Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/O1mX2F5uOyV3QtGm_6D37INrzhs.roa (download)

Subject key identifier:   3B:59:97:D8:5E:6E:3B:25:77:42:D1:A6:FF:A0:F7:EC:83:6B:CE:1B 
Authority key identifier: 45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE
asID:                     AS399734
Prefixes:
    1: 83.231.238.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/O1mX2F5uOyV3QtGm_6D37INrzhs.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 229718813 (0xdb13b1d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=45dab507c08976cc29d177373de627a1ce86efae
        Validity
            Not Before: Jan  1 08:59:38 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=3b5997d85e6e3b257742d1a6ffa0f7ec836bce1b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:4b:48:c2:97:91:ce:3e:22:00:57:ef:e5:90:
                    ff:e3:62:0a:89:bd:4a:93:f8:6f:2b:95:b2:24:b3:
                    5f:08:83:51:fb:7e:7d:ba:2d:d2:2b:bd:a0:f6:5c:
                    52:31:ee:9e:62:75:a2:ae:5e:48:7b:86:d8:99:dd:
                    57:58:0e:09:cf:c5:f8:61:b5:59:da:14:e8:85:53:
                    82:cb:ef:c2:34:fa:90:19:40:8b:5a:70:8a:bc:81:
                    43:c1:47:e4:c0:8d:40:cb:c7:47:cb:17:78:47:e9:
                    4c:6a:91:cb:b7:56:53:78:5d:48:c8:d8:69:d2:a2:
                    32:a3:8a:72:96:32:6f:6d:ec:67:0f:d1:2e:27:a2:
                    31:ac:cd:96:ed:b0:67:24:2a:91:31:04:e1:96:7d:
                    0a:9d:ee:9e:21:e8:96:a1:b0:38:d7:f1:07:8c:c5:
                    fb:0f:ea:b4:1f:ef:77:14:2a:1c:37:d3:56:78:38:
                    cd:17:91:6e:36:e1:56:9a:6b:87:41:93:ce:2a:8f:
                    7f:2e:68:43:f4:ea:04:b5:04:82:74:1d:53:53:5e:
                    d6:c4:52:17:c3:04:ad:c6:25:a8:6b:de:93:2a:85:
                    e9:3b:14:6b:c8:44:87:b7:0a:be:e4:69:d2:f4:e0:
                    40:61:0e:06:9f:0f:91:28:d0:84:7a:a3:16:86:2b:
                    66:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                3B:59:97:D8:5E:6E:3B:25:77:42:D1:A6:FF:A0:F7:EC:83:6B:CE:1B
            X509v3 Authority Key Identifier: 
                keyid:45:DA:B5:07:C0:89:76:CC:29:D1:77:37:3D:E6:27:A1:CE:86:EF:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rdq1B8CJdswp0Xc3PeYnoc6G764.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/O1mX2F5uOyV3QtGm_6D37INrzhs.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9aa500-f3bd-477b-9082-aa0b11564a32/1/Rdq1B8CJdswp0Xc3PeYnoc6G764.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  83.231.238.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4e:bb:83:e1:7d:38:28:ee:e2:3d:41:cf:01:84:7d:ec:b1:07:
         6f:58:8a:f4:99:9a:ec:ef:eb:99:01:70:8d:07:e3:7f:48:2a:
         d9:2d:8e:88:18:8f:7f:4b:e6:3e:8f:e2:27:f9:5a:44:2c:bb:
         ad:07:ac:36:53:e7:8e:d3:79:d6:0a:7c:85:95:e2:f9:b8:aa:
         dc:20:c2:68:0a:c5:0b:31:00:a1:85:1e:b9:7b:8a:27:bb:36:
         1a:e1:93:91:2c:48:45:ca:3f:45:db:39:02:0e:f9:b3:b9:31:
         fe:4e:28:46:4b:1b:f1:4d:ae:79:22:19:6e:d6:22:54:69:1f:
         08:3d:03:9b:4a:38:bd:ac:76:28:23:60:85:b7:34:ad:25:25:
         4b:3e:4a:fc:53:eb:49:d9:e4:00:5b:32:7a:97:54:26:1d:f9:
         e1:59:44:34:2a:2e:06:b4:23:16:9a:20:34:1c:1e:aa:20:97:
         cc:b8:be:4a:52:e2:b7:ac:4b:d3:01:a4:25:9c:5d:38:83:cd:
         e8:78:d6:3e:66:7a:41:a1:3b:70:a0:77:8f:40:68:58:96:6c:
         a1:6f:76:9f:24:c8:42:8a:23:f9:da:cb:7d:12:53:54:83:b6:
         da:e2:d1:b1:59:55:9c:1e:0a:d4:a0:b5:2f:c7:5c:a3:64:e2:
         a2:89:03:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 12:29:43 2022 by LibreSSL & rpki-client.