Certificate

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.cer
File:                     4DE953D0DBB7E793914D04C32D69DD64097568ED.cer (raw, json)
Hash identifier:          pSyG9h5qdWYtSqS9cfh9ovM4YriMb9Hfcrt+e0s2TtU=
Subject key identifier:   4D:E9:53:D0:DB:B7:E7:93:91:4D:04:C3:2D:69:DD:64:09:75:68:ED
Authority key identifier: BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16
Certificate issuer:       /CN=BCC0665ECF8A97B83E398268D92A255BAE661816
Certificate serial:       668E198B218481A4FB018477A8D5343652256974
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
Manifest:                 rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.mft
caRepository:             rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/
Notify URL:               https://rrdp.lacnic.net/rrdp/notification.xml
Certificate not before:   Fri 10 Oct 2025 11:33:51 +0000
Certificate not after:    Fri 09 Oct 2026 11:38:51 +0000
Subordinate resources:    AS: 273975
                          IP: 170.79.144.0/22
                          IP: 2803:f8c0::/32
Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 22 Oct 2025 11:42:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            66:8e:19:8b:21:84:81:a4:fb:01:84:77:a8:d5:34:36:52:25:69:74
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=BCC0665ECF8A97B83E398268D92A255BAE661816
        Validity
            Not Before: Oct 10 11:33:51 2025 GMT
            Not After : Oct  9 11:38:51 2026 GMT
        Subject: CN=4DE953D0DBB7E793914D04C32D69DD64097568ED
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:b2:bd:e5:73:b9:a0:c7:35:d7:b7:cf:40:60:
                    cb:40:85:f5:34:5b:d0:ad:9e:44:61:93:72:de:57:
                    49:e3:73:b4:0c:16:b9:ff:6a:35:73:78:47:74:3d:
                    24:85:da:83:f7:95:64:05:06:aa:8b:ce:15:be:a6:
                    33:82:45:32:1d:75:c6:8b:7d:04:62:64:aa:8b:51:
                    db:58:b0:0c:7a:4c:94:3e:14:5b:22:ff:69:e8:c6:
                    e5:23:ad:f6:09:cc:a4:db:7a:04:70:3c:e0:f4:64:
                    8c:a4:e8:ac:be:5b:8c:24:00:1a:e8:5f:f5:b1:b3:
                    95:14:11:b3:46:54:ec:fc:db:56:97:4a:a5:c8:9e:
                    7c:59:5d:e0:93:ea:9c:9f:de:4e:a0:fc:02:f9:fb:
                    d5:8d:72:b8:f3:c6:ad:10:3c:90:27:c8:13:f8:ae:
                    40:6d:c6:a7:81:95:4d:14:e8:8b:07:b5:75:66:07:
                    23:cf:88:2a:d5:88:a7:4c:90:3b:00:a3:33:ea:89:
                    bb:d7:f9:f9:ee:3e:53:2f:33:2c:e2:ca:e8:67:d8:
                    17:26:77:48:70:7b:50:96:1f:ca:bb:0d:c6:13:74:
                    ec:61:c1:53:fa:b9:3d:a5:c5:67:3c:8c:11:71:10:
                    d0:d3:9e:6f:9a:dd:ce:5c:86:e2:49:92:ac:bf:b1:
                    f0:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Subject Key Identifier:
                4D:E9:53:D0:DB:B7:E7:93:91:4D:04:C3:2D:69:DD:64:09:75:68:ED
            X509v3 Authority Key Identifier:
                keyid:BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer

            Subject Information Access:
                CA Repository - URI:rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/
                RPKI Manifest - URI:rsync://repository.lacnic.net/rpki/lacnic/E8CFC117FB618BA5DCE1E251E113BF1DCE6C1BF6E9BF6F4914AE8095934C31E7/0/4DE953D0DBB7E793914D04C32D69DD64097568ED.mft
                RPKI Notify - URI:https://rrdp.lacnic.net/rrdp/notification.xml

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.79.144.0/22
                IPv6:
                  2803:f8c0::/32

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  273975

    Signature Algorithm: sha256WithRSAEncryption
         81:1e:13:f5:82:db:3b:42:18:c0:56:90:4d:0e:a6:3f:9d:84:
         4d:c0:fc:d4:8c:35:a8:ad:5a:f0:e5:0f:f5:86:b6:a9:ad:35:
         6f:bb:9f:af:7d:dd:88:45:f2:ab:ea:c3:53:b8:f8:66:3f:69:
         ed:e8:9c:7c:d8:58:c6:93:2a:ec:67:6c:16:20:52:ee:dc:34:
         86:a9:46:53:bc:90:67:b1:e1:6e:be:fb:eb:a0:2d:3e:4e:09:
         47:c2:3a:67:34:5a:3d:1c:ed:4b:0e:38:68:f6:ff:8e:39:27:
         a6:79:55:3c:d8:58:82:e6:9e:54:bb:37:82:11:91:a3:f7:1e:
         a5:7f:d4:26:7a:12:9d:aa:41:33:22:c0:ae:bb:d0:b3:21:23:
         52:bb:5b:0a:d1:89:c0:9f:16:c8:1f:31:63:d8:6a:ad:95:6d:
         70:2a:41:e4:b0:73:b8:45:09:d8:f9:3d:67:1a:a2:fb:96:29:
         ba:6e:fc:a9:d0:2e:73:28:a0:d8:61:95:70:e9:21:fa:50:01:
         c1:c3:b4:fa:b0:ea:70:65:ca:76:9a:b5:fd:ee:f3:ee:e8:00:
         d7:b2:8d:4a:07:36:73:e5:53:e0:69:ef:7c:a4:fb:33:25:c8:
         bf:90:ab:5d:4e:b5:ea:52:36:3f:fa:00:a9:5f:71:16:48:53:
         7e:df:a4:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----