:fa:ad:91:a9:9c:6d:57:7c:f8:15:35: 1f:ac:07:ca:71:70:4d:cb:2e:d9:dc:79:86:c4:3d: ad:6c:3e:7d:59:f7:ab:7f:c1:48:f2:54:6f:db:3d: 81:2a:98:97:0f:7e:2e:e0:16:af:26:67:46:f1:3e: 9e:ff:3e:ae:03:c5:cb:5e:1b:41:6e:c1:c4:a2:dc: 07:c2:54:14:c4:ee:94:37:f6:4d:b4:8c:79:8f:bb: 0a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C3:3A:5D:DC:75:4B:D1:65:55:FE:13:2A:7E:E0:F0:58:C2:FF:7B:56 X509v3 Authority Key Identifier: keyid:60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Subject Information Access: CA Repository - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/ RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.mft RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.71.224.0/22 45.162.164.0/22 45.227.192.0/22 45.238.108.0/22 45.238.164.0/22 131.100.96.0/22 138.186.116.0/22 138.204.72.0/22 143.208.12.0/22 143.255.100.0/22 168.0.4.0/22 170.0.168.0/22 170.84.56.0/22 170.233.40.0/22 170.245.216.0/22 170.247.192.0/22 177.73.188.0/22 177.75.96.0/20 177.75.128.0/19 177.86.0.0/21 177.125.32.0/21 177.126.192.0/20 177.154.96.0/20 177.234.132.0/22 179.127.128.0/20 179.127.224.0/20 179.191.36.0/22 186.216.144.0/21 186.236.0.0-186.236.47.255 186.250.88.0/22 187.18.32.0/20 187.45.96.0/19 187.49.224.0/20 187.87.208.0/20 187.110.176.0/20 189.126.48.0/20 191.36.132.0/22 200.229.176.0/20 IPv6: 2804:310::/32 2804:6dc::/32 2804:108c::/32 2804:1bd8::/32 2804:26e0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 7048 28146 28224 262688 Signature Algorithm: sha256WithRSAEncryption 1b:7c:84:5c:43:c4:3a:be:18:d5:f1:db:cf:ba:5f:50:98:f7: 96:7c:2a:17:4e:59:31:f5:15:66:ca:55:c3:97:6e:1c:c4:bd: 8e:1e:88:ea:43:8b:e0:fb:6c:13:ff:8b:33:a8:fa:97:b0:c4: c0:f8:fb:ee:aa:5b:51:dd:69:82:56:b1:cb:99:91:48:ab:af: cd:fe:57:3c:49:05:84:02:33:bf:d9:cb:fa:84:a6:14:fe:93: 9d:83:ba:90:5d:49:84:98:18:70:cc:a5:55:b3:9e:d5:02:9c: 06:ba:e8:ee:1e:01:48:10:f5:8e:d8:0f:9e:dc:95:ba:b7:a9: 0b:bd:91:8e:e0:78:7b:c0:f9:25:e9:38:8b:91:19:18:cd:af: e0:d5:37:f1:77:06:f5:1a:08:ac:53:0f:d7:1a:4f:69:98:ea: b6:c0:77:0b:eb:43:43:e4:f9:5e:a4:e7:41:cb:4d:5c:6c:88: e7:a9:2d:4c:a3:0b:eb:bd:e0:fc:f1:d4:ba:45:7f:b0:db:e7: b9:fb:94:eb:e8:03:ef:ec:7a:f0:b8:4c:0e:5c:bd:62:ee:7a: b8:51:9b:a5:82:c2:16:46:bf:46:21:08:ce:17:fe:c6:4d:1b: ef:9d:e3:eb:0d:d7:73:a0:66:5d:4a:ce:e2:00:64:86:d1:18: f1:6d:f0:5e -----BEGIN CERTIFICATE----- MIIHRTCCBi2gAwIBAgIUe6DNs4lzqGviwHhV72PM34FE/bwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA1NDMyRTlFMUIwNUE3RTZDMjA4QjI5NDZGREM5Qzk2 N0NBOEE0QjAeFw0yNDExMDgxODE4MTNaFw0yNTExMDcxODIzMTNaMDMxMTAvBgNV