$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.cer File: 4DE953D0DBB7E793914D04C32D69DD64097568ED.cer (raw, json) Hash identifier: pSyG9h5qdWYtSqS9cfh9ovM4YriMb9Hfcrt+e0s2TtU= Subject key identifier: 4D:E9:53:D0:DB:B7:E7:93:91:4D:04:C3:2D:69:DD:64:09:75:68:ED Authority key identifier: BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 Certificate issuer: /CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Certificate serial: 668E198B218481A4FB018477A8D5343652256974 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Manifest: rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.mft caRepository: rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/ Notify URL: https://rrdp.lacnic.net/rrdp/notification.xml Certificate not before: Fri 10 Oct 2025 11:33:51 +0000 Certificate not after: Fri 09 Oct 2026 11:38:51 +0000 Subordinate resources: AS: 273975 IP: 170.79.144.0/22 IP: 2803:f8c0::/32 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 22 Oct 2025 11:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:8e:19:8b:21:84:81:a4:fb:01:84:77:a8:d5:34:36:52:25:69:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Validity Not Before: Oct 10 11:33:51 2025 GMT Not After : Oct 9 11:38:51 2026 GMT Subject: CN=4DE953D0DBB7E793914D04C32D69DD64097568ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b2:bd:e5:73:b9:a0:c7:35:d7:b7:cf:40:60: cb:40:85:f5:34:5b:d0:ad:9e:44:61:93:72:de:57: 49:e3:73:b4:0c:16:b9:ff:6a:35:73:78:47:74:3d: 24:85:da:83:f7:95:64:05:06:aa:8b:ce:15:be:a6: 33:82:45:32:1d:75:c6:8b:7d:04:62:64:aa:8b:51: db:58:b0:0c:7a:4c:94:3e:14:5b:22:ff:69:e8:c6: e5:23:ad:f6:09:cc:a4:db:7a:04:70:3c:e0:f4:64: 8c:a4:e8:ac:be:5b:8c:24:00:1a:e8:5f:f5:b1:b3: 95:14:11:b3:46:54:ec:fc:db:56:97:4a:a5:c8:9e: 7c:59:5d:e0:93:ea:9c:9f:de:4e:a0:fc:02:f9:fb: d5:8d:72:b8:f3:c6:ad:10:3c:90:27:c8:13:f8:ae: 40:6d:c6:a7:81:95:4d:14:e8:8b:07:b5:75:66:07: 23:cf:88:2a:d5:88:a7:4c:90:3b:00:a3:33:ea:89: bb:d7:f9:f9:ee:3e:53:2f:33:2c:e2:ca:e8:67:d8: 17:26:77:48:70:7b:50:96:1f:ca:bb:0d:c6:13:74: ec:61:c1:53:fa:b9:3d:a5:c5:67:3c:8c:11:71:10: d0:d3:9e:6f:9a:dd:ce:5c:86:e2:49:92:ac:bf:b1: f0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4D:E9:53:D0:DB:B7:E7:93:91:4D:04:C3:2D:69:DD:64:09:75:68:ED X509v3 Authority Key Identifier: keyid:BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Subject Information Access: CA Repository - URI:rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/ RPKI Manifest - URI:rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.mft RPKI Notify - URI:https://rrdp.lacnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.79.144.0/22 IPv6: 2803:f8c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 273975 Signature Algorithm: sha256WithRSAEncryption 81:1e:13:f5:82:db:3b:42:18:c0:56:90:4d:0e:a6:3f:9d:84: 4d:c0:fc:d4:8c:35:a8:ad:5a:f0:e5:0f:f5:86:b6:a9:ad:35: 6f:bb:9f:af:7d:dd:88:45:f2:ab:ea:c3:53:b8:f8:66:3f:69: ed:e8:9c:7c:d8:58:c6:93:2a:ec:67:6c:16:20:52:ee:dc:34: 86:a9:46:53:bc:90:67:b1:e1:6e:be:fb:eb:a0:2d:3e:4e:09: 