Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/kMcyKESV-efhdjbWzBBCzm3TFJs.roa (download)

Subject key identifier:   90:C7:32:28:44:95:F9:E7:E1:76:36:D6:CC:10:42:CE:6D:D3:14:9B 
Authority key identifier: 97:59:52:9D:D3:17:06:45:D7:6C:F6:AC:06:59:50:6C:C6:49:CA:90
asID:                     AS14618
Prefixes:
    1: 185.169.27.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/kMcyKESV-efhdjbWzBBCzm3TFJs.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 61798947 (0x3aefa23)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9759529dd3170645d76cf6ac0659506cc649ca90
        Validity
            Not Before: Jan  1 12:03:38 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=90c732284495f9e7e17636d6cc1042ce6dd3149b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:de:83:b4:d2:01:95:6b:06:99:89:30:9d:43:
                    90:a2:66:b0:46:a8:77:6e:b9:42:e0:aa:0c:37:34:
                    0f:30:5d:6c:95:18:b5:81:57:35:e7:78:ff:79:5b:
                    b1:80:4b:29:1f:a5:9b:b2:1e:b9:84:75:11:ff:15:
                    da:8e:bf:60:ab:a8:45:12:6e:bb:5e:f6:27:de:41:
                    60:3f:19:15:13:33:b1:13:6e:df:55:4f:31:95:50:
                    e0:c4:14:e3:9d:68:3f:94:ce:8e:7c:8e:0b:1b:b4:
                    54:d6:00:76:e8:f7:25:86:0f:16:20:05:58:c8:12:
                    99:58:90:3a:c7:e3:95:39:69:5c:af:90:07:e9:f4:
                    2a:e2:00:7b:aa:f2:ff:cf:0f:d1:f0:08:23:6d:3f:
                    94:38:0e:27:9c:37:3e:c8:57:31:06:da:e9:9d:84:
                    52:17:58:83:e5:94:c1:f8:64:53:13:f4:c4:8f:ce:
                    22:e2:1c:d6:d6:7a:56:a3:64:1b:51:db:47:57:fb:
                    24:4e:d6:ed:17:ac:1e:2a:81:ee:a0:cf:41:7d:81:
                    fb:b5:bf:6a:73:27:07:9f:c2:41:73:65:e3:44:87:
                    2a:56:1e:f6:de:fd:79:ee:8a:c3:36:5b:c7:21:33:
                    9c:04:f0:8f:7e:bf:a8:9d:f3:d8:a4:0f:d2:d7:d3:
                    53:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                90:C7:32:28:44:95:F9:E7:E1:76:36:D6:CC:10:42:CE:6D:D3:14:9B
            X509v3 Authority Key Identifier: 
                keyid:97:59:52:9D:D3:17:06:45:D7:6C:F6:AC:06:59:50:6C:C6:49:CA:90

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1lSndMXBkXXbPasBllQbMZJypA.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/kMcyKESV-efhdjbWzBBCzm3TFJs.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a86a91-6356-4c2c-9f8f-de4accb00dd7/1/l1lSndMXBkXXbPasBllQbMZJypA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.169.27.0/24

