Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/ODkC5hESv_pzNXGRXtebgEZufIU.roa (download)

Subject key identifier:   38:39:02:E6:11:12:BF:FA:73:35:71:91:5E:D7:9B:80:46:6E:7C:85 
Authority key identifier: 3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
asID:                     AS1239
Prefixes:
    1: 146.19.142.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/ODkC5hESv_pzNXGRXtebgEZufIU.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 281319 (0x44ae7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3a178048d127af3433f17bccda5d07d657eca688
        Validity
            Not Before: Apr 28 10:12:50 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=383902e61112bffa733571915ed79b80466e7c85
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:61:6e:a0:cd:27:c3:26:d8:05:ac:cc:c0:c3:
                    30:52:4d:74:8b:14:1a:2e:60:e4:01:23:42:37:73:
                    b0:9a:cd:25:30:65:52:c4:44:db:24:54:38:5b:d0:
                    1a:64:b7:de:49:9e:d7:d1:5a:8f:c1:93:de:80:e4:
                    f6:9f:cd:5c:00:64:16:40:c2:09:48:ef:98:82:73:
                    87:e3:16:de:37:58:bb:41:ee:2a:ab:18:4b:c0:e6:
                    57:2e:d0:01:8b:5e:29:52:29:45:c3:ff:df:ce:4f:
                    63:cf:fa:60:ad:98:36:2e:ed:e2:90:ca:6b:d5:04:
                    62:5d:42:ff:00:cb:a8:88:58:7e:54:d7:45:80:27:
                    f6:b0:49:26:b3:57:2d:4d:9f:7f:c1:a3:dc:a7:12:
                    60:54:5b:99:0f:38:ee:d9:ba:1d:24:92:ad:94:99:
                    f7:80:9b:c9:a3:92:7c:e2:35:70:d9:6e:e2:cb:9a:
                    1a:05:70:69:f4:40:a7:66:71:dc:7c:bb:66:9b:a5:
                    1d:7a:a1:ef:66:b3:2f:f4:47:7e:4f:40:2f:9e:62:
                    3a:3e:2d:56:4b:ab:f8:16:73:29:31:cc:f1:ef:76:
                    c3:58:40:38:1d:30:13:ab:76:03:aa:e0:81:66:2b:
                    28:af:8a:77:17:50:2d:2e:47:fc:34:81:90:0b:84:
                    69:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                38:39:02:E6:11:12:BF:FA:73:35:71:91:5E:D7:9B:80:46:6E:7C:85
            X509v3 Authority Key Identifier: 
                keyid:3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/ODkC5hESv_pzNXGRXtebgEZufIU.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/OheASNEnrzQz8XvM2l0H1lfspog.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  146.19.142.0/24

    Signature Algorithm: sha256WithRSAEncryption
         61:ea:77:cc:e1:fe:09:23:4d:2e:79:c7:e4:f2:2d:65:fe:3b:
         c2:11:39:c0:54:0c:ae:6b:d4:35:65:7e:a0:d4:b2:2c:7d:c3:
         2b:7d:f3:b3:ec:7b:4f:3c:99:35:fd:b3:67:7a:69:d8:55:bb:
         78:96:ea:39:85:d0:20:ee:7e:a7:4c:a2:e5:98:25:86:81:e2:
         8e:b0:20:fe:11:3a:2f:c5:00:e7:cd:f5:52:c6:5f:59:3e:35:
         c0:cc:8d:fe:0c:d0:62:c5:46:5c:d1:8b:23:90:da:0c:ae:66:
         7e:20:c1:0f:41:ef:20:e8:07:b8:ad:90:e4:a1:4c:81:a9:8a:
         69:c7:99:9e:3d:96:15:72:05:c7:f6:61:a9:de:04:8e:82:f7:
         33:a9:fc:55:c5:30:82:94:3a:f2:65:34:8a:0f:dd:02:31:b2:
         bd:40:3f:ab:30:ca:01:cb:b3:ae:b5:91:9d:4e:4d:b9:66:7b:
         88:86:2b:a8:76:af:3f:71:db:67:df:89:95:f3:97:9a:10:4b:
         b6:c4:cb:30:5f:c5:58:6d:9a:a0:f0:7b:e1:6d:35:10:3b:6c:
         23:33:02:d1:db:98:d2:b1:06:57:0a:e9:c0:a4:72:ae:33:f9:
         9c:97:76:17:21:1a:da:e5:a7:cc:4e:46:d8:ef:25:c3:67:9f:
         e1:a6:89:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Thu Apr 28 14:39:46 2022 by LibreSSL & rpki-client.