$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer File: DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.cer (raw, json) Hash identifier: TNkLzSTe+zGr+RhElcICnpa7ZXNJ0cQYos0JtFOadJY= Subject key identifier: DD:FB:95:E0:3A:29:4F:DC:FC:9F:3B:70:A2:6B:CF:74:C3:A4:CD:29 Authority key identifier: BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 Certificate issuer: /CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Certificate serial: 18670F38237ED5DE4EE46E7482A445CE9E4E80A3 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Manifest: rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.mft caRepository: rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/ Notify URL: https://rrdp.lacnic.net/rrdp/notification.xml Certificate not before: Tue 05 Mar 2024 17:45:51 +0000 Certificate not after: Tue 04 Mar 2025 17:50:51 +0000 Subordinate resources: IP: 45.164.20.0/22 IP: 2806:30a::/32 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 20 May 2024 05:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:67:0f:38:23:7e:d5:de:4e:e4:6e:74:82:a4:45:ce:9e:4e:80:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Validity Not Before: Mar 5 17:45:51 2024 GMT Not After : Mar 4 17:50:51 2025 GMT Subject: CN=DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ef:cd:2f:dc:53:da:5a:91:6b:11:9e:e5:6e: 63:74:99:02:de:c2:d8:67:79:0a:75:56:ff:29:7c: a3:38:fa:38:15:de:da:97:20:63:b6:c9:ef:e5:57: 79:40:66:5e:1e:d0:7f:8f:ad:10:13:6b:aa:57:db: f1:98:b9:80:85:19:ca:aa:09:c2:46:68:ae:2a:e0: ed:3f:23:8d:83:6b:84:90:9e:e1:f1:36:0f:2b:81: 67:50:5a:1e:b4:a2:ee:7d:8d:32:b8:d3:b7:c6:29: 8a:b2:34:dc:b8:e5:d6:56:c2:ed:43:ee:1d:e0:63: b2:69:d0:31:da:f9:9d:49:1b:3b:21:62:47:d0:cb: 2a:cb:c4:b2:9b:e8:0a:b5:e9:0d:25:f4:52:05:fe: 61:c2:22:3f:f3:5f:bb:27:48:16:90:f6:a3:e6:be: 20:76:60:2c:3c:a8:ee:bb:65:81:c7:31:ef:4f:3d: f1:bf:5e:ed:37:b0:47:a5:56:65:d7:75:0d:38:35: 91:d0:81:79:07:6a:fe:60:58:88:57:28:2d:15:73: ae:a0:b6:38:5a:e6:2f:43:cb:c7:ef:46:1f:6e:98: 76:d5:ac:5c:75:c4:d3:f6:13:c7:05:81:ad:89:43: 77:2d:69:6c:64:53:87:a1:eb:49:ff:b7:e2:ab:59: 20:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DD:FB:95:E0:3A:29:4F:DC:FC:9F:3B:70:A2:6B:CF:74:C3:A4:CD:29 X509v3 Authority Key Identifier: keyid:BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Subject Information Access: CA Repository - URI:rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/ RPKI Manifest - URI:rsync://repository.lacnic.net/rpki/lacnic/AA323EACD8EE65853EA64901C0708C7E0A6C4B49E832C9EFE0C726AC07655800/0/DDFB95E03A294FDCFC9F3B70A26BCF74C3A4CD29.mft RPKI Notify - URI:https://rrdp.lacnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.164.20.0/22 IPv6: 2806:30a::/32 Signature Algorithm: sha256WithRSAEncryption e1:21:da:a1:fc:6d:3c:8b:70:b5:2c:32:24:06:4e:7f:f1:70: 34:f7:05:04:70:9b:29:e7:9f:a1:87:5d:d8:f2:d1:48:8f:a5: 64:a2:83:ee:2a:9d:57:ee:dc:c4:31:31:0e:6b:0c:c2:ed:3b: bc:11:af:38:8f:f6:ec:be:b2:a4:ed:f9:d4:35:64:25:54:12: da:b7:61:dc:81:54:ba:b5:56:c5:57:97:cf:5e:20:96:cf:bc: 