Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/ETbWjgU-JM8hYTO9is8xgDbiwpo.roa (download)

Subject key identifier:   11:36:D6:8E:05:3E:24:CF:21:61:33:BD:8A:CF:31:80:36:E2:C2:9A 
Authority key identifier: FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
asID:                     AS1239
Prefixes:
    1: 195.210.112.0/22 maxlen: 22

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/ETbWjgU-JM8hYTO9is8xgDbiwpo.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 21659245 (0x14a7e6d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
        Validity
            Not Before: Jan 17 14:01:01 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=1136d68e053e24cf216133bd8acf318036e2c29a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:01:81:2b:f1:8c:8e:b1:80:1c:cf:19:bc:3e:
                    ab:de:f1:10:58:ca:2a:1e:bd:fb:5c:77:1c:62:38:
                    1b:5b:31:3e:20:87:76:fc:60:33:83:f9:6b:51:5c:
                    b0:6f:b0:d3:54:55:36:28:0b:07:46:ff:d9:35:15:
                    be:ca:3a:fe:ef:89:a5:a2:e7:98:7b:69:3b:8c:e5:
                    1a:86:dd:0e:80:b9:61:6f:01:79:81:21:bb:47:d4:
                    01:6c:b5:af:08:f9:21:0c:43:a5:34:6a:d1:23:52:
                    c8:af:fd:1c:22:ff:ed:47:9f:a6:bb:f8:07:e0:11:
                    9c:2b:f9:06:a2:ab:5b:58:a7:bf:5e:b8:06:a8:86:
                    2c:34:b1:ea:db:bd:87:69:c9:2d:f4:76:a5:95:94:
                    95:8d:0b:23:57:20:6f:54:1b:c9:88:c4:04:4f:7f:
                    cc:a9:60:6d:58:38:67:d4:4d:b0:f6:7e:1e:b1:87:
                    d3:f6:31:d8:b7:71:25:a6:d5:99:32:c5:81:30:cb:
                    ba:ed:53:d0:27:e0:68:3d:4e:fd:6e:d2:c2:97:6c:
                    24:ce:e7:d1:8a:f5:e6:62:27:0c:40:e2:39:1f:20:
                    c6:33:d1:9f:86:36:40:c9:25:62:67:63:91:c6:0a:
                    3a:dd:6f:73:bd:be:36:0a:b9:ed:e9:ea:e2:04:f3:
                    7c:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                11:36:D6:8E:05:3E:24:CF:21:61:33:BD:8A:CF:31:80:36:E2:C2:9A
            X509v3 Authority Key Identifier: 
                keyid:FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/ETbWjgU-JM8hYTO9is8xgDbiwpo.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/_rhNn4-eMxVliaXr9yIgOomeClE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  195.210.112.0/22

    Signature Algorithm: sha256WithRSAEncryption
         8c:91:c9:a6:c0:72:d5:65:a3:04:75:cf:e4:c8:d8:79:9d:28:
         d6:af:5b:24:d9:d0:9d:53:4b:33:35:1f:18:ec:eb:56:b0:d4:
         12:c9:7a:c8:ca:74:71:11:a1:d7:05:f2:a7:d7:21:b2:2f:07:
         37:f3:c9:6b:f2:78:99:46:8e:cf:78:b6:3d:6c:1e:60:e0:55:
         30:8d:5c:0f:99:ac:d7:72:2a:8c:78:91:a5:69:10:de:35:f4:
         0c:ce:4f:ce:23:4b:5f:39:77:72:03:85:cc:fe:9a:bd:8c:0b:
         ea:bf:f6:9a:33:ab:73:7a:7f:64:d0:9c:dd:54:f0:0e:66:96:
         0f:6c:df:d9:24:7a:70:cb:06:8a:57:e7:4c:47:61:12:67:fd:
         6a:ea:f8:73:8a:2e:7d:7b:51:34:77:6d:ec:ed:2b:b5:32:31:
         04:32:3f:56:5b:85:78:f1:18:b1:4b:a8:96:e3:50:55:d9:39:
         4b:15:31:2f:30:e8:94:9d:41:7c:56:3f:89:11:22:a7:20:48:
         85:0b:d7:b9:78:cc:f0:ff:3a:34:53:70:10:84:c8:af:05:4c:
         af:52:e4:29:4e:a4:19:80:74:28:4e:ae:ae:1d:7c:47:80:be:
         98:bf:d5:d9:b3:8b:8c:9c:32:20:81:ae:3d:a8:1e:c2:a3:15:
         54:3a:5c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 12:45:29 2022 by LibreSSL & rpki-client.