Certificate
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bca241a84c27bfe35e84dea65f4a7db00fab553c.cer
File: bca241a84c27bfe35e84dea65f4a7db00fab553c.cer (raw, json)
Hash identifier: pCm1f6o5SbrR6+4t6Y/dEi0y4uvLDAxpi/pZmQfAlBM=
Subject key identifier: F4:58:60:FC:8C:F0:EC:66:8C:12:40:B7:75:C3:E2:4E:6C:36:03:80
Authority key identifier: 14:70:94:B4:E4:47:E3:EE:2D:CC:3F:D5:27:3D:46:EB:9D:C4:78:07
Certificate issuer: /CN=production O=lacnic
Certificate serial: D88040
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
Manifest: rsync://repository.lacnic.net/rpki/lacnic/7d7da0c3-c0a0-4dbb-a356-50448d749317/bca241a84c27bfe35e84dea65f4a7db00fab553c.mft
caRepository: rsync://repository.lacnic.net/rpki/lacnic/7d7da0c3-c0a0-4dbb-a356-50448d749317/
Notify URL: https://rrdp.lacnic.net/rrdp/notification.xml
Certificate not before: Tue 29 Nov 2022 17:24:53 +0000
Certificate not after: Wed 03 Apr 2024 15:00:00 +0000
Subordinate resources: AS: 19196
AS: 27680
IP: 152.172.0.0/14
IP: 181.172.0.0/15
IP: 181.200.0.0/14
IP: 186.40.0.0/15
IP: 186.65.128.0/17
IP: 190.4.192.0/18
IP: 190.108.128.0/18
IP: 191.124.0.0/14
IP: 201.187.128.0 -- 201.189.255.255
IP: 201.220.224.0/19
IP: 2800:4c0::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14188608 (0xd88040)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=production O=lacnic
Validity
Not Before: Nov 29 17:24:53 2022 GMT
Not After : Apr 3 15:00:00 2024 GMT
Subject: CN=bca241a84c27bfe35e84dea65f4a7db00fab553c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:37:55:ba:30:46:f7:9d:86:b7:db:47:f0:82:
4f:8d:6e:8a:bf:ef:8a:94:56:20:18:84:17:0e:16:
a7:62:a4:c9:39:e6:89:2e:5e:3e:08:4e:35:f4:2d:
5a:a5:67:bf:26:46:7e:40:08:6c:b8:8d:f7:62:2f:
1b:e5:f4:ac:69:9f:95:1f:a1:cb:a5:c5:ec:ae:df:
ec:ce:a9:24:bf:e3:61:e2:23:2f:65:1d:2f:96:11:
18:a3:37:aa:83:cb:f2:d0:09:88:e0:13:0d:bc:a2:
94:b7:55:60:bf:21:72:70:7b:54:f4:2c:0e:66:97:
35:f2:2b:3b:ee:98:eb:ae:97:a4:9a:bd:3e:e5:c4:
ea:34:40:a7:b6:dc:09:59:3e:78:76:53:93:50:12:
b4:bd:ca:80:28:73:50:00:d5:5f:d1:cd:14:dc:53:
0a:28:97:4f:fd:a6:4a:bc:0b:9a:ec:aa:73:37:b2:
bf:59:dd:d2:3a:fb:17:fc:e9:db:67:a0:5a:92:3e:
09:f8:12:35:25:e8:ec:a1:e1:c7:ad:37:47:5d:3c:
65:6c:26:cd:bc:f0:4a:e3:49:23:af:5c:f0:47:ef:
80:fe:aa:ec:5c:26:da:40:13:cd:7c:22:b2:24:25:
c5:eb:bc:6c:1e:a6:1c:c9:d8:92:77:cd:e4:3a:4d:
a9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:58:60:FC:8C:F0:EC:66:8C:12:40:B7:75:C3:E2:4E:6C:36:03:80
X509v3 Authority Key Identifier:
keyid:14:70:94:B4:E4:47:E3:EE:2D:CC:3F:D5:27:3D:46:EB:9D:C4:78:07
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
Subject Information Access:
RPKI Notify - URI:https://rrdp.lacnic.net/rrdp/notification.xml
CA Repository - URI:rsync://repository.lacnic.net/rpki/lacnic/7d7da0c3-c0a0-4dbb-a356-50448d749317/
RPKI Manifest - URI:rsync://repository.lacnic.net/rpki/lacnic/7d7da0c3-c0a0-4dbb-a356-50448d749317/bca241a84c27bfe35e84dea65f4a7db00fab553c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.172.0.0/14
181.172.0.0/15
181.200.0.0/14
186.40.0.0/15
186.65.128.0/17
190.4.192.0/18
190.108.128.0/18
191.124.0.0/14
201.187.128.0-201.189.255.255
201.220.224.0/19
IPv6:
2800:4c0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
19196
27680
