Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/DCrih7FCdTUU5WDyXgXJLsgfw_M.roa (download)

Subject key identifier:   0C:2A:E2:87:B1:42:75:35:14:E5:60:F2:5E:05:C9:2E:C8:1F:C3:F3 
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
asID:                     AS399587
Prefixes:
    1: 77.90.183.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/DCrih7FCdTUU5WDyXgXJLsgfw_M.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 161549080 (0x9a10b18)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
        Validity
            Not Before: Jun 15 10:28:44 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=0c2ae287b142753514e560f25e05c92ec81fc3f3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:95:10:09:c9:03:f4:83:2d:b1:b7:5b:f5:63:
                    3c:a8:da:ac:cf:84:16:63:f0:43:3e:d3:a4:7e:91:
                    45:eb:c2:84:c3:39:07:cc:02:15:c8:76:c2:90:62:
                    27:95:ce:2c:85:7a:7e:05:cb:99:b0:b0:2b:2b:f3:
                    87:37:26:65:94:e7:d3:48:a4:23:67:a0:b3:ab:6f:
                    d2:86:06:ab:64:1f:8e:38:fa:67:cd:c0:24:96:71:
                    ed:03:d3:f1:24:ba:1f:28:5e:a2:c2:58:49:c4:95:
                    15:7e:6f:c1:16:2f:7e:12:29:a1:39:3c:3b:ac:fa:
                    b0:cd:84:3d:9d:79:60:66:7e:de:5e:e3:37:de:6e:
                    0b:80:ae:8e:ba:ec:05:79:bb:10:97:d9:40:7c:60:
                    f5:48:b7:61:c8:bb:a2:82:eb:ce:e2:5a:f7:b8:52:
                    41:83:dd:fc:4c:2a:1c:ee:23:a6:d9:98:fa:5b:e7:
                    80:7a:ee:c5:2a:9e:b1:3c:13:50:b6:fd:d9:95:0a:
                    f8:bc:b9:7f:1f:95:ed:2a:40:86:d6:57:98:eb:a0:
                    7d:7b:cf:99:eb:6e:f1:a5:e8:57:92:70:74:36:70:
                    13:1e:ea:0b:64:85:51:2e:5b:b9:0e:fa:29:72:fb:
                    51:35:eb:74:b5:04:c1:a6:29:87:9b:ef:50:e5:36:
                    6e:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                0C:2A:E2:87:B1:42:75:35:14:E5:60:F2:5E:05:C9:2E:C8:1F:C3:F3
            X509v3 Authority Key Identifier: 
                keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/DCrih7FCdTUU5WDyXgXJLsgfw_M.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  77.90.183.0/24

    Signature Algorithm: sha256WithRSAEncryption
         72:d1:f7:97:3e:fb:88:b0:26:dd:f0:90:99:8c:bb:18:e1:ef:
         cd:d5:fc:3a:12:8e:08:1d:ea:92:a8:9f:ce:60:b4:71:e8:c9:
         1e:a5:fb:43:f3:de:3c:8b:4e:ed:35:7b:9c:c6:0d:7d:1c:30:
         11:e6:49:6c:fd:6e:24:da:66:64:c0:3e:1b:a9:c7:d8:82:ed:
         24:71:18:b9:ba:22:75:bd:11:65:55:5d:58:05:b9:35:74:b3:
         59:ad:29:58:40:ef:78:2c:73:2c:7d:d1:94:6e:98:86:68:ab:
         84:a1:6c:d9:63:ad:21:74:77:97:9e:95:07:c8:b4:42:ae:b2:
         1d:59:51:73:65:f4:72:2b:91:1b:48:86:86:9f:9e:47:7a:b2:
         9c:cd:9c:45:ed:d7:76:09:df:59:df:7f:7d:66:91:2e:a1:8b:
         5f:2f:83:5d:cd:cd:97:eb:2c:8d:8c:a4:97:9e:e9:73:bd:03:
         e1:6f:63:3d:ee:8d:03:cb:60:ff:d3:44:6f:54:97:a9:9f:22:
         1b:dc:52:32:63:a8:f7:0e:68:94:e6:ec:d7:9c:08:12:b2:ea:
         ee:8d:85:94:c9:83:8c:dc:3e:1b:d6:00:fc:3d:46:4f:40:9d:
         22:5a:cc:e2:a6:0e:a5:8a:be:e4:cb:85:ae:dc:5a:26:f9:40:
         fa:18:11:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Wed Jun 15 15:00:27 2022 by LibreSSL & rpki-client.