Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/5iW7tROeFnpayl1JjjDAsvtJDEw.roa (download)

Subject key identifier:   E6:25:BB:B5:13:9E:16:7A:5A:CA:5D:49:8E:30:C0:B2:FB:49:0C:4C 
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
asID:                     AS399029
Prefixes:
    1: 193.107.217.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/5iW7tROeFnpayl1JjjDAsvtJDEw.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 148889319 (0x8dfdee7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
        Validity
            Not Before: Jan  1 07:01:28 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=e625bbb5139e167a5aca5d498e30c0b2fb490c4c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:f4:a8:71:f6:c2:52:74:d3:d4:ca:43:44:f7:
                    aa:e1:82:2a:1e:cd:2a:25:b3:ea:b8:51:ca:90:f0:
                    cd:72:f7:1e:50:9a:d0:3f:97:45:e6:33:37:52:96:
                    14:78:15:ea:ec:f7:15:01:ce:7a:22:f4:1d:4e:6c:
                    7e:1c:82:2b:b6:dd:66:dd:3c:02:60:5d:01:5e:26:
                    07:74:e0:32:2e:a8:76:49:99:9b:52:bf:7d:71:78:
                    1f:05:10:59:b6:b9:9c:d0:77:fd:a2:58:d4:d1:37:
                    09:89:8d:89:e0:6a:6e:57:3e:e7:a7:8e:ad:12:ba:
                    24:78:50:11:1b:42:9b:d2:6e:88:a8:e4:04:73:23:
                    21:9e:ce:ea:bc:8d:a9:4f:98:6d:c7:ab:0c:18:1b:
                    e3:73:65:a8:79:3a:88:6b:e4:99:3b:36:20:30:bd:
                    3e:89:a1:f7:5e:75:1d:78:26:04:e9:fa:0a:71:c5:
                    75:cd:b4:f6:5c:93:2b:bc:e8:ab:5e:f0:4f:0d:d7:
                    b5:c1:60:ec:34:82:39:5b:78:4f:c6:7c:25:5e:9b:
                    fd:e6:6f:af:a4:88:2c:6b:6e:23:69:0f:c4:76:e9:
                    ca:07:37:e9:35:83:40:24:8f:03:bd:05:8b:e1:c3:
                    c5:f6:36:9a:da:03:3d:30:eb:f9:a4:f0:9e:6d:ea:
                    ca:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E6:25:BB:B5:13:9E:16:7A:5A:CA:5D:49:8E:30:C0:B2:FB:49:0C:4C
            X509v3 Authority Key Identifier: 
                keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/5iW7tROeFnpayl1JjjDAsvtJDEw.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.107.217.0/24

    Signature Algorithm: sha256WithRSAEncryption
         bf:1d:62:10:ab:7b:53:c8:04:a8:01:ac:3b:a7:d7:79:c0:11:
         b3:c0:2f:75:0a:1d:d0:82:bd:46:79:59:ee:b8:72:49:70:1b:
         cb:3c:03:df:6c:27:15:cb:f0:ee:64:36:5f:95:d8:fc:a7:d5:
         ad:27:4e:11:30:3c:1b:26:ca:98:e0:31:46:48:6a:40:3e:98:
         b5:cb:cb:67:9a:1d:27:06:dd:0a:31:8b:b7:6c:3a:b1:21:9c:
         cc:7a:09:cf:a3:0b:59:82:5b:60:12:48:d5:18:17:ad:16:27:
         36:7e:7a:50:58:22:6f:45:0b:3c:09:c0:1c:cf:68:fd:ff:a3:
         32:1b:8e:91:b6:58:0b:ce:60:a9:6c:44:5b:94:e6:63:5b:e4:
         b2:1b:78:20:52:fe:84:ff:77:b9:a1:62:09:61:75:3a:ee:eb:
         bf:68:b9:93:81:c0:f7:44:94:61:6c:8c:23:12:ed:d7:0d:6a:
         c5:ce:25:e9:ce:7c:84:b6:e6:24:59:b0:71:33:f3:0b:4d:b6:
         e8:03:2c:55:89:d5:e2:5d:5a:6e:1b:98:83:0b:1a:4b:da:e4:
         40:06:98:b2:50:89:6b:65:29:1f:46:12:52:1e:f1:a4:a9:72:
         70:4c:d6:d4:e4:87:0d:84:23:30:99:fb:26:d7:34:be:af:c0:
         3c:83:f9:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 12:34:17 2022 by LibreSSL & rpki-client.