$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D2709F777988D8BB9C29DBBB53968812568C616E.cer File: D2709F777988D8BB9C29DBBB53968812568C616E.cer (raw, json) Hash identifier: ne5pblpKqbVGlE31g3eTUXVgXKETiuLPAH4LfG4oUNQ= Subject key identifier: D2:70:9F:77:79:88:D8:BB:9C:29:DB:BB:53:96:88:12:56:8C:61:6E Authority key identifier: BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 Certificate issuer: /CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Certificate serial: 4DD9C073A19FC1D64D044C0F477EB915BFE54E00 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Manifest: rsync://repository.lacnic.net/rpki/lacnic/1CBDA3CBE3F94B19EDF009953C0F455D7053B060883FF74AB3FFCA12818F0932/0/D2709F777988D8BB9C29DBBB53968812568C616E.mft caRepository: rsync://repository.lacnic.net/rpki/lacnic/1CBDA3CBE3F94B19EDF009953C0F455D7053B060883FF74AB3FFCA12818F0932/0/ Notify URL: https://rrdp.lacnic.net/rrdp/notification.xml Certificate not before: Tue 05 Mar 2024 17:41:37 +0000 Certificate not after: Tue 04 Mar 2025 17:46:37 +0000 Subordinate resources: AS: 28041 IP: 190.9.179.0/24 IP: 190.9.181.0 -- 190.9.191.255 IP: 200.125.128.0/24 IP: 200.125.130.0 -- 200.125.159.255 IP: 2803:a400::/32 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 26 Nov 2024 22:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:d9:c0:73:a1:9f:c1:d6:4d:04:4c:0f:47:7e:b9:15:bf:e5:4e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCC0665ECF8A97B83E398268D92A255BAE661816 Validity Not Before: Mar 5 17:41:37 2024 GMT Not After : Mar 4 17:46:37 2025 GMT Subject: CN=D2709F777988D8BB9C29DBBB53968812568C616E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:32:9d:89:4b:d8:2c:1b:78:29:cd:b7:32:40: 84:f1:b0:75:64:b4:aa:3d:61:62:ca:3f:c1:81:c1: 08:bc:a2:be:38:af:c9:12:2d:2b:e5:1f:95:61:f6: 86:3f:d5:d7:d5:64:46:17:fb:03:38:a2:e1:7f:70: 0e:88:2e:85:92:cb:56:09:56:9f:3f:cd:51:ca:07: e3:b7:56:69:88:0f:c6:e1:ee:fd:4d:1d:f4:36:81: 17:8b:cb:83:b1:5b:1e:33:b5:98:b5:41:09:bd:47: f9:d9:86:e5:8b:08:a2:aa:f6:69:aa:cd:e6:90:1d: 16:66:41:53:1c:f1:8b:45:a1:0d:1c:6e:74:db:9c: 63:1b:59:8d:4f:d9:b7:9e:a8:3d:3a:00:a6:db:35: c0:81:79:59:eb:68:a3:b7:86:08:f2:6c:88:e1:76: 4c:31:08:9c:98:a0:bc:6c:78:1a:31:da:6b:eb:37: 7c:e4:88:55:39:49:ca:28:71:4d:5b:94:67:26:fe: 79:ed:27:a7:26:24:d4:36:be:6d:ff:5b:7f:18:60: 76:a0:e5:57:26:07:93:f6:25:9d:fa:e5:d2:ad:bc: 0a:91:da:ed:4c:e5:24:e4:b3:a8:77:ca:bb:e9:e4: 1a:d6:d2:14:6d:d4:f1:1d:75:9c:ec:63:1e:88:6b: f6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D2:70:9F:77:79:88:D8:BB:9C:29:DB:BB:53:96:88:12:56:8C:61:6E X509v3 Authority Key Identifier: keyid:BC:C0:66:5E:CF:8A:97:B8:3E:39:82:68:D9:2A:25:5B:AE:66:18:16 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer Subject Information Access: CA Repository - URI:rsync://repository.lacnic.net/rpki/lacnic/1CBDA3CBE3F94B19EDF009953C0F455D7053B060883FF74AB3FFCA12818F0932/0/ RPKI Manifest - URI:rsync://repository.lacnic.net/rpki/lacnic/1CBDA3CBE3F94B19EDF009953C0F455D7053B060883FF74AB3FFCA12818F0932/0/D2709F777988D8BB9C29DBBB53968812568C616E.mft RPKI Notify - URI:https://rrdp.lacnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 190.9.179.0/24 190.9.181.0-190.9.191.255 200.125.128.0/24 200.125.130.0-200.125.159.255 IPv6: 2803:a400::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 28041 Signature Algorithm: sha256WithRSAEncryption