    Signature Algorithm: sha256WithRSAEncryption
         44:d9:64:10:34:40:d4:9a:45:a4:ce:b9:b3:b9:20:19:28:e2:
         22:b7:76:d2:bd:1a:7c:bd:e8:70:eb:fb:a6:63:34:10:7b:ef:
         15:5f:5a:a0:07:6a:aa:07:e1:2a:02:df:5d:6b:2b:67:e3:4a:
         00:34:0d:d1:84:e9:59:35:2f:cc:44:78:cd:4c:da:5f:38:05:
         2d:c5:9f:9b:b4:83:4b:38:27:9b:ee:36:c3:85:45:b4:5a:2e:
         2e:b5:92:c8:fe:d2:15:f6:10:e8:c2:60:04:f2:a4:0b:96:e9:
         97:47:99:5e:67:a8:af:c7:05:1f:bc:91:ff:ff:87:fa:0d:c9:
         25:27:db:0d:c8:51:2b:79:81:8e:16:b4:6c:4b:a2:25:9d:b5:
         36:15:40:29:07:f4:c9:86:1e:21:5c:fc:66:20:ed:17:75:73:
         a2:1e:1d:cf:f3:67:c7:62:cd:eb:f9:30:0f:a4:8a:66:30:7e:
         d8:66:c2:63:53:e1:40:f2:04:d5:e0:41:a5:6b:96:27:3e:f0:
         42:f7:47:3e:58:62:3e:ac:e3:32:81:2d:a9:2a:47:7d:bd:4d:
         e4:81:dc:b0:3b:c6:d3:e6:48:13:49:ae:8f:e8:0a:6a:d1:28:
         1c:85:69:0d:5e:c9:1d:8c:69:8b:da:84:f5:9a:01:30:18:a0:
         02:31:19:87
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA676IzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
NzU5NTI5ZGQzMTcwNjQ1ZDc2Y2Y2YWMwNjU5NTA2Y2M2NDljYTkwMB4XDTIyMDEw
MTEyMDMzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTBjNzMyMjg0NDk1
ZjllN2UxNzYzNmQ2Y2MxMDQyY2U2ZGQzMTQ5YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKPeg7TSAZVrBpmJMJ1DkKJmsEaod265QuCqDDc0DzBdbJUY
tYFXNed4/3lbsYBLKR+lm7IeuYR1Ef8V2o6/YKuoRRJuu172J95BYD8ZFRMzsRNu
31VPMZVQ4MQU451oP5TOjnyOCxu0VNYAduj3JYYPFiAFWMgSmViQOsfjlTlpXK+Q
B+n0KuIAe6ry/88P0fAII20/lDgOJ5w3PshXMQba6Z2EUhdYg+WUwfhkUxP0xI/O
IuIc1tZ6VqNkG1HbR1f7JE7W7ResHiqB7qDPQX2B+7W/anMnB5/CQXNl40SHKlYe
9t79ee6KwzZbxyEznATwj36/qJ3z2KQP0tfTU9ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSQxzIoRJX55+F2NtbMEELObdMUmzAfBgNVHSMEGDAWgBSXWVKd0xcGRdds
9qwGWVBsxknKkDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2wxbFNuZE1YQmtYWGJQYXNCbGxRYk1aSnlwQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTkvYTg2YTkxLTYzNTYtNGMyYy05ZjhmLWRlNGFjY2IwMGRkNy8x
L2tNY3lLRVNWLWVmaGRqYld6QkJDem0zVEZKcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTkv
YTg2YTkxLTYzNTYtNGMyYy05ZjhmLWRlNGFjY2IwMGRkNy8xL2wxbFNuZE1YQmtY
WGJQYXNCbGxRYk1aSnlwQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmpGzANBgkqhkiG9w0BAQsFAAOC
AQEARNlkEDRA1JpFpM65s7kgGSjiIrd20r0afL3ocOv7pmM0EHvvFV9aoAdqqgfh
KgLfXWsrZ+NKADQN0YTpWTUvzER4zUzaXzgFLcWfm7SDSzgnm+42w4VFtFouLrWS
yP7SFfYQ6MJgBPKkC5bpl0eZXmeor8cFH7yR//+H+g3JJSfbDchRK3mBjha0bEui
JZ21NhVAKQf0yYYeIVz8ZiDtF3Vzoh4dz/Nnx2LN6/kwD6SKZjB+2GbCY1PhQPIE
1eBBpWuWJz7wQvdHPlhiPqzjMoEtqSpHfb1N5IHcsDvG0+ZIE0muj+gKatEoHIVp
DV7JHYxpi9qE9ZoBMBigAjEZhw==
-----END CERTIFICATE-----

Generated at Sun Jan 30 12:42:28 2022 by LibreSSL & rpki-client.