Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/SdOh-JO2u18VTLEVRLxFtlw6Fq4.roa (download)

Subject key identifier:   49:D3:A1:F8:93:B6:BB:5F:15:4C:B1:15:44:BC:45:B6:5C:3A:16:AE 
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
asID:                     AS1239
Prefixes:
    1: 212.113.116.0/22 maxlen: 22

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/SdOh-JO2u18VTLEVRLxFtlw6Fq4.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 84357201 (0x5073051)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
        Validity
            Not Before: Apr 29 07:54:28 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=49d3a1f893b6bb5f154cb11544bc45b65c3a16ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:e1:3b:b0:fc:00:fa:55:2c:d1:27:26:a1:20:
                    f7:05:0f:d1:01:7e:0f:19:ba:c0:68:36:17:2c:d5:
                    25:60:51:68:3f:fd:b8:00:8c:0f:f2:28:0f:77:94:
                    c4:ff:1a:65:10:35:01:83:bd:4f:4c:cb:02:ec:a8:
                    bb:7f:99:5c:41:72:a1:f8:98:f3:41:3c:87:94:21:
                    44:ba:0d:cc:f7:9c:9f:27:10:85:61:46:0d:a7:04:
                    cd:eb:2a:74:fe:4d:68:52:b4:be:5c:9f:01:40:8b:
                    02:4e:3b:49:19:f7:fb:00:b5:5c:f7:f6:05:16:4d:
                    ca:d8:d3:e0:eb:1a:eb:c8:6f:99:89:22:aa:28:6d:
                    f9:50:d2:c7:15:8e:b6:10:e5:1c:f1:45:97:63:96:
                    2b:b1:ee:d1:06:d5:0b:a5:3a:3a:8c:fd:6b:79:06:
                    33:68:58:b5:03:1e:a7:b7:a4:c1:38:ae:b6:bc:b0:
                    a4:31:b5:14:84:11:33:94:d9:2c:0f:3f:16:62:4e:
                    cb:c2:cc:e6:96:96:05:34:48:e4:52:9b:f9:af:57:
                    b8:e8:c3:67:8b:0b:db:51:fd:f6:e8:f5:ce:20:5a:
                    f9:44:c9:82:2a:b1:b0:91:ac:6a:57:2a:f7:b6:62:
                    11:65:f9:ae:bc:b1:96:db:ee:26:99:1d:97:20:74:
                    8f:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                49:D3:A1:F8:93:B6:BB:5F:15:4C:B1:15:44:BC:45:B6:5C:3A:16:AE
            X509v3 Authority Key Identifier: 
                keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/SdOh-JO2u18VTLEVRLxFtlw6Fq4.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  212.113.116.0/22

    Signature Algorithm: sha256WithRSAEncryption
         4e:58:fc:24:55:2b:9b:f0:8c:6b:40:93:72:a4:6a:30:2a:75:
         ab:35:e3:f2:cb:eb:79:2e:0c:a8:d5:fb:30:4f:df:46:c0:8f:
         e7:bd:b7:9f:c1:40:69:6b:52:09:fe:e6:a9:b5:1b:c3:f4:76:
         12:f6:6d:b0:23:1c:ae:c3:57:71:72:8c:13:65:8a:d1:4e:44:
         ea:62:fa:ac:8b:95:cc:8d:a4:a3:fc:24:74:ca:39:78:57:c5:
         09:cc:63:c7:bf:9a:6e:3d:a4:32:20:c0:3c:c7:fb:09:08:1d:
         45:c0:09:ff:7f:cf:a9:a5:ad:21:1d:50:d1:11:9c:2b:e6:88:
         23:13:b0:57:a4:4d:84:9a:fe:de:16:98:a8:5a:9a:fc:72:49:
         08:8d:42:34:c2:b7:41:8e:d2:f0:9e:25:8c:fa:6f:9e:25:74:
         1c:20:75:30:9f:65:97:be:c5:6e:b1:69:4f:e3:29:2d:95:4a:
         78:57:f6:b1:88:aa:ea:d2:36:82:f8:64:ac:03:75:7d:f6:02:
         7c:70:c6:9a:29:cd:be:11:08:26:24:67:ee:f3:7d:80:45:0c:
         c4:11:49:ce:f2:62:be:7a:0c:3e:b4:02:5e:60:80:7a:fe:e5:
         44:86:ba:88:3d:ef:14:d1:a7:92:9c:aa:1c:f7:56:f2:19:1e:
         0a:c0:8a:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Fri Apr 29 12:48:16 2022 by LibreSSL & rpki-client.