Certificate
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/aaf58f2b3cdb954b82be7a4e78c7f016fcab04b9.cer
File: aaf58f2b3cdb954b82be7a4e78c7f016fcab04b9.cer (raw, json)
Hash identifier: WqKTG0r+mmIh88/ZRv2lO3z2RrikYttGOV6Fr7Gn/HM=
Subject key identifier: F2:F1:B6:D7:01:0F:CA:CD:CB:DB:AD:74:6A:06:10:06:18:C8:35:72
Authority key identifier: 14:70:94:B4:E4:47:E3:EE:2D:CC:3F:D5:27:3D:46:EB:9D:C4:78:07
Certificate issuer: /CN=production O=lacnic
Certificate serial: FF0A34
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
Manifest: rsync://repository.lacnic.net/rpki/lacnic/b1b6683f-3c01-4053-ab33-e754c8c8a2af/aaf58f2b3cdb954b82be7a4e78c7f016fcab04b9.mft
caRepository: rsync://repository.lacnic.net/rpki/lacnic/b1b6683f-3c01-4053-ab33-e754c8c8a2af/
Notify URL: https://rrdp.lacnic.net/rrdp/notification.xml
Certificate not before: Fri 27 Oct 2023 20:51:02 +0000
Certificate not after: Thu 02 Jan 2025 20:20:14 +0000
Subordinate resources: AS: 22689
AS: 53129
IP: 138.59.88.0/22
IP: 186.236.128.0/18
IP: 187.0.64.0/18
IP: 187.18.64.0/18
IP: 187.62.0.0/18
IP: 187.121.128.0/20
IP: 189.14.0.0/18
IP: 189.76.0.0/18
IP: 200.155.32.0/19
IP: 200.233.96.0/19
IP: 201.23.128.0/19
IP: 201.54.64.0/18
IP: 201.94.192.0/18
IP: 2804:118::/32
IP: 2804:22c::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16714292 (0xff0a34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=production O=lacnic
Validity
Not Before: Oct 27 20:51:02 2023 GMT
Not After : Jan 2 20:20:14 2025 GMT
Subject: CN=aaf58f2b3cdb954b82be7a4e78c7f016fcab04b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:80:2a:dc:9c:a7:6f:52:24:b4:95:46:a6:b6:
b5:c8:fc:44:7e:a7:76:e5:3f:55:3c:af:32:c9:1a:
29:9d:8d:06:e8:44:47:53:4e:0d:47:4a:82:97:c0:
2c:f4:68:1d:fe:49:67:15:4a:d9:bc:39:f2:5e:44:
59:3a:89:44:c5:f5:4b:ad:fa:92:4b:19:6c:ef:f3:
37:bb:61:15:26:11:dd:d6:34:d1:c7:37:01:a0:c1:
5a:63:65:fe:33:c9:53:fa:f5:80:0a:50:e2:41:99:
ff:b2:27:86:31:f6:b2:10:c1:b4:cf:9a:6f:84:31:
17:95:e2:80:fd:67:b0:40:39:01:3a:36:e6:06:e3:
82:64:1f:f7:b0:c6:6e:25:14:31:f6:10:21:fd:bd:
ba:cd:03:3a:83:dd:dd:3c:fd:9d:f6:b1:0e:0b:8a:
2a:e8:73:1a:1f:c2:c0:33:f9:14:a8:b4:e0:b9:26:
60:16:68:ca:e9:05:a4:87:b0:a5:5b:e6:f7:75:2a:
36:6d:76:b9:8c:e2:67:17:e0:d2:43:6e:9d:74:40:
6e:c3:aa:59:9c:62:b4:31:10:4d:ce:92:05:16:5a:
e6:db:05:b0:9b:6e:d9:b9:87:73:b8:6b:ed:cd:7c:
86:5c:61:aa:72:95:00:29:38:16:6f:bc:80:19:c8:
f1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:F1:B6:D7:01:0F:CA:CD:CB:DB:AD:74:6A:06:10:06:18:C8:35:72
X509v3 Authority Key Identifier:
keyid:14:70:94:B4:E4:47:E3:EE:2D:CC:3F:D5:27:3D:46:EB:9D:C4:78:07
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
Subject Information Access:
RPKI Notify - URI:https://rrdp.lacnic.net/rrdp/notification.xml
CA Repository - URI:rsync://repository.lacnic.net/rpki/lacnic/b1b6683f-3c01-4053-ab33-e754c8c8a2af/
RPKI Manifest - URI:rsync://repository.lacnic.net/rpki/lacnic/b1b6683f-3c01-4053-ab33-e754c8c8a2af/aaf58f2b3cdb954b82be7a4e78c7f016fcab04b9.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.59.88.0/22
186.236.128.0/18
187.0.64.0/18
187.18.64.0/18
187.62.0.0/18
187.121.128.0/20
189.14.0.0/18
189.76.0.0/18
200.155.32.0/19
200.233.96.0/19
201.23.128.0/19
201.54.64.0/18
201.94.192.0/18
IPv6:
2804:118::/32
2804:22c::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
22689
53129
Signature Algorithm: sha256WithRSAEncryption
5e:7d:bf:ba:bd:55:8b:4a:e2:39:d4:06:eb:10:e2:4f:35:92:
09:45:c4:2b:f0:54:4b:4c:5c:00:29:8b:34:12:d2:10:00:6e:
d1:6b:14:ea:6e:4c:c2:9c:ec:da:a3:84:98:0f:58:61:13:a7:
e4:ed:ff:ec:96:c4:f2:dd:c0:94:43:86:0c:81:63:14:08:12:
9e:63:23:2d:e3:e0:61:93:c3:b1:da:97:bd:26:c4:91:a0:84:
2b:8a:9a:d5:6e:2e:72:d2:35:4d:e0:0d:da:3f:76:e8:4f:fd:
9c:5d:6c:3b:c4:57:3b:58:47:21:5f:e9:48:da:3a:d3:4d:f9:
62:e9:0b:d8:19:42:0b:c7:c8:53:90:4b:7c:86:cd:b6:f5:bc:
20:54:b9:7e:2c:5e:df:9f:e5:1d:25:49:d0:44:16:58:d4:a7:
41:94:e5:71:6a:38:58:71:28:13:4b:40:01:c0:b6:53:8d:14:
b9:5a:57:8a:14:8f:59:c3:ab:15:13:c1:1d:7a:a8:b7:06:a1:
aa:89:81:3e:83:fb:72:fd:bb:62:29:cb:65:da:5f:ce:ce:b7:
82:03:a2:76:da:c9:d6:dd:29:8d:80:f0:94:6e:38:df:41:b9:
62:4a:a9:fa:c9:bc:2b:a9:22:25:ca:3c:c8:3b:75:4f:51:89:
b0:cb:e9:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:36 2024 by rpki-client on console-fra.rpki-client.org