$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.cer File: 4DE953D0DBB7E793914D04C32D69DD64097568ED.cer (raw, json) Hash identifier: qh/r74KmNsVBXwlTiotJzRjkNOHjb2OH0bsEYP7sNuY= Subject key identifier: 4D:E9:53:D0:DB:B7:E7:93:91:4D:04:C3:2D:69:DD:64:09:75:68:ED Authority key identifier: BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 Certificate issuer: /CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Certificate serial: 3D30B1108E37896803D25E502909BFA9C647D6CB Authority info access: rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Manifest: rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.mft caRepository: rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/ Notify URL: https://rrdp.lacnic.net/rrdp/notification.xml Certificate not before: Tue 05 Mar 2024 17:47:03 +0000 Certificate not after: Tue 04 Mar 2025 17:52:03 +0000 Subordinate resources: IP: 170.79.144.0/22 IP: 2803:f8c0::/32 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 29 Oct 2024 04:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:30:b1:10:8e:37:89:68:03:d2:5e:50:29:09:bf:a9:c6:47:d6:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Validity Not Before: Mar 5 17:47:03 2024 GMT Not After : Mar 4 17:52:03 2025 GMT Subject: CN=4DE953D0DBB7E793914D04C32D69DD64097568ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b2:bd:e5:73:b9:a0:c7:35:d7:b7:cf:40:60: cb:40:85:f5:34:5b:d0:ad:9e:44:61:93:72:de:57: 49:e3:73:b4:0c:16:b9:ff:6a:35:73:78:47:74:3d: 24:85:da:83:f7:95:64:05:06:aa:8b:ce:15:be:a6: 33:82:45:32:1d:75:c6:8b:7d:04:62:64:aa:8b:51: db:58:b0:0c:7a:4c:94:3e:14:5b:22:ff:69:e8:c6: e5:23:ad:f6:09:cc:a4:db:7a:04:70:3c:e0:f4:64: 8c:a4:e8:ac:be:5b:8c:24:00:1a:e8:5f:f5:b1:b3: 95:14:11:b3:46:54:ec:fc:db:56:97:4a:a5:c8:9e: 7c:59:5d:e0:93:ea:9c:9f:de:4e:a0:fc:02:f9:fb: d5:8d:72:b8:f3:c6:ad:10:3c:90:27:c8:13:f8:ae: 40:6d:c6:a7:81:95:4d:14:e8:8b:07:b5:75:66:07: 23:cf:88:2a:d5:88:a7:4c:90:3b:00:a3:33:ea:89: bb:d7:f9:f9:ee:3e:53:2f:33:2c:e2:ca:e8:67:d8: 17:26:77:48:70:7b:50:96:1f:ca:bb:0d:c6:13:74: ec:61:c1:53:fa:b9:3d:a5:c5:67:3c:8c:11:71:10: d0:d3:9e:6f:9a:dd:ce:5c:86:e2:49:92:ac:bf:b1: f0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4D:E9:53:D0:DB:B7:E7:93:91:4D:04:C3:2D:69:DD:64:09:75:68:ED X509v3 Authority Key Identifier: keyid:BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Subject Information Access: CA Repository - URI:rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/ RPKI Manifest - URI:rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.mft RPKI Notify - URI:https://rrdp.lacnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.79.144.0/22 IPv6: 2803:f8c0::/32 Signature Algorithm: sha256WithRSAEncryption 79:2b:26:bb:db:b5:39:d7:b6:28:76:7d:2f:bc:64:95:76:10: cc:0e:a1:03:e1:ab:e6:65:94:b2:59:d6:d3:2a:a6:91:32:a6: ff:96:51:90:e1:fb:ec:b1:72:0d:e8:d9:08:e0:6f:d7:0d:8c: 4e:a8:07:b9:ba:14:7e:e6:2d:46:27:2c:82:47:c2:1a:0d:84: f3:74:2b:fb:2b:2f:60:b8:fb:4c:58:b3:0e:8c:46:b4:d9:3b: