$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.cer File: 4DE953D0DBB7E793914D04C32D69DD64097568ED.cer (raw, json) Hash identifier: aHccIn0Muv51a3i88l4WAuNHeMrR1BEIp4FuDVJcrFo= Subject key identifier: 4D:E9:53:D0:DB:B7:E7:93:91:4D:04:C3:2D:69:DD:64:09:75:68:ED Authority key identifier: BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 Certificate issuer: /CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Certificate serial: 16EA5700E06D30BBD4B66C67CDFCCB494C0D1FBE Authority info access: rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Manifest: rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.mft caRepository: rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/ Notify URL: https://rrdp.lacnic.net/rrdp/notification.xml Certificate not before: Thu 07 Nov 2024 12:55:19 +0000 Certificate not after: Thu 06 Nov 2025 13:00:19 +0000 Subordinate resources: AS: 273975 IP: 170.79.144.0/22 IP: 2803:f8c0::/32 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 27 Nov 2024 03:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:ea:57:00:e0:6d:30:bb:d4:b6:6c:67:cd:fc:cb:49:4c:0d:1f:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Validity Not Before: Nov 7 12:55:19 2024 GMT Not After : Nov 6 13:00:19 2025 GMT Subject: CN=4DE953D0DBB7E793914D04C32D69DD64097568ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b2:bd:e5:73:b9:a0:c7:35:d7:b7:cf:40:60: cb:40:85:f5:34:5b:d0:ad:9e:44:61:93:72:de:57: 49:e3:73:b4:0c:16:b9:ff:6a:35:73:78:47:74:3d: 24:85:da:83:f7:95:64:05:06:aa:8b:ce:15:be:a6: 33:82:45:32:1d:75:c6:8b:7d:04:62:64:aa:8b:51: db:58:b0:0c:7a:4c:94:3e:14:5b:22:ff:69:e8:c6: e5:23:ad:f6:09:cc:a4:db:7a:04:70:3c:e0:f4:64: 8c:a4:e8:ac:be:5b:8c:24:00:1a:e8:5f:f5:b1:b3: 95:14:11:b3:46:54:ec:fc:db:56:97:4a:a5:c8:9e: 7c:59:5d:e0:93:ea:9c:9f:de:4e:a0:fc:02:f9:fb: d5:8d:72:b8:f3:c6:ad:10:3c:90:27:c8:13:f8:ae: 40:6d:c6:a7:81:95:4d:14:e8:8b:07:b5:75:66:07: 23:cf:88:2a:d5:88:a7:4c:90:3b:00:a3:33:ea:89: bb:d7:f9:f9:ee:3e:53:2f:33:2c:e2:ca:e8:67:d8: 17:26:77:48:70:7b:50:96:1f:ca:bb:0d:c6:13:74: ec:61:c1:53:fa:b9:3d:a5:c5:67:3c:8c:11:71:10: d0:d3:9e:6f:9a:dd:ce:5c:86:e2:49:92:ac:bf:b1: f0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4D:E9:53:D0:DB:B7:E7:93:91:4D:04:C3:2D:69:DD:64:09:75:68:ED X509v3 Authority Key Identifier: keyid:BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Subject Information Access: CA Repository - URI:rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/ RPKI Manifest - URI:rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.mft RPKI Notify - URI:https://rrdp.lacnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.79.144.0/22 IPv6: 2803:f8c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 273975 Signature Algorithm: sha256WithRSAEncryption 3f:d5:b8:27:7d:3f:52:a0:cb:04:c3:ac:8a:ac:ad:2f:f8:a5: 9a:07:ba:b8:26:1d:81:a4:ca:8f:39:ed:9c:eb:c3:4a:67:93: 3c:45:d7:4e:d9:6c:ab:6f:8f:9c:f2:01:2f:27:b1:e8:ec:ed: 6a:6b:32:f4:e2:bb:22:c3:27:57:42:a2:07:fe:3a:e7:0c:ee: 42:78:43:3b:cc:b3:8e:39:48:70:2b:e9:5c:79:98:61:bc:ba: 