Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/06/7306a8-7e49-4c95-acc5-5735e045d4c1/1/jPw1-eu6Dk4UiqLeSRC0lUSumxQ.roa (download)

Subject key identifier:   8C:FC:35:F9:EB:BA:0E:4E:14:8A:A2:DE:49:10:B4:95:44:AE:9B:14 
Authority key identifier: A7:39:DB:60:F9:FC:71:B1:A4:44:A9:45:3C:86:5B:46:42:26:3A:72
asID:                     AS1239
Prefixes:
    1: 212.18.97.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/06/7306a8-7e49-4c95-acc5-5735e045d4c1/1/jPw1-eu6Dk4UiqLeSRC0lUSumxQ.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10054772 (0x996c74)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a739db60f9fc71b1a444a9453c865b4642263a72
        Validity
            Not Before: Jan  1 01:58:35 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=8cfc35f9ebba0e4e148aa2de4910b49544ae9b14
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:ba:e8:22:f9:f2:ac:80:19:16:56:18:79:6a:
                    1d:c4:39:32:04:12:a8:db:41:6f:4d:12:3d:d3:fa:
                    6c:41:cc:d2:71:87:b0:0a:93:8e:04:05:05:94:28:
                    c6:92:39:c4:c0:9d:8e:12:b4:c2:c2:3d:f4:5d:1e:
                    2e:19:37:59:a2:91:44:51:60:cc:24:a4:d0:1f:c6:
                    85:f3:58:1e:13:33:c6:ae:66:9f:cf:e0:f5:7b:55:
                    2c:ef:b8:c0:72:b4:cf:26:be:26:31:ae:d1:bf:ba:
                    78:7c:0c:69:a3:db:27:41:a0:41:3e:3d:e7:be:02:
                    fb:38:15:2f:70:35:fa:7b:46:91:f1:16:f0:e5:11:
                    fd:82:6f:39:1f:a1:6a:68:bd:7a:d2:be:f2:a9:8c:
                    68:92:23:b9:fc:0a:07:0f:4e:d3:7f:67:b8:dd:1f:
                    eb:45:06:02:e9:ec:70:96:eb:0e:82:12:67:6f:88:
                    ed:a3:5e:a5:b4:d0:02:1e:36:4b:83:0d:6f:1b:7b:
                    b9:6e:38:16:05:50:83:c2:a1:b9:1c:cf:7b:ed:bd:
                    2d:a8:06:9d:99:7a:9f:ac:06:1b:5e:84:14:96:9a:
                    72:f2:37:db:74:f0:fe:71:ea:12:80:27:d2:af:f1:
                    0e:8d:d2:db:4e:48:17:d8:da:cc:13:53:4f:fc:77:
                    a6:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                8C:FC:35:F9:EB:BA:0E:4E:14:8A:A2:DE:49:10:B4:95:44:AE:9B:14
            X509v3 Authority Key Identifier: 
                keyid:A7:39:DB:60:F9:FC:71:B1:A4:44:A9:45:3C:86:5B:46:42:26:3A:72

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pznbYPn8cbGkRKlFPIZbRkImOnI.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/7306a8-7e49-4c95-acc5-5735e045d4c1/1/jPw1-eu6Dk4UiqLeSRC0lUSumxQ.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/06/7306a8-7e49-4c95-acc5-5735e045d4c1/1/pznbYPn8cbGkRKlFPIZbRkImOnI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  212.18.97.0/24

