$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer File: DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer (raw, json) Hash identifier: Yvz0b8HTDbpbSgWJwjosBpcFHKTmUzBimfYdIOJnYyY= Subject key identifier: DD:FB:95:E0:3A:29:4F:DC:FC:9F:3B:70:A2:6B:CF:74:C3:A4:CD:29 Authority key identifier: BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 Certificate issuer: /CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Certificate serial: 6601985CBDCA14196DCADDB1DE77EE2F390DF973 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Manifest: rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.mft caRepository: rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/ Notify URL: https://rrdp.lacnic.net/rrdp/notification.xml Certificate not before: Wed 05 Feb 2025 03:44:25 +0000 Certificate not after: Wed 04 Feb 2026 03:49:25 +0000 Subordinate resources: IP: 45.164.20.0/22 IP: 2806:30a::/32 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 06 Nov 2025 21:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:01:98:5c:bd:ca:14:19:6d:ca:dd:b1:de:77:ee:2f:39:0d:f9:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Validity Not Before: Feb 5 03:44:25 2025 GMT Not After : Feb 4 03:49:25 2026 GMT Subject: CN=DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ef:cd:2f:dc:53:da:5a:91:6b:11:9e:e5:6e: 63:74:99:02:de:c2:d8:67:79:0a:75:56:ff:29:7c: a3:38:fa:38:15:de:da:97:20:63:b6:c9:ef:e5:57: 79:40:66:5e:1e:d0:7f:8f:ad:10:13:6b:aa:57:db: f1:98:b9:80:85:19:ca:aa:09:c2:46:68:ae:2a:e0: ed:3f:23:8d:83:6b:84:90:9e:e1:f1:36:0f:2b:81: 67:50:5a:1e:b4:a2:ee:7d:8d:32:b8:d3:b7:c6:29: 8a:b2:34:dc:b8:e5:d6:56:c2:ed:43:ee:1d:e0:63: b2:69:d0:31:da:f9:9d:49:1b:3b:21:62:47:d0:cb: 2a:cb:c4:b2:9b:e8:0a:b5:e9:0d:25:f4:52:05:fe: 61:c2:22:3f:f3:5f:bb:27:48:16:90:f6:a3:e6:be: 20:76:60:2c:3c:a8:ee:bb:65:81:c7:31:ef:4f:3d: f1:bf:5e:ed:37:b0:47:a5:56:65:d7:75:0d:38:35: 91:d0:81:79:07:6a:fe:60:58:88:57:28:2d:15:73: ae:a0:b6:38:5a:e6:2f:43:cb:c7:ef:46:1f:6e:98: 76:d5:ac:5c:75:c4:d3:f6:13:c7:05:81:ad:89:43: 77:2d:69:6c:64:53:87:a1:eb:49:ff:b7:e2:ab:59: 20:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DD:FB:95:E0:3A:29:4F:DC:FC:9F:3B:70:A2:6B:CF:74:C3:A4:CD:29 X509v3 Authority Key Identifier: keyid:BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Subject Information Access: CA Repository - URI:rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/ RPKI Manifest - URI:rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.mft RPKI Notify - URI:https://rrdp.lacnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.164.20.0/22 IPv6: 2806:30a::/32 Signature Algorithm: sha256WithRSAEncryption d2:e1:95:99:84:4e:fc:bc:3b:17:fe:78:c5:6b:3d:22:a0:f3: be:36:b8:1f:1e:1c:e4:49:7d:81:02:82:69:71:f4:e5:ee:57: 03:14:c4:c5:81:96:92:34:2d:b0:01:a0:12:a8:b6:e9:6e:f8: c8:05:2c:c3:88:92:84:b3:5f:2f:06:e7:79:23:2d:c8:b3:d0: 96:0f:30:7f:08:01:bf:8f:40:75:c5:e0:b1:bc:9f:3f:66:15: