$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/1/D1FE02A4C126A3FA7B9D44BEA18A15962D71BF70.cer File: D1FE02A4C126A3FA7B9D44BEA18A15962D71BF70.cer (raw, json) Hash identifier: bQZ8J6eJf+m+qit2MlAXPyBjq6DOYenPsESMV4P7qVk= Subject key identifier: D1:FE:02:A4:C1:26:A3:FA:7B:9D:44:BE:A1:8A:15:96:2D:71:BF:70 Authority key identifier: 60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B Certificate issuer: /CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Certificate serial: 3E2976EE55CDD39B7A35FB4C43F16C5E3042699B Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Manifest: rsync://rpki-repo.registro.br/repo/FE6A4NBbkVWHnfGcJ1QRUacz8Nhe92bq7Bf1GshtcqZP/1/D1FE02A4C126A3FA7B9D44BEA18A15962D71BF70.mft caRepository: rsync://rpki-repo.registro.br/repo/FE6A4NBbkVWHnfGcJ1QRUacz8Nhe92bq7Bf1GshtcqZP/1 Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml Certificate not before: Thu 04 Apr 2024 08:06:34 +0000 Certificate not after: Thu 03 Apr 2025 08:11:34 +0000 Subordinate resources: AS: 262346 IP: 138.97.0.0/22 IP: 143.202.224.0/22 IP: 170.150.100.0/22 IP: 177.125.160.0/21 IP: 177.125.204.0/22 IP: 179.107.56.0/21 IP: 2804:81c::/32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 03 Jun 2024 01:38:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:29:76:ee:55:cd:d3:9b:7a:35:fb:4c:43:f1:6c:5e:30:42:69:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Validity Not Before: Apr 4 08:06:34 2024 GMT Not After : Apr 3 08:11:34 2025 GMT Subject: CN=D1FE02A4C126A3FA7B9D44BEA18A15962D71BF70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:05:b7:50:7e:f9:1e:00:0a:af:80:95:5d:7b: 9e:9a:e3:78:58:b3:b1:a9:08:12:17:ab:a7:cc:5b: 00:41:68:60:83:e3:bb:56:7d:3b:3a:89:60:1a:da: 46:c8:a6:05:de:cd:d4:90:25:34:5d:81:fa:c2:d3: 74:67:79:76:8a:05:5e:01:82:3d:bf:bc:22:d5:ea: b8:b8:f3:e1:5b:da:0c:e1:a0:84:64:a0:a0:3b:36: ab:aa:49:4b:9f:6b:d1:0d:73:59:8a:24:d5:85:b2: cc:58:51:72:77:94:9c:40:9e:9a:5c:99:f6:a0:d7: ac:1c:3e:7c:87:49:2a:a2:27:cf:f7:55:6e:ea:23: e9:c7:30:dd:c7:3b:bb:58:27:1b:af:02:bf:d6:12: c9:b2:ce:6f:a1:1f:1a:5b:02:5a:88:1d:97:ef:6e: f4:80:ce:77:56:3e:24:f5:1b:22:e9:69:26:eb:d0: a6:52:d5:7a:bc:37:91:bc:94:dd:74:a5:5a:0e:88: 20:76:99:d5:e4:ca:3b:38:5f:27:98:7d:36:95:b1: ab:9f:0b:03:86:22:8f:c7:54:2a:f4:cb:25:08:26: 68:b5:00:b7:95:d8:8c:1a:d4:3d:b3:df:fb:de:c6: d7:52:af:86:8b:25:20:89:af:86:24:e7:93:4d:1a: 8c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D1:FE:02:A4:C1:26:A3:FA:7B:9D:44:BE:A1:8A:15:96:2D:71:BF:70 X509v3 Authority Key Identifier: keyid:60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Subject Information Access: CA Repository - URI:rsync://rpki-repo.registro.br/repo/FE6A4NBbkVWHnfGcJ1QRUacz8Nhe92bq7Bf1GshtcqZP/1 RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/FE6A4NBbkVWHnfGcJ1QRUacz8Nhe92bq7Bf1GshtcqZP/1/D1FE02A4C126A3FA7B9D44BEA18A15962D71BF70.mft RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.97.0.0/22 143.202.224.0/22 170.150.100.0/22 177.125.160.0/21 177.125.204.0/22 179.107.56.0/21 IPv6: 2804:81c::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 262346 Signature Algorithm: sha256WithRSAEncryption 94:04:07:64:a9:9c:ff:92:39:b3:3f:d1:c6:83:c1:7e:35:42: 