Certificate
$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/0/43AF1F275D41CABA3164AC3D1BA7DDD2E3E0AC47.cer
File: 43AF1F275D41CABA3164AC3D1BA7DDD2E3E0AC47.cer (raw, json)
Hash identifier: ZlJoYR6WlRLD0lgjP+ygHGVywMNdB0xoZj5L0LP/QcI=
Subject key identifier: 43:AF:1F:27:5D:41:CA:BA:31:64:AC:3D:1B:A7:DD:D2:E3:E0:AC:47
Authority key identifier: EE:91:7E:BC:7A:15:87:83:B4:4B:C6:ED:82:21:74:34:F2:8A:DE:FB
Certificate issuer: /CN=EE917EBC7A158783B44BC6ED82217434F28ADEFB
Certificate serial: 0EE55F77EBA567AE8A06397260558752FA20E940
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd25c9bb7e5cac7419fa9193770f64a6edf20c19.cer
Manifest: rsync://rpki-repo.registro.br/repo/EZmzhFfk5kKaw1Kp7LmJB1G3y8zZp8iJ6w766Myeanuj/0/43AF1F275D41CABA3164AC3D1BA7DDD2E3E0AC47.mft
caRepository: rsync://rpki-repo.registro.br/repo/EZmzhFfk5kKaw1Kp7LmJB1G3y8zZp8iJ6w766Myeanuj/0/
Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml
Certificate not before: Sun 07 Jan 2024 07:06:20 +0000
Certificate not after: Sun 05 Jan 2025 07:11:20 +0000
Subordinate resources: AS: 263661
IP: 45.179.86.0/23
IP: 168.205.124.0/22
IP: 177.221.56.0/22
IP: 187.63.236.0/22
IP: 2804:1128::/32
Validation: Failed, certificate revoked on Sun 21 Jan 2024 02:48:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:e5:5f:77:eb:a5:67:ae:8a:06:39:72:60:55:87:52:fa:20:e9:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE917EBC7A158783B44BC6ED82217434F28ADEFB
Validity
Not Before: Jan 7 07:06:20 2024 GMT
Not After : Jan 5 07:11:20 2025 GMT
Subject: CN=43AF1F275D41CABA3164AC3D1BA7DDD2E3E0AC47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ae:a9:b2:5e:f4:7d:2a:79:83:71:b4:1a:b8:
1b:e6:20:3e:a1:88:1f:6d:76:57:b8:6e:95:15:c6:
6d:85:08:76:c3:11:38:89:71:2c:fd:cb:29:2d:2b:
15:53:f7:35:f1:0e:71:1d:e5:08:6e:1b:7a:9d:8c:
b0:b9:eb:5a:fe:38:d5:41:0d:69:3a:bc:26:05:7d:
1c:3b:b1:ae:18:80:86:ff:fa:7e:ae:df:bb:82:e9:
18:52:77:80:62:3a:f2:2b:8e:2e:0f:b3:97:86:68:
21:f2:06:ea:ba:a2:29:34:73:f8:1e:1f:0c:ca:85:
07:bd:eb:b0:3e:c3:da:a1:dd:9d:01:61:a1:15:bc:
9d:cd:36:e8:66:cf:9e:1d:f2:c3:dc:e7:53:b9:20:
01:61:45:1d:4f:bf:6a:8a:55:ee:c4:b7:e4:c0:b1:
d3:20:e2:a8:eb:25:75:3b:17:db:b9:78:b0:2a:c0:
37:60:15:01:89:13:b1:b7:eb:7f:98:6e:9a:74:ec:
4c:23:6f:fa:c1:1a:eb:66:34:24:b8:e8:f0:f8:6f:
e2:d4:9f:ec:4c:3a:7a:72:bb:b9:0d:24:5c:54:1e:
c7:7e:ed:35:62:ed:13:c2:d3:4a:84:dd:ad:b3:1d:
55:d2:a5:c0:91:60:8b:45:6f:75:ec:a1:ad:d1:7a:
7a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
43:AF:1F:27:5D:41:CA:BA:31:64:AC:3D:1B:A7:DD:D2:E3:E0:AC:47
X509v3 Authority Key Identifier:
keyid:EE:91:7E:BC:7A:15:87:83:B4:4B:C6:ED:82:21:74:34:F2:8A:DE:FB
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/EE917EBC7A158783B44BC6ED82217434F28ADEFB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd25c9bb7e5cac7419fa9193770f64a6edf20c19.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.registro.br/repo/EZmzhFfk5kKaw1Kp7LmJB1G3y8zZp8iJ6w766Myeanuj/0/
RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/EZmzhFfk5kKaw1Kp7LmJB1G3y8zZp8iJ6w766Myeanuj/0/43AF1F275D41CABA3164AC3D1BA7DDD2E3E0AC47.mft
RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.179.86.0/23
168.205.124.0/22
177.221.56.0/22
187.63.236.0/22
IPv6:
2804:1128::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
263661
Signature Algorithm: sha256WithRSAEncryption
a9:4c:db:8a:c6:69:93:ac:14:ff:19:bc:d4:da:92:e2:b8:95:
aa:04:c6:70:da:d8:28:85:a4:e3:14:91:af:1c:26:41:5e:54:
fb:40:8d:6c:2c:66:d2:2c:10:7a:2b:27:f2:d4:5d:51:bc:0e:
41:61:7b:23:87:15:54:ee:e9:96:5a:ae:bd:b8:9e:53:5b:42:
b0:8c:07:6e:8f:9e:61:36:2d:c8:98:0a:21:8f:02:ce:2f:06:
b5:f0:43:74:96:52:4a:dd:86:7a:a6:6e:3f:79:b0:25:3a:70:
0e:6b:a5:6c:a6:6b:0e:0c:0e:53:b1:5a:d5:d1:0b:1a:64:3f:
1f:41:ec:0e:af:73:0c:e7:14:56:6c:9a:af:87:42:5a:2d:8a:
ea:c3:09:e0:93:c3:55:9b:f3:2a:20:fd:6f:65:5c:10:be:47:
fa:31:fc:89:74:d9:a9:ba:33:c0:98:53:2b:ac:b7:3e:49:25:
f0:12:1d:bb:01:37:b5:00:14:65:ca:da:e5:59:c1:35:a6:b9:
85:24:85:9d:0e:2f:13:73:b2:bc:64:68:0b:d8:22:31:fe:15:
4a:4b:5e:c4:65:da:fe:27:e5:23:99:70:27:25:f7:85:98:1f:
1a:51:5a:b7:8e:d3:a0:1f:5f:9a:6f:88:93:75:c0:08:4e:0b:
c7:9d:bc:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 00:57:09 2024 by rpki-client on console.sobornost.net