c2:61:97:36:c8:b8:f8:c8:be:0f:1a:40:1b:44:bf:d3:48:90: a2:31:85:20:41:40:67:b7:45:31:28:25:0d:dc:97:26:09:7f: 13:ef:5d:c1:8a:72:3b:e6:07:f8:27:22:28:dc:c3:10:94:e3: 8b:85:1f:66:9e:51:fd:80:fd:40:59:67:11:fc:a1:b9:dd:0f: 66:9d:b7:e0:ae:74:52:c0:22:8e:02:17:2d:23:47:d3:43:91: dc:3c:f6:a3:d6:da:69:9e:c2:91:dd:9e:0d:46:e6:7d:03:14: f2:cc:a5:06:61:00:5c:77:68:e5:a8:67:b4:26:d6:31:7f:4c: de:6e:51:dc:78:27:6f:20:4f:43:ff:64:3f:df:77:09:15:dd: 41:17:f0:e0:82:84:02:9f:f5:42:6a:ff:3a:d5:6f:ac:47:ec: ed:44:a0:fa -----BEGIN CERTIFICATE----- MIIGiTCCBXGgAwIBAgIUZgGYXL3KFBltyt2x3nfuLzkN+XMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMDY2NUVDRjhBOTdCODNFMzk4MjY4RDkyQTI1NUJB RTY2MTgxNjAeFw0yNTAyMDUwMzQ0MjVaFw0yNjAyMDQwMzQ5MjVaMDMxMTAvBgNV BAMTKERERkI5NUUwM0EyOTRGRENGQzlGM0I3MEEyNkJDRjc0QzNBNENEMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq780v3FPaWpFrEZ7lbmN0mQLe wthneQp1Vv8pfKM4+jgV3tqXIGO2ye/lV3lAZl4e0H+PrRATa6pX2/GYuYCFGcqq CcJGaK4q4O0/I42Da4SQnuHxNg8rgWdQWh60ou59jTK407fGKYqyNNy45dZWwu1D 7h3gY7Jp0DHa+Z1JGzshYkfQyyrLxLKb6Aq16Q0l9FIF/mHCIj/zX7snSBaQ9qPm viB2YCw8qO67ZYHHMe9PPfG/Xu03sEelVmXXdQ04NZHQgXkHav5gWIhXKC0Vc66g tjha5i9Dy8fvRh9umHbVrFx1xNP2E8cFga2JQ3ctaWxkU4eh60n/t+KrWSBxAgMB AAGjggOTMIIDjzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTd+5XgOilP3Pyf O3Cia890w6TNKTAfBgNVHSMEGDAWgBS8wGZez4qXuD45gmjZKiVbrmYYFjAOBgNV HQ8BAf8EBAMCAQYwgbAGA1UdHwSBqDCBpTCBoqCBn6CBnIaBmXJzeW5jOi8vcmVw b3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURF NzA5QUMwRDI1NUNGMjc5QzQ3NzE2RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQv MC9CQ0MwNjY1RUNGOEE5N0I4M0UzOTgyNjhEOTJBMjU1QkFFNjYxODE2LmNybDCB uQYIKwYBBQUHAQEEgawwgakwgaYGCCsGAQUFBzAChoGZcnN5bmM6Ly9yZXBvc2l0 b3J5LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvRTVBQTFCMkM2OTBEMzRERDNBNDJF MEMwMjY4QzMyMThFRDE1OEUxNUQyOUZDQkQwQkFCNjZCNDc4NkQ2MzJFNi8wL0JD QzA2NjVFQ0Y4QTk3QjgzRTM5ODI2OEQ5MkEyNTVCQUU2NjE4MTYuY2VyMIIBcQYI KwYBBQUHAQsEggFjMIIBXzB5BggrBgEFBQcwBYZtcnN5bmM6Ly9yZXBvc2l0b3J5 LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvQUEzMjNFQUNEOEVFNjU4NTNFQTY0OTAx QzA3MDhDN0UwQTZDNEI0OUU4MzJDOUVGRTBDNzI2QUMwNzY1NTgwMC8wLzCBpgYI KwYBBQUHMAqGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy9BQTMyM0VBQ0Q4RUU2NTg1M0VBNjQ5MDFDMDcwOEM3RTBBNkM0QjQ5RTgz MkM5RUZFMEM3MjZBQzA3NjU1ODAwLzAvRERGQjk1RTAzQTI5NEZEQ0ZDOUYzQjcw QTI2QkNGNzRDM0E0Q0QyOS5tZnQwOQYIKwYBBQUHMA2GLWh0dHBzOi8vcnJkcC5s YWNuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLaQUMA0EAgAC MAcDBQAoBgMKMA0GCSqGSIb3DQEBCwUAA4IBAQDS4ZWZhE78vDsX/njFaz0ioPO+ NrgfHhzkSX2BAoJpcfTl7lcDFMTFgZaSNC2wAaASqLbpbvjIBSzDiJKEs18vBud5 Iy3Is9CWDzB/CAG/j0B1xeCxvJ8/ZhXCYZc2yLj4yL4PGkAbRL/TSJCiMYUgQUBn t0UxKCUN3JcmCX8T713BinI75gf4JyIo3MMQlOOLhR9mnlH9gP1AWWcR/KG53Q9m nbfgrnRSwCKOAhctI0fTQ5HcPPaj1tppnsKR3Z4NRuZ9AxTyzKUGYQBcd2jlqGe0 JtYxf0zeblHceCdvIE9D/2Q/33cJFd1BF/DggoQCn/VCav861W+sR+ztRKD6 -----END CERTIFICATE-----Generated at Sun Nov 2 00:07:26 2025 by rpki-client