Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/44/136bd2-16f9-4097-b347-b23e79f32501/1/1zPmoAdVlXgR0pHUpjyesrMGEYA.roa (download)

Subject key identifier:   D7:33:E6:A0:07:55:95:78:11:D2:91:D4:A6:3C:9E:B2:B3:06:11:80 
Authority key identifier: D7:5B:72:46:A6:5E:D5:54:91:EF:ED:DF:6D:BB:9B:EB:49:84:16:EA
asID:                     AS1239
Prefixes:
    1: 77.87.126.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/44/136bd2-16f9-4097-b347-b23e79f32501/1/1zPmoAdVlXgR0pHUpjyesrMGEYA.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 17942269 (0x111c6fd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d75b7246a65ed55491efeddf6dbb9beb498416ea
        Validity
            Not Before: Jan  1 01:52:45 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=d733e6a00755957811d291d4a63c9eb2b3061180
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:fc:b6:e2:68:11:89:b9:68:77:74:49:5a:02:
                    25:5b:e8:d3:b3:29:fe:17:df:87:ec:eb:9b:fd:5b:
                    08:9c:b1:a1:72:c8:07:e4:f6:c2:70:9c:13:ff:da:
                    15:e6:0a:ef:41:fb:6c:1a:94:5c:c5:7d:87:7f:fd:
                    02:ae:65:ee:59:8d:36:a6:a0:0e:1d:d9:a0:fa:8d:
                    f5:16:f7:80:69:04:35:8f:47:f0:2d:18:07:92:f0:
                    5c:9b:a2:02:5f:35:7b:65:93:2c:6f:65:8b:f8:28:
                    2e:34:45:ad:49:03:19:9b:29:98:c2:72:53:ed:df:
                    de:d6:35:b6:76:be:4e:20:f9:73:93:fd:98:89:35:
                    12:5a:07:05:e9:35:7e:72:c0:18:0c:bd:b5:09:bc:
                    84:37:6c:b8:06:c1:88:b0:49:16:f2:d5:b0:0e:84:
                    39:b2:f2:a3:20:39:ae:04:51:0a:5a:83:8f:68:1e:
                    54:94:2f:5f:d5:8b:30:ac:3d:ec:a7:03:ac:0c:9e:
                    9c:84:61:6e:95:61:81:93:6b:31:82:43:f3:a9:6b:
                    65:5a:18:c6:c7:5c:4f:8e:3e:47:85:bd:73:09:3d:
                    6a:e8:d1:5e:40:af:f0:5b:db:92:7a:fb:3c:8a:a3:
                    88:c3:30:a6:10:5e:37:c8:80:88:0e:b2:c3:43:bd:
                    8e:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                D7:33:E6:A0:07:55:95:78:11:D2:91:D4:A6:3C:9E:B2:B3:06:11:80
            X509v3 Authority Key Identifier: 
                keyid:D7:5B:72:46:A6:5E:D5:54:91:EF:ED:DF:6D:BB:9B:EB:49:84:16:EA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/11tyRqZe1VSR7-3fbbub60mEFuo.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/136bd2-16f9-4097-b347-b23e79f32501/1/1zPmoAdVlXgR0pHUpjyesrMGEYA.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/136bd2-16f9-4097-b347-b23e79f32501/1/11tyRqZe1VSR7-3fbbub60mEFuo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  77.87.126.0/24

    Signature Algorithm: sha256WithRSAEncryption
         65:29:0c:24:6a:f9:1e:50:c0:91:9d:d9:4b:7a:60:ee:2e:68:
         c7:b3:3e:67:83:e0:81:74:8b:05:4d:82:18:c7:6b:7c:6f:c0:
         14:ca:f5:48:b0:a9:b9:08:79:ef:76:1e:39:bb:20:cd:4e:e8:
         2d:d9:f1:99:d0:80:54:1e:1a:22:8d:af:fc:c3:49:49:6f:cb:
         ba:e0:55:24:37:6a:eb:34:36:a1:e8:2c:77:65:74:84:ab:80:
         44:ef:61:f9:72:7c:df:26:c8:23:af:e2:2c:da:1d:77:1a:5c:
         6f:ea:1d:ed:b1:1f:3c:f1:7f:1d:d0:24:98:36:47:e9:26:59:
         4b:90:d1:6b:c4:86:0e:50:af:9d:06:a5:85:5f:f4:00:4d:d4:
         77:3b:55:05:33:7b:02:11:94:ed:57:d3:6c:91:76:a5:31:e4:
         5a:10:d9:ca:02:8f:c8:94:7b:1d:a3:fd:57:e0:c2:0b:ec:6b:
         15:a9:22:3e:94:9b:ed:39:29:50:3d:34:c7:11:fd:a5:0f:c6:
         8e:8d:33:08:1f:25:a3:a6:29:a1:48:27:2b:db:17:4f:d5:d2:
         a4:7c:83:24:c5:59:e5:f6:5d:89:57:70:91:94:ba:a8:36:62:
         cf:6c:49:a1:1b:2a:89:b6:cf:60:1f:84:aa:a3:44:5c:d2:57:
         70:74:92:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 12:35:09 2022 by LibreSSL & rpki-client.