Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/GRlDA4lsl1cFO7rxi7-WZAxLBFo.roa (download)

Subject key identifier:   19:19:43:03:89:6C:97:57:05:3B:BA:F1:8B:BF:96:64:0C:4B:04:5A 
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
asID:                     AS7489
Prefixes:
    1: 2.56.164.0/22 maxlen: 24
    2: 78.108.216.0/22 maxlen: 24
    3: 45.140.220.0/22 maxlen: 24
    4: 193.221.192.0/22 maxlen: 24
    5: 194.50.16.0/22 maxlen: 24
    6: 194.31.140.0/22 maxlen: 24
    7: 212.107.12.0/22 maxlen: 24
    8: 185.186.64.0/22 maxlen: 24
    9: 45.154.196.0/22 maxlen: 24
   10: 185.227.68.0/22 maxlen: 24
   11: 185.185.40.0/22 maxlen: 24
   12: 45.90.144.0/22 maxlen: 24
   13: 194.56.224.0/22 maxlen: 24
   14: 178.218.144.0/22 maxlen: 24
   15: 77.83.240.0/22 maxlen: 24
   16: 45.81.20.0/22 maxlen: 24
   17: 89.190.156.0/22 maxlen: 24
   18: 83.143.116.0/22 maxlen: 24
   19: 185.242.224.0/22 maxlen: 24
   20: 185.234.72.0/22 maxlen: 24
   21: 193.31.28.0/22 maxlen: 24
   22: 193.31.30.0/24 maxlen: 24
   23: 85.202.160.0/22 maxlen: 24
   24: 193.34.76.0/22 maxlen: 24
   25: 2a0b:7080:10::/48 maxlen: 48
   26: 2a0b:b87:ffb4::/48 maxlen: 48
   27: 2a0b:b82::/44 maxlen: 44
   28: 2a0b:b85::/32 maxlen: 32
   29: 2a0b:b87:fff0::/44 maxlen: 44
   30: 2a0b:7080:10::/44 maxlen: 44
   31: 2a0b:7080:10::/45 maxlen: 45
   32: 2a0b:b87:ffda::/48 maxlen: 48
   33: 2a0d:77c7::/32 maxlen: 48
   34: 2a0b:7080:20::/44 maxlen: 48
   35: 2a0b:b87:ffec::/48 maxlen: 48
   36: 2a0b:b84::/32 maxlen: 32

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/GRlDA4lsl1cFO7rxi7-WZAxLBFo.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 170972709 (0xa30d625)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
        Validity
            Not Before: Apr  7 11:32:12 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=19194303896c9757053bbaf18bbf96640c4b045a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:59:79:21:b2:a1:bd:de:04:35:44:81:89:cc:
                    e7:17:71:8d:7c:fc:0f:9a:cb:79:fa:16:af:c2:df:
                    bf:bc:ba:aa:b8:96:8d:8e:76:52:c7:46:cb:6c:24:
                    ac:fe:74:ee:03:c9:1f:f4:66:af:5d:bf:28:de:eb:
                    48:ec:91:5e:74:ab:de:9c:ff:51:92:21:37:8d:05:
                    d4:74:54:ed:30:fe:f1:46:37:32:52:4e:31:2a:87:
                    0f:d1:cc:c9:81:eb:09:e7:9b:81:e0:d1:c4:1f:63:
                    76:f4:70:3b:42:a6:00:6b:d6:19:1e:3c:a3:f0:0e:
                    8e:a8:06:0e:2e:30:62:1a:6e:47:ea:12:56:d1:c8:
                    66:d7:de:bc:40:86:67:93:3e:0a:56:34:39:56:75:
                    11:61:e3:0d:20:c1:0f:a7:49:39:74:ac:80:34:3b:
                    0a:ba:bd:35:34:c6:52:cf:ad:34:0b:af:fc:b7:fc:
                    0c:23:86:90:6d:4d:10:5d:6c:50:64:2d:6f:38:98:
                    14:e0:64:34:72:00:b1:90:25:ef:80:50:1e:f0:06:
                    22:27:9b:28:0c:75:12:bc:c0:09:00:cc:33:ee:8c:
                    65:65:29:55:d4:21:ae:00:9c:86:94:81:98:c7:b6:
                    81:7d:94:e0:3d:5d:0d:73:12:fa:58:e8:82:93:82:
                    31:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                19:19:43:03:89:6C:97:57:05:3B:BA:F1:8B:BF:96:64:0C:4B:04:5A
            X509v3 Authority Key Identifier: 
                keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/GRlDA4lsl1cFO7rxi7-WZAxLBFo.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  2.56.164.0/22
                  45.81.20.0/22
                  45.90.144.0/22
                  45.140.220.0/22
                  45.154.196.0/22
                  77.83.240.0/22
                  78.108.216.0/22
                  83.143.116.0/22
                  85.202.160.0/22
                  89.190.156.0/22
                  178.218.144.0/22
                  185.185.40.0/22
                  185.186.64.0/22
                  185.227.68.0/22
                  185.234.72.0/22
                  185.242.224.0/22
                  193.31.28.0/22
                  193.34.76.0/22
                  193.221.192.0/22
                  194.31.140.0/22
                  194.50.16.0/22
                  194.56.224.0/22
                  212.107.12.0/22
                IPv6:
                  2a0b:b82::/44
                  2a0b:b84::/31
                  2a0b:b87:ffb4::/48
                  2a0b:b87:ffda::/48
                  2a0b:b87:ffec::/48
                  2a0b:b87:fff0::/44
                  2a0b:7080:10::-2a0b:7080:2f:ffff:ffff:ffff:ffff:ffff
                  2a0d:77c7::/32

