$ rpki-client -vvf rpki-repo.registro.br/repo/nicbr_repo/1/7AB7C9AAEA1D2920102D052E1AC45ECA3439B2F0.cer File: 7AB7C9AAEA1D2920102D052E1AC45ECA3439B2F0.cer (raw, json) Hash identifier: rmEAnCId78QHKtR+nbTX4ix1CtBrcVoNHuwBsddhJS0= Subject key identifier: 7A:B7:C9:AA:EA:1D:29:20:10:2D:05:2E:1A:C4:5E:CA:34:39:B2:F0 Authority key identifier: 60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B Certificate issuer: /CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Certificate serial: 3DAD33141BE68C12E657BBC045C1784A4EA9C59A Authority info access: rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Manifest: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/7AB7C9AAEA1D2920102D052E1AC45ECA3439B2F0.mft caRepository: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/ Notify URL: https://rpki-repo.registro.br/rrdp/notification.xml Certificate not before: Mon 12 May 2025 12:43:56 +0000 Certificate not after: Mon 11 May 2026 12:48:56 +0000 Subordinate resources: AS: 7048 AS: 28146 AS: 28224 AS: 262688 IP: 45.71.224.0/22 IP: 45.162.164.0/22 IP: 45.227.192.0/22 IP: 45.238.108.0/22 IP: 45.238.164.0/22 IP: 131.100.96.0/22 IP: 138.186.116.0/22 IP: 138.204.72.0/22 IP: 143.208.12.0/22 IP: 143.255.100.0/22 IP: 168.0.4.0/22 IP: 170.0.168.0/22 IP: 170.84.56.0/22 IP: 170.233.40.0/22 IP: 170.245.216.0/22 IP: 170.247.192.0/22 IP: 177.73.188.0/22 IP: 177.75.96.0/20 IP: 177.75.128.0/19 IP: 177.86.0.0/21 IP: 177.125.32.0/21 IP: 177.126.192.0/20 IP: 177.154.96.0/20 IP: 177.234.132.0/22 IP: 179.127.128.0/20 IP: 179.127.224.0/20 IP: 179.191.36.0/22 IP: 186.216.144.0/21 IP: 186.236.0.0 -- 186.236.47.255 IP: 186.250.88.0/22 IP: 187.18.32.0/20 IP: 187.45.96.0/19 IP: 187.49.224.0/20 IP: 187.87.208.0/20 IP: 187.110.176.0/20 IP: 189.126.48.0/20 IP: 191.36.132.0/22 IP: 200.229.176.0/20 IP: 2804:310::/32 IP: 2804:6dc::/32 IP: 2804:108c::/32 IP: 2804:1bd8::/32 IP: 2804:26e0::/32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 14 May 2025 04:28:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ad:33:14:1b:e6:8c:12:e6:57:bb:c0:45:c1:78:4a:4e:a9:c5:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=605432E9E1B05A7E6C208B2946FDC9C967CA8A4B Validity Not Before: May 12 12:43:56 2025 GMT Not After : May 11 12:48:56 2026 GMT Subject: CN=7AB7C9AAEA1D2920102D052E1AC45ECA3439B2F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f7:b6:02:03:4e:87:07:3f:1c:7b:01:7c:60: 2c:bc:6c:e1:9c:35:0c:01:ae:d8:3d:9d:aa:0c:06: 63:7c:95:34:ef:cb:94:4d:11:23:7f:5b:80:3c:09: 4c:c7:4a:5f:fa:d1:0c:5a:f1:f7:81:b7:f1:a1:06: e4:f9:da:2c:6f:9c:0f:64:e3:4b:71:7d:8c:6f:29: b0:a9:eb:3a:e6:fb:47:81:c0:95:66:48:9e:33:bb: 57:a2:83:e9:c9:99:d2:11:20:9e:92:a1:9a:93:7e: a5:1c:b0:ee:96:0a:71:d2:20:70:c6:4c:60:2c:dd: 95:56:de:97:ef:1a:da:c1:ff:0c:22:8b:ce:21:d3: 27:cd:62:dd:af:b9:d8:7b:b1:4e:d7:c0:5d:9f:28: 17:78:c2:e9:78:2a:d3:5d:e5:77:63:22:15:44:f7: a8:4f:98:0d:0a:97:0c:a8:a7:0b:59:81:3f:58:46: 16:ee:dc:51:e6:f7:a9:22:6d:de:52:01:a3:c9:51: d6:94:79:2e:86:f7:8f:2e:6f:82:b4:ac:b6:73:67: ab:4a:ce:fd:a9:6a:40:79:d9:4c:bd:8d:65:1c:6e: 3b:ca:1f:2f:45:a5:9c:f2:7f:71:64:be:8a:4e:9e: 6f:dc:9f:3b:b6:21:13:bf:3a:8d:95:8f:bd:60:c0: 02:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 7A:B7:C9:AA:EA:1D:29:20:10:2D:05:2E:1A:C4:5E:CA:34:39:B2:F0 X509v3 Authority Key Identifier: keyid:60:54:32:E9:E1:B0:5A:7E:6C:20:8B:29:46:FD:C9:C9:67:CA:8A:4B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer Subject Information Access: CA Repository - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/ RPKI Manifest - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/7AB7C9AAEA1D2920102D052E1AC45ECA3439B2F0.mft RPKI Notify - URI:https://rpki-repo.registro.br/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.71.224.0/22 45.162.164.0/22 45.227.192.0/22 45.238.108.0/22 45.238.164.0/22 131.100.96.0/22 138.186.116.0/22 138.204.72.0/22 143.208.12.0/22 143.255.100.0/22 168.0.4.0/22 170.0.168.0/22 170.84.56.0/22 170.233.40.0/22 170.245.216.0/22 170.247.192.0/22 177.73.188.0/22 177.75.96.0/20 177.75.128.0/19 177.86.0.0/21 177.125.32.0/21 177.126.192.0/20 177.154.96.0/20 177.234.132.0/22 179.127.128.0/20 179.127.224.0/20 179.191.36.0/22 186.216.144.0/21 186.236.0.0-186.236.47.255 186.250.88.0/22 187.18.32.0/20 187.45.96.0/19 187.49.224.0/20 187.87.208.0/20 187.110.176.0/20 189.126.48.0/20 191.36.132.0/22 200.229.176.0/20 IPv6: 2804:310::/32 2804:6dc::/32 2804:108c::/32 2804:1bd8::/32 2804:26e0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 7048 28146 28224 262688 Signature Algorithm: sha256WithRSAEncryption cc:10:11:64:22:8c:e7:aa:64:d9:2e:25:8e:33:96:b8:44:82: 12:cc:8e:06:39:dd:08:18:c1:f8:33:56:ac:73:4b:c4:e9:c5: 6d:bc:ff:61:11:88:7d:14:04:f0:2c:72:54:06:84:4f:83:63: 12:9d:2b:d2:5b:68:ac:1a:9c:85:15:9f:2d:b2:21:d4:2a:1b: d5:7d:24:71:4a:cf:d6:a4:d6:81:e8:bd:3b:3b:c8:1f:00:43: 1a:fd:99:71:b2:c4:d1:67:13:92:8d:e5:fb:b8:05:8e:16:d2: 65:78:8f:cc:de:32:b5:58:f9:07:b5:e9:79:b2:e7:a6:cc:ea: d8:fd:65:4e:46:5b:09:97:c9:a4:a6:f9:10:25:7e:71:3b:cd: 4e:76:be:d9:ff:0a:08:39:3e:96:19:2b:41:e8:cc:bf:97:2e: cf:11:0a:cf:c2:b0:f8:19:e0:cb:a3:99:37:fc:dc:cd:61:e6: fa:28:12:fa:6c:2a:34:da:bf:99:b4:28:8e:c5:4f:ed:80:7a: ac:4d:d0:dc:c0:e5:c1:34:1b:a3:68:12:3a:03:fe:c3:0a:75: 38:f8:0a:7a:68:b1:a2:a7:68:54:ec:b0:a1:50:28:ef:e8:ff: 32:5a:be:4f:2f:08:0a:eb:d0:d7:32:6e:c4:75:43:58:74:b6: 58:1e:24:a3 -----BEGIN