Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/40d2JmBiZiwShS2cifUPrh5yQmE.roa (download)

Subject key identifier:   E3:47:76:26:60:62:66:2C:12:85:2D:9C:89:F5:0F:AE:1E:72:42:61 
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
asID:                     AS1239
Prefixes:
    1: 2a0b:3c40:10::/48 maxlen: 48

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/40d2JmBiZiwShS2cifUPrh5yQmE.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 167096903 (0x9f5b247)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
        Validity
            Not Before: Jun 30 12:27:03 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=e34776266062662c12852d9c89f50fae1e724261
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:04:c3:c8:c9:4b:5f:f0:10:2c:56:e5:6a:b7:
                    aa:21:ee:c0:8b:d9:50:90:cf:4e:78:4c:2c:0f:a7:
                    6f:8c:a1:ae:66:04:d4:2b:c8:7f:07:82:2e:40:cf:
                    14:5b:9e:19:64:f3:67:64:92:88:97:fb:09:90:f1:
                    b0:8c:25:a9:46:a5:cc:18:51:e8:9b:99:ea:fe:b2:
                    5c:fc:9f:6d:07:26:13:fc:a1:f8:1d:f9:ee:d5:0a:
                    cc:4c:c1:e1:8f:dc:d2:44:c8:3d:70:20:b7:88:b8:
                    7e:4c:98:6d:60:b7:90:43:95:76:fb:0d:8e:b2:27:
                    e0:79:a8:e4:71:a3:45:67:2a:7c:4c:6c:f0:66:31:
                    42:80:08:3f:03:f6:55:97:bb:25:43:b2:d9:a5:fd:
                    e9:43:3a:7f:40:90:6b:71:32:33:2c:cf:28:c9:a1:
                    c4:c6:1e:48:fb:ac:0e:c7:88:29:49:21:f3:b3:ab:
                    b6:b0:2f:ae:ca:c1:a4:ab:72:6b:b4:e3:01:00:d9:
                    63:34:7b:44:c9:41:5f:cc:81:24:76:5e:91:64:98:
                    35:6c:1b:02:48:22:2f:55:dc:ff:23:ab:16:e6:5d:
                    00:a7:e7:2a:18:58:35:a1:15:c3:df:8e:f8:29:e4:
                    4b:84:d4:4e:f0:70:97:a0:f0:d4:a9:5f:9d:2e:cd:
                    9e:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E3:47:76:26:60:62:66:2C:12:85:2D:9C:89:F5:0F:AE:1E:72:42:61
            X509v3 Authority Key Identifier: 
                keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/40d2JmBiZiwShS2cifUPrh5yQmE.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0b:3c40:10::/48

    Signature Algorithm: sha256WithRSAEncryption
         86:c6:28:1d:0d:74:51:13:2a:57:bd:b0:4e:8e:37:61:70:a0:
         51:8c:02:14:a5:0d:2a:91:dd:9b:0e:51:7f:df:22:b7:a9:19:
         80:16:0c:32:77:e9:cf:52:9d:51:28:f6:4a:9e:bc:8e:ab:93:
         04:4f:ac:38:b3:0f:c7:4d:33:f7:0f:6b:f1:ae:64:a4:f0:97:
         96:9c:47:16:99:9c:61:91:2f:5f:21:3b:0e:ad:95:b9:fc:b7:
         75:dc:4a:ab:f3:c8:ba:3d:07:ff:ef:ef:73:7e:22:97:47:ea:
         d3:d5:ec:92:26:2f:26:25:1d:3d:29:db:d6:b0:c7:ff:71:f1:
         84:3e:74:25:92:23:96:3d:bb:53:31:16:bf:5b:d4:01:fb:1f:
         0d:d5:a5:37:76:f9:d3:3c:e5:bf:5e:57:00:bc:76:c0:e2:1f:
         9c:70:de:84:dd:f4:6d:4c:ca:a0:4e:f4:e8:6f:8c:38:9e:2e:
         d5:e1:7e:71:bd:cc:dc:4e:fc:5a:2a:00:b5:1f:2b:e8:5d:6e:
         9c:20:21:59:12:9e:d1:3c:fb:73:74:76:e1:bb:c1:a8:eb:33:
         2c:53:d3:e4:79:47:8e:2c:28:42:f3:fc:28:2c:23:34:2d:8f:
         2e:ed:14:0c:47:5d:59:60:c0:56:6b:2e:dd:61:d8:38:41:0c:
         ea:b4:4f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Thu Jun 30 18:17:37 2022 by LibreSSL & rpki-client.