$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/1/068FDFC5A2B7BE1387BDBDBF1E8D51EAF4D20F2D.cer File: 068FDFC5A2B7BE1387BDBDBF1E8D51EAF4D20F2D.cer (raw, json) Hash identifier: Hy4JcN79jdU6bLGBuhXLeBlJA5VmY7Xt1ohs0yTDSZs= Subject key identifier: 06:8F:DF:C5:A2:B7:BE:13:87:BD:BD:BF:1E:8D:51:EA:F4:D2:0F:2D Authority key identifier: 60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B Certificate issuer: /CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Certificate serial: 2A0B2CD0E9733F29ABE8563AFB466F3437A41538 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Manifest: rsync://rpki-repo.registro.br/repo/H2ADHL2BQbxFQzH5pquqBKDvofb4VMYjZTNDegQrVDcw/1/068FDFC5A2B7BE1387BDBDBF1E8D51EAF4D20F2D.mft caRepository: rsync://rpki-repo.registro.br/repo/H2ADHL2BQbxFQzH5pquqBKDvofb4VMYjZTNDegQrVDcw/1/ Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml Certificate not before: Thu 04 Apr 2024 17:17:35 +0000 Certificate not after: Thu 03 Apr 2025 17:22:35 +0000 Subordinate resources: AS: 264993 IP: 170.84.116.0/22 IP: 2804:311c::/32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Oct 2024 05:28:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:0b:2c:d0:e9:73:3f:29:ab:e8:56:3a:fb:46:6f:34:37:a4:15:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Validity Not Before: Apr 4 17:17:35 2024 GMT Not After : Apr 3 17:22:35 2025 GMT Subject: CN=068FDFC5A2B7BE1387BDBDBF1E8D51EAF4D20F2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:97:c4:98:eb:28:4d:0f:1c:14:64:f1:83:cd: b5:a9:fc:1b:26:01:db:df:bd:d7:ef:f2:d6:6b:1a: 46:ab:48:6c:0a:ce:55:7d:b6:54:1b:e0:6f:4d:46: 21:dd:b6:2b:d3:81:3a:c9:4f:29:da:bf:8a:ce:71: bb:20:c6:04:72:65:38:13:7a:7e:29:4d:a5:17:05: ca:16:64:45:92:e7:31:4e:6f:ce:e4:3f:06:eb:65: 4b:be:97:41:b2:3a:54:5b:c4:33:4d:d3:b6:9a:b3: 5d:e5:9f:5e:5c:d0:9b:a1:95:77:6e:d0:ad:e5:4c: 7a:88:cc:4f:a3:87:d4:07:51:01:81:5f:86:c5:fc: 51:c5:6f:85:47:d3:5c:28:6f:f3:38:56:32:f2:db: 0d:3b:0c:4a:81:3f:05:e8:3d:a1:ae:56:d2:35:52: f7:13:a3:30:3f:f8:ce:29:b3:b3:8d:cb:75:5e:3f: 0c:fc:6d:2c:13:1b:0a:f2:bc:5c:dc:7d:08:52:84: 0d:e0:6d:e4:5a:f8:59:10:93:6f:69:84:5c:fb:e6: e4:c8:7e:25:4a:6f:a6:cc:ac:6a:a6:ab:77:e1:51: 6c:8c:a1:3e:3a:21:06:1e:84:44:bc:58:18:62:71: 57:62:4d:c1:7c:ad:ba:95:23:3d:2c:45:1a:01:49: d1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 06:8F:DF:C5:A2:B7:BE:13:87:BD:BD:BF:1E:8D:51:EA:F4:D2:0F:2D X509v3 Authority Key Identifier: keyid:60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Subject Information Access: CA Repository - URI:rsync://rpki-repo.registro.br/repo/H2ADHL2BQbxFQzH5pquqBKDvofb4VMYjZTNDegQrVDcw/1/ RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/H2ADHL2BQbxFQzH5pquqBKDvofb4VMYjZTNDegQrVDcw/1/068FDFC5A2B7BE1387BDBDBF1E8D51EAF4D20F2D.mft RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.84.116.0/22 IPv6: 2804:311c::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 264993 Signature Algorithm: sha256WithRSAEncryption 83:58:73:fa:d3:32:76:e0:64:01:b5:80:d5:5d:72:c3:28:83: fa:35:88:4b:91:5e:6c:b3:28:4b:52:4e:ca:9a:6e:d0:5f:a0: 65:24:fc:6e:9e:2e:d6:89:45:49:20:a1:95:36:cd:5d:ca:0a: b5:47:7c:c0:61:a1:e0:b7:c8:b3:8b:6c:28:e5:21:de:b4:82: b2:5b:d4:be:c0:12:4e:05:c8:e2:cb:ea:33:2b:3a:3c:b2:dc: 35:1e:17:be:a3:ab:c6:fe:0d:18:aa:1b:99:ed:2f:15:be:a0: ce:19:6c:59:52:82:97:f9:b4:f6:4e:23:a3:1b:99:66:f5:97: 9e:f3:a1:2d:55:7b:bb:8f:45:ef:9b:f8:4a:4b:4c:88:e9:63: 9e:99:34:6c:46:96:3f:36:1d:6e:dd:7d:09:c2:25:5c:7f:16: 5f:28:7b:5e:53:42:25:b4:55:20:7f:d3:30:13:ce:68:8a:ec: f6:4f:4c:c3:52:00:0d:5b:ae:55:15:cf:b0:a8:40:e5:f0:a3: 80:2b:1b:b5:88:93:b6:b9:3f:62:e1:8d:44:fe:8b:07:3d:e6: da:1d:8d:96:8e:35:af:13:ad:ad:3a:ba:6d:77:4c:cf:2d:b3: a9:07:65:00:fa:05:4d:97:77:0b:d0:66:3f:47:fe:42:ec:4a: 05:f0:aa:d2 -----BEGIN CERTIFICATE----- MIIGMDCCBRigAwIBAgIUKgss0OlzPymr6FY6+0ZvNDekFTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA1NDMyRTlFMUIwNUE3RTZDMjA4QjI5NDZGREM5Qzk2 N0NBOEE0QjAeFw0yNDA0MDQxNzE3MzVaFw0yNTA0MDMxNzIyMzVaMDMxMTAvBgNV BAMTKDA2OEZERkM1QTJCN0JFMTM4N0JEQkRCRjFFOEQ1MUVBRjREMjBGMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZl8SY6yhNDxwUZPGDzbWp/Bsm Advfvdfv8tZrGkarSGwKzlV9tlQb4G9NRiHdtivTgTrJTynav4rOcbsgxgRyZTgT en4pTaUXBcoWZEWS5zFOb87kPwbrZUu+l0GyOlRbxDNN07aas13ln15c0JuhlXdu 0K3lTHqIzE+jh9QHUQGBX4bF/FHFb4VH01wob/M4VjLy2w07DEqBPwXoPaGuVtI1 UvcTozA/+M4ps7ONy3VePwz8bSwTGwryvFzcfQhShA3gbeRa+FkQk29phFz75uTI fiVKb6bMrGqmq3fhUWyMoT46IQYehES8WBhicVdiTcF8rbqVIz0sRRoBSdF/AgMB AAGjggM6MIIDNjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBQGj9/Fore+E4e9 vb8ejVHq9NIPLTAfBgNVHSMEGDAWgBRgVDLp4bBafmwgiylG/cnJZ8qKSzAOBgNV HQ8BAf8EBAMCAQYwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtpLXJlcG8u cmVnaXN0cm8uYnIvcmVwby9uaWNicl9yZXBvLzEvNjA1NDMyRTlFMUIwNUE3RTZD MjA4QjI5NDZGREM5Qzk2N0NBOEE0Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGpMIGm BggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kv bGFjbmljL0ExNTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFB QTEwMDc1RjY3MTY1Qjk4QzRGNEVGQzMvMC82MDU0MzJFOUUxQjA1QTdFNkMyMDhC Mjk0NkZEQzlDOTY3Q0E4QTRCLmNlcjCCAUAGCCsGAQUFBwELBIIBMjCCAS4wXgYI KwYBBQUHMAWGUnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8vSDJB REhMMkJRYnhGUXpINXBxdXFCS0R2b2ZiNFZNWWpaVE5EZWdRclZEY3cvMS8wgYoG CCsGAQUFBzAKhn5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBvL0gy QURITDJCUWJ4RlF6SDVwcXVxQktEdm9mYjRWTVlqWlRORGVnUXJWRGN3LzEvMDY4 RkRGQzVBMkI3QkUxMzg3QkRCREJGMUU4RDUxRUFGNEQyMEYyRC5tZnQwPwYIKwYB BQUHMA2GM2h0dHBzOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQCqlR0MA0EAgACMAcDBQAoBDEcMBoGCCsGAQUFBwEI AQH/BAswCaAHMAUCAwQLITANBgkqhkiG9w0BAQsFAAOCAQEAg1hz+tMyduBkAbWA 1V1ywyiD+jWIS5FebLMoS1JOyppu0F+gZST8bp4u1olFSSChlTbNXcoKtUd8wGGh 4LfIs4tsKOUh3rSCslvUvsASTgXI4svqMys6PLLcNR4XvqOrxv4NGKobme0vFb6g zhlsWVKCl/m09k4joxuZZvWXnvOhLVV7u49F75v4SktMiOljnpk0bEaWPzYdbt19 CcIlXH8WXyh7XlNCJbRVIH/TMBPOaIrs9k9Mw1IADVuuVRXPsKhA5fCjgCsbtYiT trk/YuGNRP6LBz3m2h2Nlo41rxOtrTq6bXdMzy2zqQdlAPoFTZd3C9BmP0f+QuxK BfCq0g== -----END CERTIFICATE-----Generated at Mon Oct 21 06:36:42 2024 by rpki-client on console.sobornost.net