Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/Hdir4O6ZaIMY3JuQ8hP7gXydvXA.roa (download)

Subject key identifier:   1D:D8:AB:E0:EE:99:68:83:18:DC:9B:90:F2:13:FB:81:7C:9D:BD:70 
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
asID:                     AS1239
Prefixes:
    1: 45.95.18.0/23 maxlen: 23
    2: 185.93.220.0/22 maxlen: 22

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/Hdir4O6ZaIMY3JuQ8hP7gXydvXA.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 80060088 (0x4c59eb8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
        Validity
            Not Before: May 18 02:31:30 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=1dd8abe0ee99688318dc9b90f213fb817c9dbd70
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:28:b0:87:8f:b9:fc:c1:ea:29:15:bc:5f:ee:
                    f4:e9:6f:0b:72:04:4e:02:e9:db:72:c1:f1:3d:02:
                    50:7f:11:fa:d4:46:ef:0c:e1:d2:88:1a:8a:82:17:
                    be:ce:22:2f:05:b6:e4:4a:0d:00:e9:36:9e:34:06:
                    5b:03:42:04:d4:ec:25:21:a4:97:5c:80:32:c0:5f:
                    5c:b7:a7:46:de:75:3f:86:79:65:64:70:6c:22:0f:
                    ad:d6:3e:d1:2e:ef:9e:4b:3a:d4:3a:75:05:bd:3e:
                    9d:aa:12:5e:0c:fe:3e:0c:63:14:dc:31:8b:04:e3:
                    70:30:8e:e6:d8:f7:f7:45:6a:6b:8a:ac:a3:80:e7:
                    98:aa:97:80:af:2a:32:65:35:b0:ba:ec:e1:7e:f7:
                    7c:d4:c9:14:14:7c:d7:c9:f0:f6:16:e6:35:3d:f6:
                    c0:6b:71:70:66:20:41:b5:5d:e0:9d:a3:56:cf:98:
                    88:54:2f:7e:17:c5:67:76:70:85:ca:f1:ce:b4:dd:
                    de:bb:aa:dd:4e:5c:15:cb:d1:2f:23:47:f2:f3:6b:
                    1d:7e:37:00:eb:59:9a:af:25:86:95:ac:46:da:6e:
                    ac:8a:f2:07:d9:6c:8a:81:a3:68:01:76:d7:0d:c2:
                    56:dd:ab:8f:67:aa:75:1c:1d:ed:ee:51:db:8b:0a:
                    a7:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                1D:D8:AB:E0:EE:99:68:83:18:DC:9B:90:F2:13:FB:81:7C:9D:BD:70
            X509v3 Authority Key Identifier: 
                keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/Hdir4O6ZaIMY3JuQ8hP7gXydvXA.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.95.18.0/23
                  185.93.220.0/22

    Signature Algorithm: sha256WithRSAEncryption
         78:90:57:a6:0e:52:a6:70:7f:34:1c:66:7b:f6:e0:33:f3:ad:
         aa:16:1e:a1:de:86:d9:87:b2:73:09:a7:ad:0a:c3:25:e4:7a:
         6e:87:c2:34:a6:0f:f6:92:86:5c:50:4d:e9:47:39:da:bb:83:
         01:99:b1:d9:c9:e4:58:ad:78:02:b6:80:65:cd:da:5e:d5:78:
         4b:27:5a:3c:a2:cd:4d:90:0a:b0:89:3e:50:c5:db:1a:c9:83:
         a7:c4:53:52:03:19:50:92:21:63:7c:e0:1e:3b:7b:d4:37:ec:
         67:c4:15:da:ba:b4:1f:5d:59:22:82:aa:d2:eb:79:3e:39:4b:
         3e:50:1e:79:03:96:cf:05:f8:e9:9c:a5:64:86:94:fc:b1:69:
         d4:87:b3:b8:f5:bb:3e:27:f5:3a:0d:6a:40:35:9c:06:5d:0a:
         ab:bf:67:d2:b5:3d:f4:94:a2:fd:7d:14:1e:2b:45:11:90:be:
         32:86:5c:66:3c:a1:4e:43:c1:18:ee:57:50:66:14:a5:a2:80:
         a1:a6:95:02:11:9c:b9:5c:f5:f9:0e:06:85:2c:67:e3:51:72:
         d5:3a:9c:97:41:bf:04:cc:8b:17:02:d5:62:a2:83:8a:3a:ab:
         0d:98:50:ac:fc:66:7f:1a:f5:26:72:9b:5d:de:9e:64:44:f1:
         f7:e9:bc:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Wed May 18 07:39:17 2022 by LibreSSL & rpki-client.