Certificate

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/17b429bab422fa39d2870bba61c4c574d6136b25.cer
File:                     17b429bab422fa39d2870bba61c4c574d6136b25.cer (raw, json)
Hash identifier:          qDmQYox3UhfItyWxRFsys3LmIXhwBcxz6VLFtjTa/MM=
Subject key identifier:   D3:B9:98:38:97:BC:98:95:3A:4E:AB:C3:3C:88:60:F2:08:15:6A:F4
Authority key identifier: 14:70:94:B4:E4:47:E3:EE:2D:CC:3F:D5:27:3D:46:EB:9D:C4:78:07
Certificate issuer:       /CN=production O=lacnic
Certificate serial:       D76069
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
Manifest:                 rsync://repository.lacnic.net/rpki/lacnic/e5bb572a-a09f-4de8-ab4b-afeb5a009789/17b429bab422fa39d2870bba61c4c574d6136b25.mft
caRepository:             rsync://repository.lacnic.net/rpki/lacnic/e5bb572a-a09f-4de8-ab4b-afeb5a009789/
Notify URL:               https://rrdp.lacnic.net/rrdp/notification.xml
Certificate not before:   Wed 16 Nov 2022 15:18:51 +0000
Certificate not after:    Sat 07 Sep 2024 15:31:12 +0000
Subordinate resources:    AS: 272905
                          IP: 2803:b690::/32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 14114921 (0xd76069)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=production O=lacnic
        Validity
            Not Before: Nov 16 15:18:51 2022 GMT
            Not After : Sep  7 15:31:12 2024 GMT
        Subject: CN=17b429bab422fa39d2870bba61c4c574d6136b25
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:7f:4d:b3:3d:94:60:6b:8d:15:fd:94:1c:83:
                    99:06:16:76:d3:c7:87:0a:65:93:f8:e2:90:c0:94:
                    8b:1e:a0:3d:94:7c:bc:50:68:10:e4:92:10:6e:f8:
                    c4:20:cd:a2:3c:bd:77:ac:54:52:70:55:d6:01:66:
                    d7:38:3d:f7:c2:ac:78:db:8f:a6:1b:ed:1a:78:8c:
                    96:0a:d3:00:84:ba:43:8f:c8:3d:34:d7:27:78:f2:
                    28:99:7e:61:1f:4f:48:23:0c:6f:9d:02:76:af:a5:
                    12:72:2e:1c:3c:38:d9:72:77:45:6e:13:78:72:69:
                    40:d3:d3:20:76:7b:07:72:97:2f:ec:78:e8:02:f1:
                    eb:ae:f4:c3:fb:cc:50:e2:ba:08:35:5e:a7:ef:09:
                    8c:8e:18:b4:b9:ab:ac:23:dd:ab:ea:ea:26:f1:a7:
                    d9:80:46:2d:29:0a:7b:7c:1c:58:ab:cd:36:4b:f3:
                    3b:c6:4f:42:8d:86:d7:de:aa:91:8e:9b:0a:0d:96:
                    6c:01:72:0a:6f:b4:5a:48:e7:f6:33:82:a0:70:25:
                    67:0e:55:31:47:73:a1:18:45:01:6b:e3:94:16:b2:
                    93:66:a1:7c:3b:22:f9:03:bb:fe:3c:28:5a:b5:29:
                    87:31:c8:38:5d:b2:d8:e8:5e:1b:69:1d:b5:15:c9:
                    45:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:B9:98:38:97:BC:98:95:3A:4E:AB:C3:3C:88:60:F2:08:15:6A:F4
            X509v3 Authority Key Identifier:
                keyid:14:70:94:B4:E4:47:E3:EE:2D:CC:3F:D5:27:3D:46:EB:9D:C4:78:07

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer

            Subject Information Access:
                RPKI Notify - URI:https://rrdp.lacnic.net/rrdp/notification.xml
                CA Repository - URI:rsync://repository.lacnic.net/rpki/lacnic/e5bb572a-a09f-4de8-ab4b-afeb5a009789/
                RPKI Manifest - URI:rsync://repository.lacnic.net/rpki/lacnic/e5bb572a-a09f-4de8-ab4b-afeb5a009789/17b429bab422fa39d2870bba61c4c574d6136b25.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:b690::/32