18:27:4c:a9:13:3b:1a:bf:d3:05:5b:4e:fd:0e:6f:7d:2d:81: 05:38:cf:09:87:b1:cd:66:3e:fa:88:6c:83:57:70:b1:aa:bf: 81:c9:6b:a8:56:3f:6c:d7:71:b8:ad:64:76:2d:5b:df:06:67: 9b:a4:02:62:7f:20:1a:e4:7d:cb:65:4a:e3:1a:84:57:da:cf: 82:b1:9c:ce:95:4c:b1:34:e3:5f:98:90:25:09:9d:0a:20:ab: 22:42:8e:a6:f5:92:5f:e5:26:9a:e7:09:fb:f1:92:90:23:9c: f1:08:ef:a4:65:fd:e2:10:1c:cd:47:6d:7c:22:5c:df:66:b1: 62:d7:95:d5:d7:0d:fa:11:0b:d8:3d:48:2b:8c:7b:cb:2c:a9: 9e:cc:ac:83:61:1f:fa:44:06:88:de:aa:d6:44:c9:50:5e:08: a0:04:25:49:57:37:29:58:e3:7a:42:4b:2e:1b:6c:e2:a2:b1: 11:c7:5b:13:99:e8:04:8a:6a:a2:ae:c9:1e:f9:13:c3:10:50: f5:77:21:a9:91:33:77:9a:70:ff:77:fd:2c:2e:19:e7:9a:e3: 25:58:44:23:c5:2b:0e:27:d9:42:3d:9d:f8:00:b9:2b:4e:9c: d8:86:5f:26 -----BEGIN CERTIFICATE----- MIIGTTCCBTWgAwIBAgIUPil27lXN05t6NftMQ/FsXjBCaZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA1NDMyRTlFMUIwNUE3RTZDMjA4QjI5NDZGREM5Qzk2 N0NBOEE0QjAeFw0yNDA0MDQwODA2MzRaFw0yNTA0MDMwODExMzRaMDMxMTAvBgNV BAMTKEQxRkUwMkE0QzEyNkEzRkE3QjlENDRCRUExOEExNTk2MkQ3MUJGNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsBbdQfvkeAAqvgJVde56a43hY s7GpCBIXq6fMWwBBaGCD47tWfTs6iWAa2kbIpgXezdSQJTRdgfrC03RneXaKBV4B gj2/vCLV6ri48+Fb2gzhoIRkoKA7NquqSUufa9ENc1mKJNWFssxYUXJ3lJxAnppc mfag16wcPnyHSSqiJ8/3VW7qI+nHMN3HO7tYJxuvAr/WEsmyzm+hHxpbAlqIHZfv bvSAzndWPiT1GyLpaSbr0KZS1Xq8N5G8lN10pVoOiCB2mdXkyjs4XyeYfTaVsauf CwOGIo/HVCr0yyUIJmi1ALeV2Iwa1D2z3/vextdSr4aLJSCJr4Yk55NNGoxPAgMB AAGjggNXMIIDUzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTR/gKkwSaj+nud RL6hihWWLXG/cDAfBgNVHSMEGDAWgBRgVDLp4bBafmwgiylG/cnJZ8qKSzAOBgNV HQ8BAf8EBAMCAQYwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtpLXJlcG8u cmVnaXN0cm8uYnIvcmVwby9uaWNicl9yZXBvLzEvNjA1NDMyRTlFMUIwNUE3RTZD MjA4QjI5NDZGREM5Qzk2N0NBOEE0Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGpMIGm BggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kv bGFjbmljL0ExNTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFB QTEwMDc1RjY3MTY1Qjk4QzRGNEVGQzMvMC82MDU0MzJFOUUxQjA1QTdFNkMyMDhC Mjk0NkZEQzlDOTY3Q0E4QTRCLmNlcjCCAT8GCCsGAQUFBwELBIIBMTCCAS0wXQYI KwYBBQUHMAWGUXJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8vRkU2 QTROQmJrVldIbmZHY0oxUVJVYWN6OE5oZTkyYnE3QmYxR3NodGNxWlAvMTCBigYI KwYBBQUHMAqGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8vRkU2 QTROQmJrVldIbmZHY0oxUVJVYWN6OE5oZTkyYnE3QmYxR3NodGNxWlAvMS9EMUZF MDJBNEMxMjZBM0ZBN0I5RDQ0QkVBMThBMTU5NjJENzFCRjcwLm1mdDA/BggrBgEF BQcwDYYzaHR0cHM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcnJkcC9ub3RpZmlj YXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwTAYIKwYBBQUHAQcB Af8EPTA7MCoEAgABMCQDBAKKYQADBAKPyuADBAKqlmQDBAOxfaADBAKxfcwDBAOz azgwDQQCAAIwBwMFACgECBwwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDBADKMA0G CSqGSIb3DQEBCwUAA4IBAQCUBAdkqZz/kjmzP9HGg8F+NUIYJ0ypEzsav9MFW079 Dm99LYEFOM8Jh7HNZj76iGyDV3Cxqr+ByWuoVj9s13G4rWR2LVvfBmebpAJifyAa 5H3LZUrjGoRX2s+CsZzOlUyxNONfmJAlCZ0KIKsiQo6m9ZJf5Saa5wn78ZKQI5zx CO+kZf3iEBzNR218IlzfZrFi15XV1w36EQvYPUgrjHvLLKmezKyDYR/6RAaI3qrW RMlQXgigBCVJVzcpWON6QksuG2ziorERx1sTmegEimqirske+RPDEFD1dyGpkTN3 mnD/d/0sLhnnmuMlWEQjxSsOJ9lCPZ34ALkrTpzYhl8m -----END CERTIFICATE-----Generated at Sat Jun 1 23:01:14 2024 by rpki-client on console-ams.rpki-client.org