97:17:26:df:e5:ad:2c:6c:ec:83:47:ea:ff:ea:05:f3:c8:b6: b6:df:89:29:4f:50:84:e6:80:ca:53:f1:d0:32:ec:0e:c3:8f: 9b:64:75:52:b8:6f:91:5d:d2:1d:5d:d5:2c:19:4e:e8:1b:fe: 02:66:dd:ae:5d:bb:30:de:dc:d7:db:20:c5:53:1a:f0:5e:3c: 39:ac:c6:35:7f:f0:bc:3f:92:de:b3:e3:8e:28:f0:d6:74:8c: 84:98:04:7c:90:3d:40:24:c5:b9:5f:d7:f7:1d:96:a8:3d:16: 73:d3:28:9c:23:e8:af:a9:e0:ee:d2:c6:a1:16:9f:89:87:cf: 2d:ee:6e:06:05:4e:6b:0b:71:09:4b:d4:2e:5d:f7:48:c8:58: 11:9a:08:7b:61:7e:23:0e:c5:73:91:70:a1:19:06:01:f3:81: 76:6d:d4:bc -----BEGIN CERTIFICATE----- MIIGiTCCBXGgAwIBAgIUGGcPOCN+1d5O5G50gqRFzp5OgKMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMDY2NUVDRjhBOTdCODNFMzk4MjY4RDkyQTI1NUJB RTY2MTgxNjAeFw0yNDAzMDUxNzQ1NTFaFw0yNTAzMDQxNzUwNTFaMDMxMTAvBgNV BAMTKERERkI5NUUwM0EyOTRGRENGQzlGM0I3MEEyNkJDRjc0QzNBNENEMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq780v3FPaWpFrEZ7lbmN0mQLe wthneQp1Vv8pfKM4+jgV3tqXIGO2ye/lV3lAZl4e0H+PrRATa6pX2/GYuYCFGcqq CcJGaK4q4O0/I42Da4SQnuHxNg8rgWdQWh60ou59jTK407fGKYqyNNy45dZWwu1D 7h3gY7Jp0DHa+Z1JGzshYkfQyyrLxLKb6Aq16Q0l9FIF/mHCIj/zX7snSBaQ9qPm viB2YCw8qO67ZYHHMe9PPfG/Xu03sEelVmXXdQ04NZHQgXkHav5gWIhXKC0Vc66g tjha5i9Dy8fvRh9umHbVrFx1xNP2E8cFga2JQ3ctaWxkU4eh60n/t+KrWSBxAgMB AAGjggOTMIIDjzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTd+5XgOilP3Pyf O3Cia890w6TNKTAfBgNVHSMEGDAWgBS8wGZez4qXuD45gmjZKiVbrmYYFjAOBgNV HQ8BAf8EBAMCAQYwgbAGA1UdHwSBqDCBpTCBoqCBn6CBnIaBmXJzeW5jOi8vcmVw b3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURF NzA5QUMwRDI1NUNGMjc5QzQ3NzE2RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQv MC9CQ0MwNjY1RUNGOEE5N0I4M0UzOTgyNjhEOTJBMjU1QkFFNjYxODE2LmNybDCB uQYIKwYBBQUHAQEEgawwgakwgaYGCCsGAQUFBzAChoGZcnN5bmM6Ly9yZXBvc2l0 b3J5LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvRTVBQTFCMkM2OTBEMzRERDNBNDJF MEMwMjY4QzMyMThFRDE1OEUxNUQyOUZDQkQwQkFCNjZCNDc4NkQ2MzJFNi8wL0JD QzA2NjVFQ0Y4QTk3QjgzRTM5ODI2OEQ5MkEyNTVCQUU2NjE4MTYuY2VyMIIBcQYI KwYBBQUHAQsEggFjMIIBXzB5BggrBgEFBQcwBYZtcnN5bmM6Ly9yZXBvc2l0b3J5 LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvQUEzMjNFQUNEOEVFNjU4NTNFQTY0OTAx QzA3MDhDN0UwQTZDNEI0OUU4MzJDOUVGRTBDNzI2QUMwNzY1NTgwMC8wLzCBpgYI KwYBBQUHMAqGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy9BQTMyM0VBQ0Q4RUU2NTg1M0VBNjQ5MDFDMDcwOEM3RTBBNkM0QjQ5RTgz MkM5RUZFMEM3MjZBQzA3NjU1ODAwLzAvRERGQjk1RTAzQTI5NEZEQ0ZDOUYzQjcw QTI2QkNGNzRDM0E0Q0QyOS5tZnQwOQYIKwYBBQUHMA2GLWh0dHBzOi8vcnJkcC5s YWNuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLaQUMA0EAgAC MAcDBQAoBgMKMA0GCSqGSIb3DQEBCwUAA4IBAQDhIdqh/G08i3C1LDIkBk5/8XA0 9wUEcJsp55+hh13Y8tFIj6VkooPuKp1X7tzEMTEOawzC7Tu8Ea84j/bsvrKk7fnU NWQlVBLat2HcgVS6tVbFV5fPXiCWz7yXFybf5a0sbOyDR+r/6gXzyLa234kpT1CE 5oDKU/HQMuwOw4+bZHVSuG+RXdIdXdUsGU7oG/4CZt2uXbsw3tzX2yDFUxrwXjw5 rMY1f/C8P5Les+OOKPDWdIyEmAR8kD1AJMW5X9f3HZaoPRZz0yicI+ivqeDu0sah Fp+Jh88t7m4GBU5rC3EJS9QuXfdIyFgRmgh7YX4jDsVzkXChGQYB84F2bdS8 -----END CERTIFICATE-----Generated at Thu May 16 22:33:58 2024 by rpki-client on console-ams.rpki-client.org