Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/klInCLsfR0lfKOhbXQYuymzB984.roa (download)

Subject key identifier:   92:52:27:08:BB:1F:47:49:5F:28:E8:5B:5D:06:2E:CA:6C:C1:F7:CE 
Authority key identifier: 0D:CE:F0:E1:FA:4A:00:88:FF:8D:7B:91:B8:A8:64:EE:D9:EC:61:DC
asID:                     AS1239
Prefixes:
    1: 194.126.176.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/klInCLsfR0lfKOhbXQYuymzB984.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 20259029 (0x13520d5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0dcef0e1fa4a0088ff8d7b91b8a864eed9ec61dc
        Validity
            Not Before: Jan  1 10:59:33 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=92522708bb1f47495f28e85b5d062eca6cc1f7ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:29:35:70:01:8d:c5:28:89:83:d6:8c:9b:05:
                    bf:42:33:94:c3:a5:cd:03:52:5b:06:2f:18:7b:bf:
                    14:f6:27:b2:2d:52:c2:e0:dc:4a:48:79:56:53:3f:
                    fd:48:5f:f7:49:f7:99:d9:e8:60:2e:e9:93:0e:ee:
                    38:36:2d:80:dd:b3:3a:98:a1:76:f5:a8:b7:20:37:
                    14:6e:a1:30:84:c7:b0:75:de:c4:c7:a0:e3:37:0f:
                    20:bd:76:4a:88:c3:8c:56:f0:7e:91:0c:59:9e:f7:
                    b4:0a:9c:7d:02:02:4a:99:4a:0e:83:2e:b0:83:c0:
                    63:e9:eb:25:5c:42:5f:0c:6c:01:e9:48:b7:2a:c5:
                    9f:8c:8c:2f:2b:5b:57:0a:de:6a:a2:e0:29:3c:a2:
                    37:7d:63:b5:f3:0a:f4:9a:d4:d2:a5:39:d3:59:0a:
                    58:3a:67:d8:0c:c2:97:26:6c:ca:2f:83:b4:9f:86:
                    30:a8:96:e6:3f:d9:ce:4b:a1:0b:2d:4c:bf:56:2f:
                    62:ca:fa:e2:84:e1:42:0a:b5:03:69:c9:46:41:aa:
                    61:23:1b:26:c2:b7:b9:21:f1:c6:99:fc:2c:3a:4d:
                    10:d8:18:07:42:de:e4:6d:dd:16:e8:9a:d4:21:60:
                    70:40:0e:8b:b2:da:db:8f:60:e1:12:e4:ce:36:04:
                    b2:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                92:52:27:08:BB:1F:47:49:5F:28:E8:5B:5D:06:2E:CA:6C:C1:F7:CE
            X509v3 Authority Key Identifier: 
                keyid:0D:CE:F0:E1:FA:4A:00:88:FF:8D:7B:91:B8:A8:64:EE:D9:EC:61:DC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dc7w4fpKAIj_jXuRuKhk7tnsYdw.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/klInCLsfR0lfKOhbXQYuymzB984.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/f9c0f8-bb07-4234-ab06-2b1aaae880ea/1/Dc7w4fpKAIj_jXuRuKhk7tnsYdw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  194.126.176.0/24

    Signature Algorithm: sha256WithRSAEncryption
         99:a9:40:8c:a9:91:79:7a:a8:19:e2:9a:45:cb:3f:9b:93:cd:
         27:18:0f:74:82:77:87:f6:5b:24:45:f0:00:94:96:1d:bf:27:
         6b:4f:22:55:26:49:e8:26:e2:6b:ea:bf:a9:8d:6e:9a:63:8a:
         90:30:b9:a2:f4:6b:f3:d7:12:c8:f8:78:32:ef:01:70:8d:82:
         d8:5a:f9:0c:f3:88:c6:61:11:dd:d2:8c:77:20:a6:0c:8a:6f:
         5f:08:18:91:86:a5:23:d8:06:d1:ac:24:37:1a:a2:87:58:b4:
         c0:1f:ec:d7:89:b6:66:93:3f:69:c2:39:39:ae:b8:c8:61:43:
         f9:52:29:4e:36:37:04:d1:48:59:8f:25:3c:56:71:a2:98:50:
         64:10:7a:81:9b:3c:2c:fb:5e:fe:a4:82:18:c3:a4:e2:24:36:
         2d:3a:93:03:3a:0e:92:6b:1e:c3:88:02:a7:f2:1a:f4:d3:df:
         3d:86:5d:20:a2:8c:7d:b3:23:24:1f:db:25:ea:b0:00:03:bc:
         55:44:c0:83:e7:1d:fd:be:82:9a:f6:37:18:0d:8e:3a:71:03:
         cb:b0:da:6d:1b:b4:44:03:b9:8f:27:5f:65:d5:e0:72:e4:36:
         56:34:e5:53:68:a1:21:e3:3c:5d:49:09:2f:65:df:ce:86:07:
         b4:31:b5:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 12:43:29 2022 by LibreSSL & rpki-client.