2a:bf:76:71:f1:4d:41:ef:31:f9:62:1c:77:22:db:f9:a9:dc: 32:08:90:7b:5d:e4:91:f6:81:e3:04:16:7a:c4:03:6d:78:dc: da:6e:2b:63:85:2a:2c:71:33:97:36:40:e2:59:d6:96:3c:c9: d7:bf:ce:12:a5:a6:5c:dc:0d:b8:d6:59:ad:c1:22:4d:79:25: 4d:b5:a8:50:60:ea:e2:b9:bf:8e:aa:16:be:b4:9b:8b:f0:c2: f2:b3:95:a0:d2:11:46:a7:c0:8d:27:6b:78:a0:08:9c:d3:0a: 21:47:5b:27:17:96:3a:f7:12:6b:1e:98:1a:d3:2b:6a:55:f8: 3d:77:fb:de:8b:07:d4:f7:57:e3:77:f3:f0:73:57:23:8e:2b: 42:c1:22:17:cf:ac:43:5d:43:c7:cb:e7:60:19:8a:6d:9b:a8: f8:42:f5:da -----BEGIN CERTIFICATE----- MIIGpTCCBY2gAwIBAgIUFupXAOBtMLvUtmxnzfzLSUwNH74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMDY2NUVDRjhBOTdCODNFMzk4MjY4RDkyQTI1NUJB RTY2MTgxNjAeFw0yNDExMDcxMjU1MTlaFw0yNTExMDYxMzAwMTlaMDMxMTAvBgNV BAMTKDRERTk1M0QwREJCN0U3OTM5MTREMDRDMzJENjlERDY0MDk3NTY4RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDesr3lc7mgxzXXt89AYMtAhfU0 W9CtnkRhk3LeV0njc7QMFrn/ajVzeEd0PSSF2oP3lWQFBqqLzhW+pjOCRTIddcaL fQRiZKqLUdtYsAx6TJQ+FFsi/2noxuUjrfYJzKTbegRwPOD0ZIyk6Ky+W4wkABro X/Wxs5UUEbNGVOz821aXSqXInnxZXeCT6pyf3k6g/AL5+9WNcrjzxq0QPJAnyBP4 rkBtxqeBlU0U6IsHtXVmByPPiCrViKdMkDsAozPqibvX+fnuPlMvMyziyuhn2Bcm d0hwe1CWH8q7DcYTdOxhwVP6uT2lxWc8jBFxENDTnm+a3c5chuJJkqy/sfBLAgMB AAGjggOvMIIDqzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRN6VPQ27fnk5FN BMMtad1kCXVo7TAfBgNVHSMEGDAWgBS8wGZez4qXuD45gmjZKiVbrmYYFjAOBgNV HQ8BAf8EBAMCAQYwgbAGA1UdHwSBqDCBpTCBoqCBn6CBnIaBmXJzeW5jOi8vcmVw b3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURF NzA5QUMwRDI1NUNGMjc5QzQ3NzE2RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQv MC9CQ0MwNjY1RUNGOEE5N0I4M0UzOTgyNjhEOTJBMjU1QkFFNjYxODE2LmNybDCB uQYIKwYBBQUHAQEEgawwgakwgaYGCCsGAQUFBzAChoGZcnN5bmM6Ly9yZXBvc2l0 b3J5LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvRTVBQTFCMkM2OTBEMzRERDNBNDJF MEMwMjY4QzMyMThFRDE1OEUxNUQyOUZDQkQwQkFCNjZCNDc4NkQ2MzJFNi8wL0JD QzA2NjVFQ0Y4QTk3QjgzRTM5ODI2OEQ5MkEyNTVCQUU2NjE4MTYuY2VyMIIBcQYI KwYBBQUHAQsEggFjMIIBXzB5BggrBgEFBQcwBYZtcnN5bmM6Ly9yZXBvc2l0b3J5 LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvRThDRkMxMTdGQjYxOEJBNURDRTFFMjUx RTExM0JGMURDRTZDMUJGNkU5QkY2RjQ5MTRBRTgwOTU5MzRDMzFFNy8wLzCBpgYI KwYBBQUHMAqGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy9FOENGQzExN0ZCNjE4QkE1RENFMUUyNTFFMTEzQkYxRENFNkMxQkY2RTlC RjZGNDkxNEFFODA5NTkzNEMzMUU3LzAvNERFOTUzRDBEQkI3RTc5MzkxNEQwNEMz MkQ2OURENjQwOTc1NjhFRC5tZnQwOQYIKwYBBQUHMA2GLWh0dHBzOi8vcnJkcC5s YWNuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCqk+QMA0EAgAC MAcDBQAoA/jAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwQuNzANBgkqhkiG9w0B AQsFAAOCAQEAP9W4J30/UqDLBMOsiqytL/ilmge6uCYdgaTKjzntnOvDSmeTPEXX Ttlsq2+PnPIBLyex6Oztamsy9OK7IsMnV0KiB/465wzuQnhDO8yzjjlIcCvpXHmY Yby6Kr92cfFNQe8x+WIcdyLb+ancMgiQe13kkfaB4wQWesQDbXjc2m4rY4UqLHEz lzZA4lnWljzJ17/OEqWmXNwNuNZZrcEiTXklTbWoUGDq4rm/jqoWvrSbi/DC8rOV oNIRRqfAjSdreKAInNMKIUdbJxeWOvcSax6YGtMralX4PXf73osH1PdX43fz8HNX I44rQsEiF8+sQ11Dx8vnYBmKbZuo+EL12g== -----END CERTIFICATE-----Generated at Fri Nov 22 04:00:07 2024 by rpki-client on console-ams.rpki-client.org