Signature Algorithm: sha256WithRSAEncryption
05:fa:72:9f:bb:f5:8a:fb:9a:97:be:bf:69:72:a6:10:44:3c:
33:84:ff:bd:07:5e:63:93:cb:db:13:e3:e7:b3:77:21:e5:d2:
48:b2:df:4b:ba:98:26:9d:16:d3:bc:85:7e:cd:6f:fd:06:c7:
e4:f8:64:5f:36:4f:28:11:5b:64:4b:ba:77:5d:24:c2:71:09:
da:06:6d:b7:6c:db:3a:c9:fc:85:7e:af:8c:48:f5:df:ec:83:
76:64:d6:87:8c:6d:9d:ab:c5:bb:0b:c0:81:f4:1e:52:4d:ed:
a2:1e:67:f7:50:f1:13:ad:af:36:5d:32:16:66:d1:e8:95:ea:
d7:9c:49:58:88:40:ba:c8:08:26:61:fc:a2:f8:19:70:01:e2:
d7:cb:4b:1a:0b:e5:a7:75:90:31:63:c9:9e:9f:84:76:21:6d:
86:b0:64:09:74:89:94:df:ef:b4:d9:05:ec:a2:53:3a:ec:1c:
86:2d:37:2f:e6:07:2e:b0:89:66:ba:a5:54:fa:af:dd:ba:96:
24:52:36:9e:a0:e8:5d:ab:66:b7:fc:c9:c0:8f:d0:21:ad:82:
a8:e8:9f:83:35:ac:55:aa:d3:cb:91:5e:1c:df:a3:5c:04:7c:
c8:6c:79:cf:81:d5:c6:6e:a5:77:73:9d:06:1f:f4:c1:51:6f:
77:c3:88:22
-----BEGIN CERTIFICATE-----
MIIGFTCCBP2gAwIBAgIEANiAQDANBgkqhkiG9w0BAQsFADAeMRwwGgYDVQQDExNw
cm9kdWN0aW9uIE89bGFjbmljMB4XDTIyMTEyOTE3MjQ1M1oXDTI0MDQwMzE1MDAw
MFowMzExMC8GA1UEAxMoYmNhMjQxYTg0YzI3YmZlMzVlODRkZWE2NWY0YTdkYjAw
ZmFiNTUzYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALU3VbowRved
hrfbR/CCT41uir/vipRWIBiEFw4Wp2KkyTnmiS5ePghONfQtWqVnvyZGfkAIbLiN
92IvG+X0rGmflR+hy6XF7K7f7M6pJL/jYeIjL2UdL5YRGKM3qoPL8tAJiOATDbyi
lLdVYL8hcnB7VPQsDmaXNfIrO+6Y666XpJq9PuXE6jRAp7bcCVk+eHZTk1AStL3K
gChzUADVX9HNFNxTCiiXT/2mSrwLmuyqczeyv1nd0jr7F/zp22egWpI+CfgSNSXo
7KHhx603R108ZWwmzbzwSuNJI69c8EfvgP6q7Fwm2kATzXwisiQlxeu8bB6mHMnY
knfN5DpNqdMCAwEAAaOCA0QwggNAMB0GA1UdDgQWBBT0WGD8jPDsZowSQLd1w+JO
bDYDgDAfBgNVHSMEGDAWgBQUcJS05Efj7i3MP9UnPUbrncR4BzAPBgNVHRMBAf8E
BTADAQH/MA4GA1UdDwEB/wQEAwIBBjByBggrBgEFBQcBAQRmMGQwYgYIKwYBBQUH
MAKGVnJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL2Zm
MTRlOTA1NWQ1YWZhYTM3ZmJlMjBmNGEyNmJkMTNjOGYxOGQ3OWEuY2VyMIIBNAYI
KwYBBQUHAQsEggEmMIIBIjA5BggrBgEFBQcwDYYtaHR0cHM6Ly9ycmRwLmxhY25p
Yy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMFsGCCsGAQUFBzAFhk9yc3luYzov
L3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xhY25pYy83ZDdkYTBjMy1jMGEw
LTRkYmItYTM1Ni01MDQ0OGQ3NDkzMTcvMIGHBggrBgEFBQcwCoZ7cnN5bmM6Ly9y
ZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvN2Q3ZGEwYzMtYzBhMC00
ZGJiLWEzNTYtNTA0NDhkNzQ5MzE3L2JjYTI0MWE4NGMyN2JmZTM1ZTg0ZGVhNjVm
NGE3ZGIwMGZhYjU1M2MubWZ0MIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzov
L3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xhY25pYy80OGYwODNiYi1mNjAz
LTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZmYxNGU5MDU1ZDVhZmFhMzdmYmUyMGY0
YTI2YmQxM2M4ZjE4ZDc5YS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBm
BggrBgEFBQcBBwEB/wRXMFUwRAQCAAEwPgMDApisAwMBtawDAwK1yAMDAbooAwQH
ukGAAwQGvgTAAwQGvmyAAwMCv3wwCwMEB8m7gAMDAcm8AwQFydzgMA0EAgACMAcD
BQAoAATAMB0GCCsGAQUFBwEIAQH/BA4wDKAKMAgCAkr8AgJsIDANBgkqhkiG9w0B
AQsFAAOCAQEABfpyn7v1ivual76/aXKmEEQ8M4T/vQdeY5PL2xPj57N3IeXSSLLf
S7qYJp0W07yFfs1v/QbH5PhkXzZPKBFbZEu6d10kwnEJ2gZtt2zbOsn8hX6vjEj1
3+yDdmTWh4xtnavFuwvAgfQeUk3toh5n91DxE62vNl0yFmbR6JXq15xJWIhAusgI
JmH8ovgZcAHi18tLGgvlp3WQMWPJnp+EdiFthrBkCXSJlN/vtNkF7KJTOuwchi03
L+YHLrCJZrqlVPqv3bqWJFI2nqDoXatmt/zJwI/QIa2CqOifgzWsVarTy5FeHN+j
XAR8yGx5z4HVxm6ld3OdBh/0wVFvd8OIIg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:36 2024 by rpki-client on console-fra.rpki-client.org