ba:63:62:a5:3a:c7:8a:35:ed:40:06:b3:1e:32:8d:b7:71:bc: 50:11:f9:5f:34:91:93:30:46:bd:c6:d9:e2:71:38:cf:10:77: 02:ea:c8:43:6a:3a:83:a9:e2:17:c8:6b:b9:44:09:c0:46:36: a9:0f:2d:91:1d:e8:f4:4e:1f:1c:af:da:05:ee:23:2b:18:69: ca:54:99:95:2c:94:71:d3:e4:8f:63:da:bb:2d:0d:9e:c1:42: 2e:d2:05:ee:81:2a:74:ac:b4:23:08:22:89:16:6f:ae:5e:08: bc:39:43:25:74:33:5d:f6:22:bf:54:f4:43:79:6b:fb:41:c3: 65:12:b3:b8:6d:fb:dc:eb:fb:98:1d:65:cc:19:a9:cb:0e:71: 59:d8:25:51:0a:82:31:a6:71:33:10:97:4b:7b:1b:5e:38:80: ab:81:3d:dc -----BEGIN CERTIFICATE----- MIIGiTCCBXGgAwIBAgIUPTCxEI43iWgD0l5QKQm/qcZH1sswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMDY2NUVDRjhBOTdCODNFMzk4MjY4RDkyQTI1NUJB RTY2MTgxNjAeFw0yNDAzMDUxNzQ3MDNaFw0yNTAzMDQxNzUyMDNaMDMxMTAvBgNV BAMTKDRERTk1M0QwREJCN0U3OTM5MTREMDRDMzJENjlERDY0MDk3NTY4RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDesr3lc7mgxzXXt89AYMtAhfU0 W9CtnkRhk3LeV0njc7QMFrn/ajVzeEd0PSSF2oP3lWQFBqqLzhW+pjOCRTIddcaL fQRiZKqLUdtYsAx6TJQ+FFsi/2noxuUjrfYJzKTbegRwPOD0ZIyk6Ky+W4wkABro X/Wxs5UUEbNGVOz821aXSqXInnxZXeCT6pyf3k6g/AL5+9WNcrjzxq0QPJAnyBP4 rkBtxqeBlU0U6IsHtXVmByPPiCrViKdMkDsAozPqibvX+fnuPlMvMyziyuhn2Bcm d0hwe1CWH8q7DcYTdOxhwVP6uT2lxWc8jBFxENDTnm+a3c5chuJJkqy/sfBLAgMB AAGjggOTMIIDjzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRN6VPQ27fnk5FN BMMtad1kCXVo7TAfBgNVHSMEGDAWgBS8wGZez4qXuD45gmjZKiVbrmYYFjAOBgNV HQ8BAf8EBAMCAQYwgbAGA1UdHwSBqDCBpTCBoqCBn6CBnIaBmXJzeW5jOi8vcmVw b3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURF NzA5QUMwRDI1NUNGMjc5QzQ3NzE2RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQv MC9CQ0MwNjY1RUNGOEE5N0I4M0UzOTgyNjhEOTJBMjU1QkFFNjYxODE2LmNybDCB uQYIKwYBBQUHAQEEgawwgakwgaYGCCsGAQUFBzAChoGZcnN5bmM6Ly9yZXBvc2l0 b3J5LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvRTVBQTFCMkM2OTBEMzRERDNBNDJF MEMwMjY4QzMyMThFRDE1OEUxNUQyOUZDQkQwQkFCNjZCNDc4NkQ2MzJFNi8wL0JD QzA2NjVFQ0Y4QTk3QjgzRTM5ODI2OEQ5MkEyNTVCQUU2NjE4MTYuY2VyMIIBcQYI KwYBBQUHAQsEggFjMIIBXzB5BggrBgEFBQcwBYZtcnN5bmM6Ly9yZXBvc2l0b3J5 LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvRThDRkMxMTdGQjYxOEJBNURDRTFFMjUx RTExM0JGMURDRTZDMUJGNkU5QkY2RjQ5MTRBRTgwOTU5MzRDMzFFNy8wLzCBpgYI KwYBBQUHMAqGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy9FOENGQzExN0ZCNjE4QkE1RENFMUUyNTFFMTEzQkYxRENFNkMxQkY2RTlC RjZGNDkxNEFFODA5NTkzNEMzMUU3LzAvNERFOTUzRDBEQkI3RTc5MzkxNEQwNEMz MkQ2OURENjQwOTc1NjhFRC5tZnQwOQYIKwYBBQUHMA2GLWh0dHBzOi8vcnJkcC5s YWNuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCqk+QMA0EAgAC MAcDBQAoA/jAMA0GCSqGSIb3DQEBCwUAA4IBAQB5Kya727U517Yodn0vvGSVdhDM DqED4avmZZSyWdbTKqaRMqb/llGQ4fvssXIN6NkI4G/XDYxOqAe5uhR+5i1GJyyC R8IaDYTzdCv7Ky9guPtMWLMOjEa02Tu6Y2KlOseKNe1ABrMeMo23cbxQEflfNJGT MEa9xtnicTjPEHcC6shDajqDqeIXyGu5RAnARjapDy2RHej0Th8cr9oF7iMrGGnK VJmVLJRx0+SPY9q7LQ2ewUIu0gXugSp0rLQjCCKJFm+uXgi8OUMldDNd9iK/VPRD eWv7QcNlErO4bfvc6/uYHWXMGanLDnFZ2CVRCoIxpnEzEJdLexteOICrgT3c -----END CERTIFICATE-----Generated at Fri Oct 25 14:08:07 2024 by rpki-client on console-ams.rpki-client.org