Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/26/167b5f-2d68-46c8-90f5-9ed2f166feae/1/p8uKJqNq2TseJe9wsAreR1gmDhs.roa (download)

Subject key identifier:   A7:CB:8A:26:A3:6A:D9:3B:1E:25:EF:70:B0:0A:DE:47:58:26:0E:1B 
Authority key identifier: B7:0E:41:4E:19:B7:A3:54:18:A3:3A:1A:F9:EC:CA:D1:6E:23:E8:DF
asID:                     AS208226
Prefixes:
    1: 5.42.158.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/26/167b5f-2d68-46c8-90f5-9ed2f166feae/1/p8uKJqNq2TseJe9wsAreR1gmDhs.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 226860975 (0xd859faf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b70e414e19b7a35418a33a1af9eccad16e23e8df
        Validity
            Not Before: Jan  1 12:58:36 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=a7cb8a26a36ad93b1e25ef70b00ade4758260e1b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:56:62:0e:61:5b:73:3a:6c:0f:ee:56:af:4a:
                    0e:61:27:21:b8:5f:32:a1:db:0a:81:a4:15:93:55:
                    f2:45:de:7b:a7:d5:24:44:ef:b6:5b:ac:ca:97:4a:
                    be:fb:4f:0b:90:25:62:8f:2b:90:fc:00:24:98:74:
                    e4:27:2c:6a:19:9e:4d:12:7e:34:bd:2f:ca:a7:29:
                    ae:a0:14:fa:e9:7d:76:e1:22:8d:a4:95:6d:d9:09:
                    ff:90:26:1e:b5:ae:7d:74:3f:0c:8e:36:21:e7:5f:
                    1a:4f:f5:05:6b:cd:49:bb:26:63:c6:16:2e:3e:4e:
                    2b:52:24:6e:ea:37:8d:69:6f:7d:3d:af:7b:b6:c8:
                    02:68:76:c2:9c:00:21:23:61:8b:ba:c1:09:6e:0c:
                    d0:0d:e5:d7:b7:8f:5e:c9:4b:fd:20:55:06:17:e0:
                    8c:f6:0e:9a:7d:0b:a1:b5:b6:2c:93:8a:e5:e1:2c:
                    20:fe:a6:56:2a:68:58:a3:f6:0d:a9:26:12:06:ea:
                    ee:6a:b4:e9:fe:e7:1e:f7:11:b4:e1:97:bb:e4:dd:
                    a7:28:a2:96:81:3c:43:cc:c4:1b:d2:fb:2e:2b:d6:
                    69:83:26:bd:17:b3:8f:50:09:c6:7c:60:38:5a:10:
                    b1:e7:92:2a:61:d1:f4:25:da:fa:ab:62:56:44:9a:
                    1b:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                A7:CB:8A:26:A3:6A:D9:3B:1E:25:EF:70:B0:0A:DE:47:58:26:0E:1B
            X509v3 Authority Key Identifier: 
                keyid:B7:0E:41:4E:19:B7:A3:54:18:A3:3A:1A:F9:EC:CA:D1:6E:23:E8:DF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tw5BThm3o1QYozoa-ezK0W4j6N8.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/167b5f-2d68-46c8-90f5-9ed2f166feae/1/p8uKJqNq2TseJe9wsAreR1gmDhs.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/167b5f-2d68-46c8-90f5-9ed2f166feae/1/tw5BThm3o1QYozoa-ezK0W4j6N8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  5.42.158.0/24

    Signature Algorithm: sha256WithRSAEncryption
         46:36:99:6b:86:30:c8:dd:7e:6b:67:71:86:8a:82:9f:1c:54:
         9b:a2:92:03:e3:f8:b6:b5:c9:84:0b:20:e4:89:1f:4c:0a:41:
         b8:b9:87:09:38:b0:1b:8d:a1:65:48:ef:35:c9:e1:50:21:91:
         11:71:b0:6b:4b:85:6b:56:f3:cf:fe:74:60:c5:b8:24:92:a4:
         07:84:4f:14:c8:a4:cc:56:66:19:ed:da:fb:77:13:49:fa:b7:
         d0:05:94:07:84:00:31:b5:16:68:8e:64:ef:bd:a9:84:6f:49:
         86:00:9a:99:16:97:39:72:fd:fd:13:fe:6b:91:ea:6f:3c:8d:
         ae:62:d7:99:79:4a:cb:54:17:cc:cb:06:ae:0e:6a:5c:29:73:
         74:8d:7a:7a:6b:92:8d:0f:51:12:ad:ee:16:ba:13:95:88:9f:
         db:c2:bc:2e:33:4f:2a:5d:52:9b:ce:6d:1d:11:bd:d0:62:92:
         39:f1:22:5f:50:a8:de:a6:50:1e:02:3d:0a:d1:0d:f6:0c:38:
         ec:82:a8:a1:82:55:52:f6:ce:f4:b2:d9:6f:3a:21:d6:60:74:
         05:0b:20:39:1e:33:26:71:29:21:8a:9a:92:52:94:42:d1:c2:
         24:a7:39:2e:a7:66:9f:1a:28:3c:85:19:9d:f5:89:95:8e:8c:
         51:09:6c:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 12:45:26 2022 by LibreSSL & rpki-client.