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  272905

    Signature Algorithm: sha256WithRSAEncryption
         0c:a4:5d:c5:65:75:83:a1:ae:19:a2:8f:31:25:e8:78:76:ca:
         86:7f:49:48:a3:e6:b1:da:78:5d:2d:7c:de:cc:87:36:4f:13:
         66:b6:42:2a:be:15:b4:0a:2a:53:f5:52:f5:fd:9c:f9:fd:14:
         43:83:ac:be:c7:45:8d:eb:44:a0:4b:29:1c:54:41:de:db:dc:
         10:01:52:f1:ed:02:bb:21:71:9f:fa:79:eb:f2:5c:9a:de:02:
         3a:9b:fd:ce:ca:db:d2:91:bc:39:98:08:68:e3:24:81:10:91:
         2b:48:ee:81:a9:1a:1c:23:59:f5:f8:c3:d6:14:ee:21:90:7a:
         0d:82:78:7e:1d:c1:3f:f2:5d:1a:c3:d7:72:20:8a:f5:5b:bb:
         8a:e7:38:b5:31:87:7a:59:fb:38:2a:17:c9:0a:8b:80:1f:27:
         b6:f4:ca:3e:e8:41:3a:d4:d0:4a:77:a2:05:31:cc:8b:9a:ad:
         85:19:32:89:8f:87:c0:19:60:e7:41:dd:9f:03:7a:a0:9d:a0:
         3e:a6:d0:60:3d:97:05:64:11:50:95:91:15:a5:45:f6:39:a2:
         a2:13:ff:78:0d:19:1e:03:40:bf:3a:e4:c4:3b:fd:15:55:b9:
         8f:8b:a0:1e:42:b4:bf:25:17:0c:fa:c3:46:52:7f:0e:31:23:
         f8:c4:89:51
-----BEGIN CERTIFICATE-----
MIIFzDCCBLSgAwIBAgIEANdgaTANBgkqhkiG9w0BAQsFADAeMRwwGgYDVQQDExNw
cm9kdWN0aW9uIE89bGFjbmljMB4XDTIyMTExNjE1MTg1MVoXDTI0MDkwNzE1MzEx
MlowMzExMC8GA1UEAxMoMTdiNDI5YmFiNDIyZmEzOWQyODcwYmJhNjFjNGM1NzRk
NjEzNmIyNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMV/TbM9lGBr
jRX9lByDmQYWdtPHhwplk/jikMCUix6gPZR8vFBoEOSSEG74xCDNojy9d6xUUnBV
1gFm1zg998KseNuPphvtGniMlgrTAIS6Q4/IPTTXJ3jyKJl+YR9PSCMMb50Cdq+l
EnIuHDw42XJ3RW4TeHJpQNPTIHZ7B3KXL+x46ALx6670w/vMUOK6CDVep+8JjI4Y
tLmrrCPdq+rqJvGn2YBGLSkKe3wcWKvNNkvzO8ZPQo2G196qkY6bCg2WbAFyCm+0
Wkjn9jOCoHAlZw5VMUdzoRhFAWvjlBayk2ahfDsi+QO7/jwoWrUphzHIOF2y2Ohe
G2kdtRXJRTECAwEAAaOCAvswggL3MB0GA1UdDgQWBBTTuZg4l7yYlTpOq8M8iGDy
CBVq9DAfBgNVHSMEGDAWgBQUcJS05Efj7i3MP9UnPUbrncR4BzAPBgNVHRMBAf8E
BTADAQH/MA4GA1UdDwEB/wQEAwIBBjByBggrBgEFBQcBAQRmMGQwYgYIKwYBBQUH
MAKGVnJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL2Zm
MTRlOTA1NWQ1YWZhYTM3ZmJlMjBmNGEyNmJkMTNjOGYxOGQ3OWEuY2VyMIIBNAYI
KwYBBQUHAQsEggEmMIIBIjA5BggrBgEFBQcwDYYtaHR0cHM6Ly9ycmRwLmxhY25p
Yy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMFsGCCsGAQUFBzAFhk9yc3luYzov
L3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xhY25pYy9lNWJiNTcyYS1hMDlm
LTRkZTgtYWI0Yi1hZmViNWEwMDk3ODkvMIGHBggrBgEFBQcwCoZ7cnN5bmM6Ly9y
ZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvZTViYjU3MmEtYTA5Zi00
ZGU4LWFiNGItYWZlYjVhMDA5Nzg5LzE3YjQyOWJhYjQyMmZhMzlkMjg3MGJiYTYx
YzRjNTc0ZDYxMzZiMjUubWZ0MIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzov
L3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xhY25pYy80OGYwODNiYi1mNjAz
LTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZmYxNGU5MDU1ZDVhZmFhMzdmYmUyMGY0
YTI2YmQxM2M4ZjE4ZDc5YS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDtpAwGgYIKwYBBQUHAQgBAf8E
CzAJoAcwBQIDBCoJMA0GCSqGSIb3DQEBCwUAA4IBAQAMpF3FZXWDoa4Zoo8xJeh4
dsqGf0lIo+ax2nhdLXzezIc2TxNmtkIqvhW0CipT9VL1/Zz5/RRDg6y+x0WN60Sg
SykcVEHe29wQAVLx7QK7IXGf+nnr8lya3gI6m/3OytvSkbw5mAho4ySBEJErSO6B
qRocI1n1+MPWFO4hkHoNgnh+HcE/8l0aw9dyIIr1W7uK5zi1MYd6Wfs4KhfJCouA
Hye29Mo+6EE61NBKd6IFMcyLmq2FGTKJj4fAGWDnQd2fA3qgnaA+ptBgPZcFZBFQ
lZEVpUX2OaKiE/94DRkeA0C/OuTEO/0VVbmPi6AeQrS/JRcM+sNGUn8OMSP4xIlR
-----END CERTIFICATE-----
Generated at Thu Mar 28 23:47:56 2024 by rpki-client on console-ams.rpki-client.org