Certificate

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.cer
File:                     4DE953D0DBB7E793914D04C32D69DD64097568ED.cer (raw, json)
Hash identifier:          qh/r74KmNsVBXwlTiotJzRjkNOHjb2OH0bsEYP7sNuY=
Subject key identifier:   4D:E9:53:D0:DB:B7:E7:93:91:4D:04:C3:2D:69:DD:64:09:75:68:ED
Authority key identifier: BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16
Certificate issuer:       /CN=BCC0665ECF8A97B83E398268D92A255BAE661816
Certificate serial:       3D30B1108E37896803D25E502909BFA9C647D6CB
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
Manifest:                 rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.mft
caRepository:             rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/
Notify URL:               https://rrdp.lacnic.net/rrdp/notification.xml
Certificate not before:   Tue 05 Mar 2024 17:47:03 +0000
Certificate not after:    Tue 04 Mar 2025 17:52:03 +0000
Subordinate resources:    IP: 170.79.144.0/22
                          IP: 2803:f8c0::/32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 21 Jul 2024 04:10:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3d:30:b1:10:8e:37:89:68:03:d2:5e:50:29:09:bf:a9:c6:47:d6:cb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=BCC0665ECF8A97B83E398268D92A255BAE661816
        Validity
            Not Before: Mar  5 17:47:03 2024 GMT
            Not After : Mar  4 17:52:03 2025 GMT
        Subject: CN=4DE953D0DBB7E793914D04C32D69DD64097568ED
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:b2:bd:e5:73:b9:a0:c7:35:d7:b7:cf:40:60:
                    cb:40:85:f5:34:5b:d0:ad:9e:44:61:93:72:de:57:
                    49:e3:73:b4:0c:16:b9:ff:6a:35:73:78:47:74:3d:
                    24:85:da:83:f7:95:64:05:06:aa:8b:ce:15:be:a6:
                    33:82:45:32:1d:75:c6:8b:7d:04:62:64:aa:8b:51:
                    db:58:b0:0c:7a:4c:94:3e:14:5b:22:ff:69:e8:c6:
                    e5:23:ad:f6:09:cc:a4:db:7a:04:70:3c:e0:f4:64:
                    8c:a4:e8:ac:be:5b:8c:24:00:1a:e8:5f:f5:b1:b3:
                    95:14:11:b3:46:54:ec:fc:db:56:97:4a:a5:c8:9e:
                    7c:59:5d:e0:93:ea:9c:9f:de:4e:a0:fc:02:f9:fb:
                    d5:8d:72:b8:f3:c6:ad:10:3c:90:27:c8:13:f8:ae:
                    40:6d:c6:a7:81:95:4d:14:e8:8b:07:b5:75:66:07:
                    23:cf:88:2a:d5:88:a7:4c:90:3b:00:a3:33:ea:89:
                    bb:d7:f9:f9:ee:3e:53:2f:33:2c:e2:ca:e8:67:d8:
                    17:26:77:48:70:7b:50:96:1f:ca:bb:0d:c6:13:74:
                    ec:61:c1:53:fa:b9:3d:a5:c5:67:3c:8c:11:71:10:
                    d0:d3:9e:6f:9a:dd:ce:5c:86:e2:49:92:ac:bf:b1:
                    f0:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Subject Key Identifier:
                4D:E9:53:D0:DB:B7:E7:93:91:4D:04:C3:2D:69:DD:64:09:75:68:ED
            X509v3 Authority Key Identifier:
                keyid:BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer

            Subject Information Access:
                CA Repository - URI:rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/
                RPKI Manifest - URI:rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.mft
                RPKI Notify - URI:https://rrdp.lacnic.net/rrdp/notification.xml

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.79.144.0/22
                IPv6:
                  2803:f8c0::/32

    Signature Algorithm: sha256WithRSAEncryption
         79:2b:26:bb:db:b5:39:d7:b6:28:76:7d:2f:bc:64:95:76:10:
         cc:0e:a1:03:e1:ab:e6:65:94:b2:59:d6:d3:2a:a6:91:32:a6:
         ff:96:51:90:e1:fb:ec:b1:72:0d:e8:d9:08:e0:6f:d7:0d:8c:
         4e:a8:07:b9:ba:14:7e:e6:2d:46:27:2c:82:47:c2:1a:0d:84:
         f3:74:2b:fb:2b:2f:60:b8:fb:4c:58:b3:0e:8c:46:b4:d9:3b:
         ba:63:62:a5:3a:c7:8a:35:ed:40:06:b3:1e:32:8d:b7:71:bc:
         50:11:f9:5f:34:91:93:30:46:bd:c6:d9:e2:71:38:cf:10:77:
         02:ea:c8:43:6a:3a:83:a9:e2:17:c8:6b:b9:44:09:c0:46:36:
         a9:0f:2d:91:1d:e8:f4:4e:1f:1c:af:da:05:ee:23:2b:18:69:
         ca:54:99:95:2c:94:71:d3:e4:8f:63:da:bb:2d:0d:9e:c1:42:
         2e:d2:05:ee:81:2a:74:ac:b4:23:08:22:89:16:6f:ae:5e:08:
         bc:39:43:25:74:33:5d:f6:22:bf:54:f4:43:79:6b:fb:41:c3:
         65:12:b3:b8:6d:fb:dc:eb:fb:98:1d:65:cc:19:a9:cb:0e:71:
         59:d8:25:51:0a:82:31:a6:71:33:10:97:4b:7b:1b:5e:38:80:
         ab:81:3d:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 15:29:36 2024 by rpki-client on console-fra.rpki-client.org