47:c2:3a:67:34:5a:3d:1c:ed:4b:0e:38:68:f6:ff:8e:39:27: a6:79:55:3c:d8:58:82:e6:9e:54:bb:37:82:11:91:a3:f7:1e: a5:7f:d4:26:7a:12:9d:aa:41:33:22:c0:ae:bb:d0:b3:21:23: 52:bb:5b:0a:d1:89:c0:9f:16:c8:1f:31:63:d8:6a:ad:95:6d: 70:2a:41:e4:b0:73:b8:45:09:d8:f9:3d:67:1a:a2:fb:96:29: ba:6e:fc:a9:d0:2e:73:28:a0:d8:61:95:70:e9:21:fa:50:01: c1:c3:b4:fa:b0:ea:70:65:ca:76:9a:b5:fd:ee:f3:ee:e8:00: d7:b2:8d:4a:07:36:73:e5:53:e0:69:ef:7c:a4:fb:33:25:c8: bf:90:ab:5d:4e:b5:ea:52:36:3f:fa:00:a9:5f:71:16:48:53: 7e:df:a4:7f -----BEGIN CERTIFICATE----- MIIGpTCCBY2gAwIBAgIUZo4ZiyGEgaT7AYR3qNU0NlIlaXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMDY2NUVDRjhBOTdCODNFMzk4MjY4RDkyQTI1NUJB RTY2MTgxNjAeFw0yNTEwMTAxMTMzNTFaFw0yNjEwMDkxMTM4NTFaMDMxMTAvBgNV BAMTKDRERTk1M0QwREJCN0U3OTM5MTREMDRDMzJENjlERDY0MDk3NTY4RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDesr3lc7mgxzXXt89AYMtAhfU0 W9CtnkRhk3LeV0njc7QMFrn/ajVzeEd0PSSF2oP3lWQFBqqLzhW+pjOCRTIddcaL fQRiZKqLUdtYsAx6TJQ+FFsi/2noxuUjrfYJzKTbegRwPOD0ZIyk6Ky+W4wkABro X/Wxs5UUEbNGVOz821aXSqXInnxZXeCT6pyf3k6g/AL5+9WNcrjzxq0QPJAnyBP4 rkBtxqeBlU0U6IsHtXVmByPPiCrViKdMkDsAozPqibvX+fnuPlMvMyziyuhn2Bcm d0hwe1CWH8q7DcYTdOxhwVP6uT2lxWc8jBFxENDTnm+a3c5chuJJkqy/sfBLAgMB AAGjggOvMIIDqzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRN6VPQ27fnk5FN BMMtad1kCXVo7TAfBgNVHSMEGDAWgBS8wGZez4qXuD45gmjZKiVbrmYYFjAOBgNV HQ8BAf8EBAMCAQYwgbAGA1UdHwSBqDCBpTCBoqCBn6CBnIaBmXJzeW5jOi8vcmVw b3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURF NzA5QUMwRDI1NUNGMjc5QzQ3NzE2RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQv MC9CQ0MwNjY1RUNGOEE5N0I4M0UzOTgyNjhEOTJBMjU1QkFFNjYxODE2LmNybDCB uQYIKwYBBQUHAQEEgawwgakwgaYGCCsGAQUFBzAChoGZcnN5bmM6Ly9yZXBvc2l0 b3J5LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvRTVBQTFCMkM2OTBEMzRERDNBNDJF MEMwMjY4QzMyMThFRDE1OEUxNUQyOUZDQkQwQkFCNjZCNDc4NkQ2MzJFNi8wL0JD QzA2NjVFQ0Y4QTk3QjgzRTM5ODI2OEQ5MkEyNTVCQUU2NjE4MTYuY2VyMIIBcQYI KwYBBQUHAQsEggFjMIIBXzB5BggrBgEFBQcwBYZtcnN5bmM6Ly9yZXBvc2l0b3J5 LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvRThDRkMxMTdGQjYxOEJBNURDRTFFMjUx RTExM0JGMURDRTZDMUJGNkU5QkY2RjQ5MTRBRTgwOTU5MzRDMzFFNy8wLzCBpgYI KwYBBQUHMAqGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy9FOENGQzExN0ZCNjE4QkE1RENFMUUyNTFFMTEzQkYxRENFNkMxQkY2RTlC RjZGNDkxNEFFODA5NTkzNEMzMUU3LzAvNERFOTUzRDBEQkI3RTc5MzkxNEQwNEMz MkQ2OURENjQwOTc1NjhFRC5tZnQwOQYIKwYBBQUHMA2GLWh0dHBzOi8vcnJkcC5s YWNuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCqk+QMA0EAgAC MAcDBQAoA/jAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwQuNzANBgkqhkiG9w0B AQsFAAOCAQEAgR4T9YLbO0IYwFaQTQ6mP52ETcD81Iw1qK1a8OUP9Ya2qa01b7uf r33diEXyq+rDU7j4Zj9p7eicfNhYxpMq7GdsFiBS7tw0hqlGU7yQZ7Hhbr7766At Pk4JR8I6ZzRaPRztSw44aPb/jjknpnlVPNhYguaeVLs3ghGRo/cepX/UJnoSnapB MyLArrvQsyEjUrtbCtGJwJ8WyB8xY9hqrZVtcCpB5LBzuEUJ2Pk9Zxqi+5Ypum78 qdAucyig2GGVcOkh+lABwcO0+rDqcGXKdpq1/e7z7ugA17KNSgc2c+VT4GnvfKT7 MyXIv5CrXU616lI2P/oAqV9xFkhTft+kfw== -----END CERTIFICATE-----Generated at Sat Oct 18 03:14:33 2025 by rpki-client