    Signature Algorithm: sha256WithRSAEncryption
         91:18:cf:e3:bf:b5:93:55:c5:ea:6e:b0:b9:44:f5:4f:c7:e8:
         57:0e:25:62:07:27:7b:92:9e:7e:30:92:30:fd:9c:3b:3c:0b:
         00:d5:d2:4f:f7:81:0a:4a:d2:78:92:35:a1:67:2e:e9:06:5a:
         99:17:45:22:e5:02:ec:4c:6b:7f:8f:d2:ca:ee:05:5b:04:af:
         4c:70:fe:63:8e:4a:a2:88:f8:f5:b2:0d:f1:05:4d:06:51:2e:
         b9:9e:a6:c1:46:7f:c2:eb:ff:c7:a2:b7:1e:91:40:ad:a6:33:
         0a:ac:85:c1:cf:43:29:5f:05:32:d3:b8:e4:9c:25:99:08:e8:
         b8:71:06:9c:85:60:47:04:cf:b0:21:57:fb:5d:8b:60:76:69:
         c2:96:6d:8f:9c:06:a7:c2:eb:e4:82:66:b8:68:5c:9f:73:b8:
         ca:c7:d0:d5:cc:e8:7a:d5:33:05:91:e1:9d:c5:fc:5e:b7:e0:
         5b:58:1a:15:65:8e:57:2f:b1:d3:a0:b2:f4:26:49:de:9a:fc:
         d5:2f:8e:98:c2:99:84:a3:e2:75:d8:cd:9f:20:a8:f4:db:14:
         a9:3f:94:24:82:38:17:d8:01:93:a9:a3:fb:7b:50:60:f7:27:
         65:ee:17:b9:ed:4e:34:2e:c1:c0:e8:51:58:c8:a3:00:51:6a:
         df:9a:12:a6
-----BEGIN CERTIFICATE-----
MIIFzzCCBLegAwIBAgIECjDWJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MWE3YjBkOGRlODI1MWQzNmQ3YzgzZmFmNmJjN2VmZWM3M2I1MDM0MB4XDTIyMDQw
NzExMzIxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTkxOTQzMDM4OTZj
OTc1NzA1M2JiYWYxOGJiZjk2NjQwYzRiMDQ1YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMJZeSGyob3eBDVEgYnM5xdxjXz8D5rLefoWr8Lfv7y6qriW
jY52UsdGy2wkrP507gPJH/Rmr12/KN7rSOyRXnSr3pz/UZIhN40F1HRU7TD+8UY3
MlJOMSqHD9HMyYHrCeebgeDRxB9jdvRwO0KmAGvWGR48o/AOjqgGDi4wYhpuR+oS
VtHIZtfevECGZ5M+ClY0OVZ1EWHjDSDBD6dJOXSsgDQ7Crq9NTTGUs+tNAuv/Lf8
DCOGkG1NEF1sUGQtbziYFOBkNHIAsZAl74BQHvAGIiebKAx1ErzACQDMM+6MZWUp
VdQhrgCchpSBmMe2gX2U4D1dDXMS+ljogpOCMZcCAwEAAaOCAukwggLlMB0GA1Ud
DgQWBBQZGUMDiWyXVwU7uvGLv5ZkDEsEWjAfBgNVHSMEGDAWgBSxp7DY3oJR0218
g/r2vH7+xztQNDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NhZXcyTjZDVWROdGZJUDY5cngtX3NjN1VEUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8x
L0dSbERBNGxzbDFjRk83cnhpNy1XWkF4TEJGby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
ZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8xL3NhZXcyTjZDVWRO
dGZJUDY5cngtX3NjN1VEUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCB
/gYIKwYBBQUHAQcBAf8Ege4wgeswgZEEAgABMIGKAwQCAjikAwQCLVEUAwQCLVqQ
AwQCLYzcAwQCLZrEAwQCTVPwAwQCTmzYAwQCU490AwQCVcqgAwQCWb6cAwQCstqQ
AwQCubkoAwQCubpAAwQCueNEAwQCuepIAwQCufLgAwQCwR8cAwQCwSJMAwQCwd3A
AwQCwh+MAwQCwjIQAwQCwjjgAwQC1GsMMFUEAgACME8DBwQqCwuCAAADBQEqCwuE
AwcAKgsLh/+0AwcAKgsLh//aAwcAKgsLh//sAwcEKgsLh//wMBIDBwQqC3CAABAD
BwQqC3CAACADBQAqDXfHMA0GCSqGSIb3DQEBCwUAA4IBAQCRGM/jv7WTVcXqbrC5
RPVPx+hXDiViByd7kp5+MJIw/Zw7PAsA1dJP94EKStJ4kjWhZy7pBlqZF0Ui5QLs
TGt/j9LK7gVbBK9McP5jjkqiiPj1sg3xBU0GUS65nqbBRn/C6//HorcekUCtpjMK
rIXBz0MpXwUy07jknCWZCOi4cQachWBHBM+wIVf7XYtgdmnClm2PnAanwuvkgma4
aFyfc7jKx9DVzOh61TMFkeGdxfxet+BbWBoVZY5XL7HToLL0JknemvzVL46YwpmE
o+J12M2fIKj02xSpP5QkgjgX2AGTqaP7e1Bg9ydl7he57U40LsHA6FFYyKMAUWrf
mhKm
-----END CERTIFICATE-----

Generated at Thu Apr 7 16:02:04 2022 by LibreSSL & rpki-client.