b4:15:0b:19:ac:dc:f1:37:49:92:3a:f7:eb:74:ee:1e:69:b4: 2a:60:ce:74:1f:c1:a6:a3:d9:a9:fb:3d:63:73:48:70:5e:65: a6:34:e9:1c:c3:3f:22:70:05:03:3d:0c:6d:36:e0:78:a1:3e: 37:04:f1:1b:2a:0d:5c:65:08:61:18:c6:3f:9b:72:3c:ba:e9: de:70:ca:2f:69:85:d9:35:04:6c:dd:76:62:1c:6f:59:6f:39: dd:32:6a:45:10:0d:e9:ea:f6:35:e9:31:6f:59:40:b2:30:23: 05:49:9d:59:56:f3:ef:5f:da:35:ff:27:6e:d0:90:08:bd:af: 22:02:41:cc:31:6c:9b:f6:39:ac:d9:51:79:43:c3:55:40:62: 28:a0:de:cd:1a:ba:28:f0:c0:7d:95:20:61:c9:9d:c1:5c:1c: 85:56:cb:67:a2:36:51:46:d3:63:53:27:40:6e:18:ab:43:b9: ce:87:c0:be:e3:15:09:ed:05:c0:77:70:91:8e:4b:b2:6f:50: 3d:f8:0d:3d:e1:aa:7d:80:dd:bd:3a:26:75:1a:7b:84:39:52: 05:2c:77:ef:fa:eb:52:d6:5d:65:6e:d6:d7:28:1d:2d:41:7a: 99:89:a5:96:14:62:4a:97:3b:45:4d:7c:af:30:3a:ae:4d:04: 0d:62:c3:93 -----BEGIN CERTIFICATE----- MIIGxjCCBa6gAwIBAgIUTdnAc6GfwdZNBEwPR365Fb/lTgAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNDMDY2NUVDRjhBOTdCODNFMzk4MjY4RDkyQTI1NUJB RTY2MTgxNjAeFw0yNDAzMDUxNzQxMzdaFw0yNTAzMDQxNzQ2MzdaMDMxMTAvBgNV BAMTKEQyNzA5Rjc3Nzk4OEQ4QkI5QzI5REJCQjUzOTY4ODEyNTY4QzYxNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEMp2JS9gsG3gpzbcyQITxsHVk tKo9YWLKP8GBwQi8or44r8kSLSvlH5Vh9oY/1dfVZEYX+wM4ouF/cA6ILoWSy1YJ Vp8/zVHKB+O3VmmID8bh7v1NHfQ2gReLy4OxWx4ztZi1QQm9R/nZhuWLCKKq9mmq zeaQHRZmQVMc8YtFoQ0cbnTbnGMbWY1P2beeqD06AKbbNcCBeVnraKO3hgjybIjh dkwxCJyYoLxseBox2mvrN3zkiFU5ScoocU1blGcm/nntJ6cmJNQ2vm3/W38YYHag 5VcmB5P2JZ365dKtvAqR2u1M5STks6h3yrvp5BrW0hRt1PEddZzsYx6Ia/a9AgMB AAGjggPQMIIDzDAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTScJ93eYjYu5wp 27tTlogSVoxhbjAfBgNVHSMEGDAWgBS8wGZez4qXuD45gmjZKiVbrmYYFjAOBgNV HQ8BAf8EBAMCAQYwgbAGA1UdHwSBqDCBpTCBoqCBn6CBnIaBmXJzeW5jOi8vcmVw b3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURF NzA5QUMwRDI1NUNGMjc5QzQ3NzE2RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQv MC9CQ0MwNjY1RUNGOEE5N0I4M0UzOTgyNjhEOTJBMjU1QkFFNjYxODE2LmNybDCB uQYIKwYBBQUHAQEEgawwgakwgaYGCCsGAQUFBzAChoGZcnN5bmM6Ly9yZXBvc2l0 b3J5LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvRTVBQTFCMkM2OTBEMzRERDNBNDJF MEMwMjY4QzMyMThFRDE1OEUxNUQyOUZDQkQwQkFCNjZCNDc4NkQ2MzJFNi8wL0JD QzA2NjVFQ0Y4QTk3QjgzRTM5ODI2OEQ5MkEyNTVCQUU2NjE4MTYuY2VyMIIBcQYI KwYBBQUHAQsEggFjMIIBXzB5BggrBgEFBQcwBYZtcnN5bmM6Ly9yZXBvc2l0b3J5 LmxhY25pYy5uZXQvcnBraS9sYWNuaWMvMUNCREEzQ0JFM0Y5NEIxOUVERjAwOTk1 M0MwRjQ1NUQ3MDUzQjA2MDg4M0ZGNzRBQjNGRkNBMTI4MThGMDkzMi8wLzCBpgYI KwYBBQUHMAqGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy8xQ0JEQTNDQkUzRjk0QjE5RURGMDA5OTUzQzBGNDU1RDcwNTNCMDYwODgz RkY3NEFCM0ZGQ0ExMjgxOEYwOTMyLzAvRDI3MDlGNzc3OTg4RDhCQjlDMjlEQkJC NTM5Njg4MTI1NjhDNjE2RS5tZnQwOQYIKwYBBQUHMA2GLWh0dHBzOi8vcnJkcC5s YWNuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFAGCCsGAQUFBwEHAQH/BEEwPzAuBAIAATAoAwQAvgmzMAwDBAC+ CbUDBAa+CYADBADIfYAwDAMEAch9ggMEBch9gDANBAIAAjAHAwUAKAOkADAZBggr BgEFBQcBCAEB/wQKMAigBjAEAgJtiTANBgkqhkiG9w0BAQsFAAOCAQEAtBULGazc 8TdJkjr363TuHmm0KmDOdB/BpqPZqfs9Y3NIcF5lpjTpHMM/InAFAz0MbTbgeKE+ NwTxGyoNXGUIYRjGP5tyPLrp3nDKL2mF2TUEbN12YhxvWW853TJqRRAN6er2Nekx b1lAsjAjBUmdWVbz71/aNf8nbtCQCL2vIgJBzDFsm/Y5rNlReUPDVUBiKKDezRq6 KPDAfZUgYcmdwVwchVbLZ6I2UUbTY1MnQG4Yq0O5zofAvuMVCe0FwHdwkY5Lsm9Q PfgNPeGqfYDdvTomdRp7hDlSBSx37/rrUtZdZW7W1ygdLUF6mYmllhRiSpc7RU18 rzA6rk0EDWLDkw== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:53 2024 by rpki-client on console-ams.rpki-client.org