    Signature Algorithm: sha256WithRSAEncryption
         23:6d:9c:b6:e1:73:96:6d:8c:8c:b3:cb:28:2b:7d:25:68:2d:
         6f:25:f5:f9:a5:33:71:30:32:79:70:22:4b:aa:ed:6a:f3:10:
         80:a4:10:21:18:f8:8f:6f:74:cb:7c:b2:d4:d8:60:9d:4d:2b:
         d7:e7:d2:ea:3e:11:e0:e4:5e:a7:9c:5a:75:a4:85:2e:82:49:
         61:4a:af:94:c8:66:48:ef:98:51:03:a3:83:bb:17:78:f0:00:
         bd:26:c2:d3:7c:9d:12:95:a7:97:14:a6:78:11:44:91:20:17:
         b8:66:8e:e7:f7:77:cb:a4:52:bf:04:2a:f6:04:6f:4e:b4:1c:
         a1:d6:dc:d9:5e:7c:ce:37:91:48:6a:d4:36:75:36:49:d6:96:
         5a:a5:39:3b:0b:c8:bc:f7:ef:02:a6:2e:02:59:92:27:87:77:
         ff:2e:cc:78:88:3a:da:7c:ca:e6:aa:fe:37:86:b4:0a:47:ba:
         1a:76:da:b1:a4:e7:44:66:8c:52:5a:21:dd:4f:0d:7a:2b:93:
         e7:5d:82:93:bf:61:80:c6:83:e5:5e:ed:18:48:84:6c:bc:0d:
         3c:2b:ee:54:99:4a:c3:b6:66:74:99:58:51:5e:43:be:2d:d5:
         21:34:90:40:7d:74:3b:4d:e1:2c:d9:89:40:5e:57:22:f7:86:
         9c:54:73:43
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAJlsdDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NzM5ZGI2MGY5ZmM3MWIxYTQ0NGE5NDUzYzg2NWI0NjQyMjYzYTcyMB4XDTIyMDEw
MTAxNTgzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGNmYzM1ZjllYmJh
MGU0ZTE0OGFhMmRlNDkxMGI0OTU0NGFlOWIxNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJm66CL58qyAGRZWGHlqHcQ5MgQSqNtBb00SPdP6bEHM0nGH
sAqTjgQFBZQoxpI5xMCdjhK0wsI99F0eLhk3WaKRRFFgzCSk0B/GhfNYHhMzxq5m
n8/g9XtVLO+4wHK0zya+JjGu0b+6eHwMaaPbJ0GgQT49574C+zgVL3A1+ntGkfEW
8OUR/YJvOR+hami9etK+8qmMaJIjufwKBw9O039nuN0f60UGAunscJbrDoISZ2+I
7aNepbTQAh42S4MNbxt7uW44FgVQg8KhuRzPe+29LagGnZl6n6wGG16EFJaacvI3
23Tw/nHqEoAn0q/xDo3S205IF9jazBNTT/x3phUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSM/DX567oOThSKot5JELSVRK6bFDAfBgNVHSMEGDAWgBSnOdtg+fxxsaRE
qUU8hltGQiY6cjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3B6bmJZUG44Y2JHa1JLbEZQSVpiUmtJbU9uSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDYvNzMwNmE4LTdlNDktNGM5NS1hY2M1LTU3MzVlMDQ1ZDRjMS8x
L2pQdzEtZXU2RGs0VWlxTGVTUkMwbFVTdW14US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDYv
NzMwNmE4LTdlNDktNGM5NS1hY2M1LTU3MzVlMDQ1ZDRjMS8xL3B6bmJZUG44Y2JH
a1JLbEZQSVpiUmtJbU9uSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANQSYTANBgkqhkiG9w0BAQsFAAOC
AQEAI22ctuFzlm2MjLPLKCt9JWgtbyX1+aUzcTAyeXAiS6rtavMQgKQQIRj4j290
y3yy1NhgnU0r1+fS6j4R4ORep5xadaSFLoJJYUqvlMhmSO+YUQOjg7sXePAAvSbC
03ydEpWnlxSmeBFEkSAXuGaO5/d3y6RSvwQq9gRvTrQcodbc2V58zjeRSGrUNnU2
SdaWWqU5OwvIvPfvAqYuAlmSJ4d3/y7MeIg62nzK5qr+N4a0Cke6GnbasaTnRGaM
Uloh3U8NeiuT512Ck79hgMaD5V7tGEiEbLwNPCvuVJlKw7ZmdJlYUV5Dvi3VITSQ
QH10O03hLNmJQF5XIveGnFRzQw==
-----END CERTIFICATE-----

Generated at Sun Jan 30 12:29:13 2022 by LibreSSL & rpki-client.