Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/IIpQrOiH8v6x-yITgDg_r-MgkoQ.roa (download)

Subject key identifier:   20:8A:50:AC:E8:87:F2:FE:B1:FB:22:13:80:38:3F:AF:E3:20:92:84 
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
asID:                     AS1239
Prefixes:
    1: 2a0c:9a40:82b0::/48 maxlen: 48

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/IIpQrOiH8v6x-yITgDg_r-MgkoQ.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:83:45:cc:ba:2b:7a:08:c1:31:25:0b:4c:bd:9e:a4:30:e7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
        Validity
            Not Before: Sep 16 10:16:28 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=208a50ace887f2feb1fb221380383fafe3209284
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:f4:b7:a4:2a:bd:6c:03:8b:c0:37:62:69:66:
                    95:cc:61:6d:1d:3f:60:bf:b3:14:8b:7e:61:38:ce:
                    ac:8e:f8:45:ec:5e:c1:3a:26:a6:ba:58:e6:c9:ef:
                    02:61:42:4c:3f:5d:79:6c:ed:da:ab:28:69:b6:03:
                    d3:7e:5b:d4:1b:ef:72:e2:20:91:e4:af:a2:95:32:
                    1d:25:d7:17:c0:22:9e:10:3a:d0:39:1b:7e:82:c9:
                    70:0d:11:b3:c1:1d:d6:74:85:54:7c:29:5a:64:27:
                    7d:38:ed:ea:aa:18:f4:93:84:5c:77:54:c6:5c:59:
                    13:10:ff:19:c1:50:c2:60:f6:64:c7:60:48:fd:4c:
                    16:41:02:13:cb:fa:03:a2:d5:33:8a:c0:ee:7f:98:
                    1c:cb:cb:18:04:5c:1d:5a:57:cc:7c:df:aa:40:b9:
                    e6:f9:d9:16:84:5c:68:8e:cb:41:70:45:90:4d:d2:
                    8d:15:08:06:ea:5a:e9:d6:89:f9:8e:2a:50:1f:3b:
                    20:92:f7:b2:8f:4c:0e:85:1d:ff:46:12:4e:0d:e0:
                    c6:83:99:05:18:78:fc:7f:f3:91:bd:d1:5f:60:8d:
                    3c:17:4b:a1:f1:e2:f8:82:ae:48:0b:8f:fe:d9:d4:
                    8a:2d:25:74:c2:05:07:21:f6:5a:95:84:8f:ff:2d:
                    e3:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                20:8A:50:AC:E8:87:F2:FE:B1:FB:22:13:80:38:3F:AF:E3:20:92:84
            X509v3 Authority Key Identifier: 
                keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/IIpQrOiH8v6x-yITgDg_r-MgkoQ.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0c:9a40:82b0::/48

    Signature Algorithm: sha256WithRSAEncryption
         bc:08:ed:fb:9a:99:8c:06:12:76:ca:d5:13:77:d6:95:44:6a:
         b3:33:29:ae:35:a2:94:76:38:86:e0:52:d7:80:2a:16:1c:14:
         4f:f0:3c:08:a2:b3:3b:16:fb:89:c3:1f:ae:c1:c3:28:1b:1e:
         23:3b:9d:0e:c4:4a:d9:63:39:42:23:17:93:a2:f3:8e:21:fe:
         9d:a5:ff:d3:20:4d:fe:1f:81:09:68:a1:d0:f8:e5:8a:94:41:
         43:3a:2c:11:54:37:26:f6:84:99:a2:fc:bf:d7:a5:d7:87:57:
         f3:d3:eb:29:4d:3f:87:a9:33:30:54:67:1d:35:bb:57:b9:56:
         9e:cb:ca:d4:b9:be:d6:60:36:57:08:d6:68:0f:80:05:0f:ad:
         97:52:ce:ea:1b:10:1b:f2:dd:cd:fb:88:44:6e:28:6b:7f:86:
         2e:d9:8b:94:b4:0a:32:fc:55:41:68:84:ca:0a:0a:34:20:50:
         6a:17:cb:42:39:a1:24:7d:9f:69:50:0d:9b:cf:a9:4d:b8:a9:
         64:5d:9b:b6:a0:fc:a5:83:dd:10:85:51:8b:86:3d:1a:c6:d9:
         d8:4d:80:22:b0:62:ce:b3:9e:e9:56:34:a9:d7:f1:ec:d5:52:
         f4:54:92:dd:51:89:a0:74:14:7e:81:f0:7a:7d:e7:a7:5d:c2:
         24:23:96:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Mon Sep 19 10:46:07 2022 by LibreSSL & rpki-client.