BAMTKEMzM0E1RERDNzU0QkQxNjU1NUZFMTMyQTdFRTBGMDU4QzJGRjdCNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ6NWY+vOLXaUNWxRNhPRkhOQq AGVGZY0ZZNIfuK56lcX9rIqlUm8qkSPbwfI5QM13TtWfd1iDMP0nT5Ru1SAMTZN0 oWUG3X+f1eoppxAycmb09kL3yAfbVJvcwcbHoPlM2Z6EGh8VRoONgS8w4Ol4MAPj 1fmoyTMjLFoMyPRwblMlEsxlmS+iowRwT5iG3xRJpu0hv3719s1KuCnpMi5e9Y9P WpRkV3f6rZGpnG1XfPgVNR+sB8pxcE3LLtnceYbEPa1sPn1Z96t/wUjyVG/bPYEq mJcPfi7gFq8mZ0bxPp7/Pq4DxcteG0FuwcSi3AfCVBTE7pQ39k20jHmPuwqJAgMB AAGjggRPMIIESzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTDOl3cdUvRZVX+ Eyp+4PBYwv97VjAfBgNVHSMEGDAWgBRgVDLp4bBafmwgiylG/cnJZ8qKSzAOBgNV HQ8BAf8EBAMCAQYwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtpLXJlcG8u cmVnaXN0cm8uYnIvcmVwby9uaWNicl9yZXBvLzEvNjA1NDMyRTlFMUIwNUE3RTZD MjA4QjI5NDZGREM5Qzk2N0NBOEE0Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGpMIGm BggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kv bGFjbmljL0ExNTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFB QTEwMDc1RjY3MTY1Qjk4QzRGNEVGQzMvMC82MDU0MzJFOUUxQjA1QTdFNkMyMDhC Mjk0NkZEQzlDOTY3Q0E4QTRCLmNlcjCCAUAGCCsGAQUFBwELBIIBMjCCAS4wXgYI KwYBBQUHMAWGUnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8vOEZE Q2g2WDV5cktkN0NZWXZacERMOVNxU3pNQUJqUGFhNmRzMUtSSzZxSzYvMC8wgYoG CCsGAQUFBzAKhn5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBvLzhG RENoNlg1eXJLZDdDWVl2WnBETDlTcVN6TUFCalBhYTZkczFLUks2cUs2LzAvQzMz QTVEREM3NTRCRDE2NTU1RkUxMzJBN0VFMEYwNThDMkZGN0I1Ni5tZnQwPwYIKwYB BQUHMA2GM2h0dHBzOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBNQYIKwYBBQUH AQcBAf8EggEkMIIBIDCB8gQCAAEwgesDBAItR+ADBAItoqQDBAIt48ADBAIt7mwD BAIt7qQDBAKDZGADBAKKunQDBAKKzEgDBAKP0AwDBAKP/2QDBAKoAAQDBAKqAKgD BAKqVDgDBAKq6SgDBAKq9dgDBAKq98ADBAKxSbwDBASxS2ADBAWxS4ADBAOxVgAD BAOxfSADBASxfsADBASxmmADBAKx6oQDBASzf4ADBASzf+ADBAKzvyQDBAO62JAw CwMDArrsAwQEuuwgAwQCuvpYAwQEuxIgAwQFuy1gAwQEuzHgAwQEu1fQAwQEu26w AwQEvX4wAwQCvySEAwQEyOWwMCkEAgACMCMDBQAoBAMQAwUAKAQG3AMFACgEEIwD BQAoBBvYAwUAKAQm4DAmBggrBgEFBQcBCAEB/wQXMBWgEzARAgIbiAICbfICAm5A AgMEAiAwDQYJKoZIhvcNAQELBQADggEBABt8hFxDxDq+GNXx28+6X1CY95Z8KhdO WTH1FWbKVcOXbhzEvY4eiOpDi+D7bBP/izOo+pewxMD4++6qW1HdaYJWscuZkUir r83+VzxJBYQCM7/Zy/qEphT+k52DupBdSYSYGHDMpVWzntUCnAa66O4eAUgQ9Y7Y D57clbq3qQu9kY7geHvA+SXpOIuRGRjNr+DVN/F3BvUaCKxTD9caT2mY6rbAdwvr Q0Pk+V6k50HLTVxsiOepLUyjC+u94Pzx1LpFf7Db57n7lOvoA+/sevC4TA5cvWLu erhRm6WCwhZGv0YhCM4X/sZNG++d4+sN13OgZl1KzuIAZIbRGPFt8F4= -----END CERTIFICATE-----Generated at Wed Nov 27 02:16:58 2024 by rpki-client on console-fra.rpki-client.org