Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/06/097364-4724-44d2-bc11-91949b389e42/1/1-apopjrwHqYd7FGEeMnLX-zBY6M.roa (download)

Subject key identifier:   F9:AA:68:A6:3A:F0:1E:A6:1D:EC:51:84:78:C9:CB:5F:EC:C1:63:A3 
Authority key identifier: A0:E7:09:FE:6C:50:18:B6:4A:AB:F1:54:0E:73:D9:EE:D4:9D:B0:E2
asID:                     AS1239
Prefixes:
    1: 193.201.14.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/06/097364-4724-44d2-bc11-91949b389e42/1/1-apopjrwHqYd7FGEeMnLX-zBY6M.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 15620051 (0xee57d3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a0e709fe6c5018b64aabf1540e73d9eed49db0e2
        Validity
            Not Before: Jan  1 03:56:43 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=f9aa68a63af01ea61dec518478c9cb5fecc163a3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:d7:09:ef:3e:5e:e7:dc:82:75:ab:b0:6b:59:
                    4e:ef:80:d5:77:af:fd:05:c5:04:bd:b6:2e:15:d3:
                    9e:ec:f6:b5:f9:a4:9d:d2:07:c7:d7:cb:0f:51:3c:
                    f2:93:35:70:40:fc:4d:72:fa:95:21:2e:a7:50:58:
                    bd:9e:d3:02:cd:a6:4b:73:54:e9:fd:96:36:dd:8e:
                    ac:83:e4:aa:a1:9f:41:72:8e:76:fd:35:47:0a:f2:
                    ad:76:06:21:51:32:75:52:df:d0:59:c5:5e:aa:71:
                    4f:51:44:17:92:fd:25:4a:b6:52:90:55:c7:9f:21:
                    f3:01:9a:0b:61:24:ad:23:79:65:68:49:09:dc:c5:
                    14:9e:d2:3b:33:bd:0f:9f:23:30:ea:db:af:16:cb:
                    b9:1b:70:16:09:1f:0d:b4:e8:96:49:8a:24:29:a7:
                    77:e5:23:15:01:71:f1:89:47:40:d5:ae:a0:77:a4:
                    1f:ba:f4:c9:a3:22:9a:2b:0e:7c:c0:1d:c0:cd:90:
                    d2:13:fa:9e:53:28:f2:b3:f2:ee:5a:cb:29:cf:e2:
                    ad:00:b9:3c:7a:54:2e:36:60:de:c4:4c:0d:dc:ab:
                    b4:93:fe:51:05:43:30:4b:f4:eb:39:05:df:4b:f4:
                    d3:72:0f:a3:3e:d2:cb:68:9f:cb:72:f0:0f:bd:3e:
                    ac:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                F9:AA:68:A6:3A:F0:1E:A6:1D:EC:51:84:78:C9:CB:5F:EC:C1:63:A3
            X509v3 Authority Key Identifier: 
                keyid:A0:E7:09:FE:6C:50:18:B6:4A:AB:F1:54:0E:73:D9:EE:D4:9D:B0:E2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOcJ_mxQGLZKq_FUDnPZ7tSdsOI.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/097364-4724-44d2-bc11-91949b389e42/1/1-apopjrwHqYd7FGEeMnLX-zBY6M.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/06/097364-4724-44d2-bc11-91949b389e42/1/oOcJ_mxQGLZKq_FUDnPZ7tSdsOI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.201.14.0/24

    Signature Algorithm: sha256WithRSAEncryption
         1d:5c:7e:d7:26:a8:e2:5c:d1:7f:e1:92:23:69:44:fe:47:76:
         a8:a6:82:20:bb:db:21:88:62:0f:7a:8f:7a:42:c1:94:85:0a:
         73:f3:b5:86:a0:02:c7:76:35:2a:8c:bf:98:d8:45:ac:09:cb:
         c7:4f:c4:9d:b5:72:07:e6:ad:c8:2e:9c:56:ea:34:60:46:c0:
         36:70:b4:71:51:72:21:63:b9:1a:6f:50:27:f0:6b:1c:82:03:
         4f:45:3f:c2:df:b8:cc:12:ae:4e:bc:b1:0c:44:20:a1:da:8d:
         48:b9:cc:ec:6a:93:19:22:79:81:9b:2f:c2:5b:ec:2e:ba:18:
         57:ca:4c:a0:8d:d0:e5:a7:e4:9d:82:d3:8f:b9:9e:f6:0a:58:
         d6:39:71:47:0b:f4:a1:ca:cc:a7:29:c7:7f:13:ea:22:c3:9d:
         a3:a4:14:87:20:a7:f1:e4:6b:0a:fe:7d:aa:56:3e:2f:00:25:
         4b:3e:94:ae:18:bb:2b:33:3f:ee:d6:19:c0:b2:a6:9f:42:70:
         d4:2b:72:0b:af:d5:dc:19:c0:c8:e7:75:8e:99:ee:89:29:63:
         b7:7b:78:5d:d8:b3:4c:1f:96:d6:20:0d:9e:c8:93:d2:13:5f:
         d8:5b:fd:27:b6:d0:32:a2:05:21:74:c8:c2:5d:b8:8b:68:90:
         96:ad:bf:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 12:29:09 2022 by LibreSSL & rpki-client.