Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/V-R0U-QckHzXEsjms4WmQ_LkRC4.roa (download)

Subject key identifier:   57:E4:74:53:E4:1C:90:7C:D7:12:C8:E6:B3:85:A6:43:F2:E4:44:2E 
Authority key identifier: 3B:1F:8D:A9:CB:0E:36:2C:42:41:96:B2:0E:60:4E:94:A8:3B:C8:50
asID:                     AS1239
Prefixes:
    1: 194.56.149.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/V-R0U-QckHzXEsjms4WmQ_LkRC4.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19542632 (0x12a3268)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3b1f8da9cb0e362c424196b20e604e94a83bc850
        Validity
            Not Before: Jan  1 01:56:54 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=57e47453e41c907cd712c8e6b385a643f2e4442e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:56:ac:54:c9:33:07:43:25:f4:21:23:62:8c:
                    0b:a8:66:c2:97:95:ed:67:67:a6:d9:a4:f1:e5:7f:
                    64:f4:7b:5a:54:45:db:d0:85:50:7d:21:5e:81:33:
                    47:f3:62:32:4d:c5:b1:c7:26:71:4c:c8:b9:1f:35:
                    c1:77:69:85:b3:85:39:b5:aa:c3:71:c7:45:17:e5:
                    dd:be:25:16:4e:be:b8:2a:23:2c:e1:82:27:60:71:
                    33:76:bc:18:86:40:73:55:c4:de:e1:70:0e:3c:22:
                    7a:7b:9e:e7:e1:40:37:84:b8:48:fa:3a:e9:88:07:
                    78:8c:f8:cb:14:ed:9b:0b:4e:d3:95:16:ca:03:ed:
                    c5:f8:fc:b9:d2:f2:08:c1:34:38:8e:b5:7e:9b:65:
                    20:d3:26:f4:58:3f:ee:50:24:bf:47:20:d4:31:76:
                    16:04:ab:ed:77:e7:8b:73:91:f9:56:9f:40:da:a2:
                    66:d8:bf:9c:02:9d:9b:a3:e4:d8:0a:63:4b:82:74:
                    ca:1d:25:4b:b1:ef:81:1f:94:ab:25:3b:37:88:29:
                    14:c8:9b:4a:0c:3c:dd:c0:7d:f6:18:d8:a7:c5:db:
                    65:c3:9c:0f:0d:62:de:7f:4b:36:13:87:e9:9d:b3:
                    ff:b7:18:21:84:6a:f6:7a:67:16:35:a7:e6:38:42:
                    24:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                57:E4:74:53:E4:1C:90:7C:D7:12:C8:E6:B3:85:A6:43:F2:E4:44:2E
            X509v3 Authority Key Identifier: 
                keyid:3B:1F:8D:A9:CB:0E:36:2C:42:41:96:B2:0E:60:4E:94:A8:3B:C8:50

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ox-NqcsONixCQZayDmBOlKg7yFA.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/V-R0U-QckHzXEsjms4WmQ_LkRC4.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/Ox-NqcsONixCQZayDmBOlKg7yFA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  194.56.149.0/24

