Certificate
$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/1/D1FE02A4C126A3FA7B9D44BEA18A15962D71BF70.cer
File: D1FE02A4C126A3FA7B9D44BEA18A15962D71BF70.cer (raw, json)
Hash identifier: bQZ8J6eJf+m+qit2MlAXPyBjq6DOYenPsESMV4P7qVk=
Subject key identifier: D1:FE:02:A4:C1:26:A3:FA:7B:9D:44:BE:A1:8A:15:96:2D:71:BF:70
Authority key identifier: 60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B
Certificate issuer: /CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B
Certificate serial: 3E2976EE55CDD39B7A35FB4C43F16C5E3042699B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
Manifest: rsync://rpki-repo.registro.br/repo/FE6A4NBbkVWHnfGcJ1QRUacz8Nhe92bq7Bf1GshtcqZP/1/D1FE02A4C126A3FA7B9D44BEA18A15962D71BF70.mft
caRepository: rsync://rpki-repo.registro.br/repo/FE6A4NBbkVWHnfGcJ1QRUacz8Nhe92bq7Bf1GshtcqZP/1
Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml
Certificate not before: Thu 04 Apr 2024 08:06:34 +0000
Certificate not after: Thu 03 Apr 2025 08:11:34 +0000
Subordinate resources: AS: 262346
IP: 138.97.0.0/22
IP: 143.202.224.0/22
IP: 170.150.100.0/22
IP: 177.125.160.0/21
IP: 177.125.204.0/22
IP: 179.107.56.0/21
IP: 2804:81c::/32
Validation: Failed, certificate revoked on Fri 05 Jul 2024 00:48:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:29:76:ee:55:cd:d3:9b:7a:35:fb:4c:43:f1:6c:5e:30:42:69:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B
Validity
Not Before: Apr 4 08:06:34 2024 GMT
Not After : Apr 3 08:11:34 2025 GMT
Subject: CN=D1FE02A4C126A3FA7B9D44BEA18A15962D71BF70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:05:b7:50:7e:f9:1e:00:0a:af:80:95:5d:7b:
9e:9a:e3:78:58:b3:b1:a9:08:12:17:ab:a7:cc:5b:
00:41:68:60:83:e3:bb:56:7d:3b:3a:89:60:1a:da:
46:c8:a6:05:de:cd:d4:90:25:34:5d:81:fa:c2:d3:
74:67:79:76:8a:05:5e:01:82:3d:bf:bc:22:d5:ea:
b8:b8:f3:e1:5b:da:0c:e1:a0:84:64:a0:a0:3b:36:
ab:aa:49:4b:9f:6b:d1:0d:73:59:8a:24:d5:85:b2:
cc:58:51:72:77:94:9c:40:9e:9a:5c:99:f6:a0:d7:
ac:1c:3e:7c:87:49:2a:a2:27:cf:f7:55:6e:ea:23:
e9:c7:30:dd:c7:3b:bb:58:27:1b:af:02:bf:d6:12:
c9:b2:ce:6f:a1:1f:1a:5b:02:5a:88:1d:97:ef:6e:
f4:80:ce:77:56:3e:24:f5:1b:22:e9:69:26:eb:d0:
a6:52:d5:7a:bc:37:91:bc:94:dd:74:a5:5a:0e:88:
20:76:99:d5:e4:ca:3b:38:5f:27:98:7d:36:95:b1:
ab:9f:0b:03:86:22:8f:c7:54:2a:f4:cb:25:08:26:
68:b5:00:b7:95:d8:8c:1a:d4:3d:b3:df:fb:de:c6:
d7:52:af:86:8b:25:20:89:af:86:24:e7:93:4d:1a:
8c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
D1:FE:02:A4:C1:26:A3:FA:7B:9D:44:BE:A1:8A:15:96:2D:71:BF:70
X509v3 Authority Key Identifier:
keyid:60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.registro.br/repo/FE6A4NBbkVWHnfGcJ1QRUacz8Nhe92bq7Bf1GshtcqZP/1
RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/FE6A4NBbkVWHnfGcJ1QRUacz8Nhe92bq7Bf1GshtcqZP/1/D1FE02A4C126A3FA7B9D44BEA18A15962D71BF70.mft
RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.97.0.0/22
143.202.224.0/22
170.150.100.0/22
177.125.160.0/21
177.125.204.0/22
179.107.56.0/21
IPv6:
2804:81c::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
262346
Signature Algorithm: sha256WithRSAEncryption
94:04:07:64:a9:9c:ff:92:39:b3:3f:d1:c6:83:c1:7e:35:42:
18:27:4c:a9:13:3b:1a:bf:d3:05:5b:4e:fd:0e:6f:7d:2d:81:
05:38:cf:09:87:b1:cd:66:3e:fa:88:6c:83:57:70:b1:aa:bf:
81:c9:6b:a8:56:3f:6c:d7:71:b8:ad:64:76:2d:5b:df:06:67:
9b:a4:02:62:7f:20:1a:e4:7d:cb:65:4a:e3:1a:84:57:da:cf:
82:b1:9c:ce:95:4c:b1:34:e3:5f:98:90:25:09:9d:0a:20:ab:
22:42:8e:a6:f5:92:5f:e5:26:9a:e7:09:fb:f1:92:90:23:9c:
f1:08:ef:a4:65:fd:e2:10:1c:cd:47:6d:7c:22:5c:df:66:b1:
62:d7:95:d5:d7:0d:fa:11:0b:d8:3d:48:2b:8c:7b:cb:2c:a9:
9e:cc:ac:83:61:1f:fa:44:06:88:de:aa:d6:44:c9:50:5e:08:
a0:04:25:49:57:37:29:58:e3:7a:42:4b:2e:1b:6c:e2:a2:b1:
11:c7:5b:13:99:e8:04:8a:6a:a2:ae:c9:1e:f9:13:c3:10:50:
f5:77:21:a9:91:33:77:9a:70:ff:77:fd:2c:2e:19:e7:9a:e3:
25:58:44:23:c5:2b:0e:27:d9:42:3d:9d:f8:00:b9:2b:4e:9c:
d8:86:5f:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 02:53:42 2024 by rpki-client on console-fra.rpki-client.org