CERTIFICATE----- MIIHRTCCBi2gAwIBAgIUPa0zFBvmjBLmV7vARcF4Sk6pxZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA1NDMyRTlFMUIwNUE3RTZDMjA4QjI5NDZGREM5Qzk2 N0NBOEE0QjAeFw0yNTA1MTIxMjQzNTZaFw0yNjA1MTExMjQ4NTZaMDMxMTAvBgNV BAMTKDdBQjdDOUFBRUExRDI5MjAxMDJEMDUyRTFBQzQ1RUNBMzQzOUIyRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC797YCA06HBz8cewF8YCy8bOGc NQwBrtg9naoMBmN8lTTvy5RNESN/W4A8CUzHSl/60Qxa8feBt/GhBuT52ixvnA9k 40txfYxvKbCp6zrm+0eBwJVmSJ4zu1eig+nJmdIRIJ6SoZqTfqUcsO6WCnHSIHDG TGAs3ZVW3pfvGtrB/wwii84h0yfNYt2vudh7sU7XwF2fKBd4wul4KtNd5XdjIhVE 96hPmA0KlwyopwtZgT9YRhbu3FHm96kibd5SAaPJUdaUeS6G948ub4K0rLZzZ6tK zv2pakB52Uy9jWUcbjvKHy9FpZzyf3FkvopOnm/cnzu2IRO/Oo2Vj71gwAInAgMB AAGjggRPMIIESzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBR6t8mq6h0pIBAt BS4axF7KNDmy8DAfBgNVHSMEGDAWgBRgVDLp4bBafmwgiylG/cnJZ8qKSzAOBgNV HQ8BAf8EBAMCAQYwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtpLXJlcG8u cmVnaXN0cm8uYnIvcmVwby9uaWNicl9yZXBvLzEvNjA1NDMyRTlFMUIwNUE3RTZD MjA4QjI5NDZGREM5Qzk2N0NBOEE0Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGpMIGm BggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kv bGFjbmljL0ExNTMxQjI0QkY1MEM0NjFDN0Y1NzRDRDY1MjY3QThCMERDMzI1REFB QTEwMDc1RjY3MTY1Qjk4QzRGNEVGQzMvMC82MDU0MzJFOUUxQjA1QTdFNkMyMDhC Mjk0NkZEQzlDOTY3Q0E4QTRCLmNlcjCCAUAGCCsGAQUFBwELBIIBMjCCAS4wXgYI KwYBBQUHMAWGUnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JlcG8vOEZE Q2g2WDV5cktkN0NZWXZacERMOVNxU3pNQUJqUGFhNmRzMUtSSzZxSzYvMC8wgYoG CCsGAQUFBzAKhn5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBvLzhG RENoNlg1eXJLZDdDWVl2WnBETDlTcVN6TUFCalBhYTZkczFLUks2cUs2LzAvN0FC N0M5QUFFQTFEMjkyMDEwMkQwNTJFMUFDNDVFQ0EzNDM5QjJGMC5tZnQwPwYIKwYB BQUHMA2GM2h0dHBzOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJyL3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBNQYIKwYBBQUH AQcBAf8EggEkMIIBIDCB8gQCAAEwgesDBAItR+ADBAItoqQDBAIt48ADBAIt7mwD BAIt7qQDBAKDZGADBAKKunQDBAKKzEgDBAKP0AwDBAKP/2QDBAKoAAQDBAKqAKgD BAKqVDgDBAKq6SgDBAKq9dgDBAKq98ADBAKxSbwDBASxS2ADBAWxS4ADBAOxVgAD BAOxfSADBASxfsADBASxmmADBAKx6oQDBASzf4ADBASzf+ADBAKzvyQDBAO62JAw CwMDArrsAwQEuuwgAwQCuvpYAwQEuxIgAwQFuy1gAwQEuzHgAwQEu1fQAwQEu26w AwQEvX4wAwQCvySEAwQEyOWwMCkEAgACMCMDBQAoBAMQAwUAKAQG3AMFACgEEIwD BQAoBBvYAwUAKAQm4DAmBggrBgEFBQcBCAEB/wQXMBWgEzARAgIbiAICbfICAm5A AgMEAiAwDQYJKoZIhvcNAQELBQADggEBAMwQEWQijOeqZNkuJY4zlrhEghLMjgY5 3QgYwfgzVqxzS8TpxW28/2ERiH0UBPAsclQGhE+DYxKdK9JbaKwanIUVny2yIdQq G9V9JHFKz9ak1oHovTs7yB8AQxr9mXGyxNFnE5KN5fu4BY4W0mV4j8zeMrVY+Qe1 6Xmy56bM6tj9ZU5GWwmXyaSm+RAlfnE7zU52vtn/Cgg5PpYZK0HozL+XLs8RCs/C sPgZ4MujmTf83M1h5vooEvpsKjTav5m0KI7FT+2AeqxN0NzA5cE0G6NoEjoD/sMK dTj4CnposaKnaFTssKFQKO/o/zJavk8vCArr0NcybsR1Q1h0tlgeJKM= -----END CERTIFICATE-----Generated at Tue May 13 03:09:53 2025 by rpki-client