    Signature Algorithm: sha256WithRSAEncryption
         82:79:b9:e7:a4:28:9c:09:60:2c:ad:65:35:c7:8d:45:cd:55:
         08:7e:be:38:ca:a3:64:42:f2:60:45:de:8d:c1:e3:76:59:99:
         b2:e1:e1:87:7e:40:69:d7:78:d9:8a:3b:0d:3a:2d:4f:ed:5b:
         ac:4b:13:b2:0a:9d:85:e0:28:37:72:3f:70:ca:d3:d4:8d:df:
         74:9e:4a:fd:72:3d:a8:7e:b5:33:09:1e:89:b6:15:76:d4:ad:
         e9:e3:82:5a:85:3a:61:48:ef:a6:e0:bd:3f:ba:e0:a8:94:33:
         57:e6:92:9f:2d:32:c0:99:8b:ca:19:45:5d:07:87:6f:ba:f2:
         30:66:17:6a:ce:2f:c4:82:f5:b5:d8:9c:87:5a:a6:94:0a:51:
         81:af:49:b2:b7:d6:65:89:6d:4b:7d:cb:e9:12:22:a2:e2:23:
         86:80:24:39:8d:37:d5:e7:13:de:d3:a1:7f:91:7f:4c:fa:1c:
         b1:80:ad:41:13:69:2c:01:64:13:7a:46:ef:5d:52:05:07:c3:
         99:57:9c:41:e1:a2:69:f4:89:cc:55:7c:fa:d1:7d:70:a7:90:
         b8:e9:22:a9:f7:f7:2e:06:39:89:26:19:d3:0e:7b:e4:f9:0d:
         a2:91:28:81:d9:ad:77:70:cf:63:6d:b5:d5:04:7a:68:fb:3a:
         d2:b1:2e:08
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEASoyaDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
YjFmOGRhOWNiMGUzNjJjNDI0MTk2YjIwZTYwNGU5NGE4M2JjODUwMB4XDTIyMDEw
MTAxNTY1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTdlNDc0NTNlNDFj
OTA3Y2Q3MTJjOGU2YjM4NWE2NDNmMmU0NDQyZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMtWrFTJMwdDJfQhI2KMC6hmwpeV7Wdnptmk8eV/ZPR7WlRF
29CFUH0hXoEzR/NiMk3FsccmcUzIuR81wXdphbOFObWqw3HHRRfl3b4lFk6+uCoj
LOGCJ2BxM3a8GIZAc1XE3uFwDjwienue5+FAN4S4SPo66YgHeIz4yxTtmwtO05UW
ygPtxfj8udLyCME0OI61fptlINMm9Fg/7lAkv0cg1DF2FgSr7Xfni3OR+VafQNqi
Zti/nAKdm6Pk2ApjS4J0yh0lS7HvgR+UqyU7N4gpFMibSgw83cB99hjYp8XbZcOc
Dw1i3n9LNhOH6Z2z/7cYIYRq9npnFjWn5jhCJFECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRX5HRT5ByQfNcSyOazhaZD8uRELjAfBgNVHSMEGDAWgBQ7H42pyw42LEJB
lrIOYE6UqDvIUDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L094LU5xY3NPTml4Q1FaYXlEbUJPbEtnN3lGQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvMmU5NDU2LTM3YzMtNDI3NC1iYzMxLTY0ZWU0NjRiNjQwNC8x
L1YtUjBVLVFja0h6WEVzam1zNFdtUV9Ma1JDNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
MmU5NDU2LTM3YzMtNDI3NC1iYzMxLTY0ZWU0NjRiNjQwNC8xL094LU5xY3NPTml4
Q1FaYXlEbUJPbEtnN3lGQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMI4lTANBgkqhkiG9w0BAQsFAAOC
AQEAgnm556QonAlgLK1lNceNRc1VCH6+OMqjZELyYEXejcHjdlmZsuHhh35Aadd4
2Yo7DTotT+1brEsTsgqdheAoN3I/cMrT1I3fdJ5K/XI9qH61MwkeibYVdtSt6eOC
WoU6YUjvpuC9P7rgqJQzV+aSny0ywJmLyhlFXQeHb7ryMGYXas4vxIL1tdich1qm
lApRga9JsrfWZYltS33L6RIiouIjhoAkOY031ecT3tOhf5F/TPocsYCtQRNpLAFk
E3pG711SBQfDmVecQeGiafSJzFV8+tF9cKeQuOkiqff3LgY5iSYZ0w575PkNopEo
gdmtd3DPY2211QR6aPs60rEuCA==
-----END CERTIFICATE-----

Generated at Sun Jan 30 12:41:25 2022 by LibreSSL & rpki-client.