Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Wo_unZpkcx_Sc33JzshotIYBdJQ.roa (download)

Subject key identifier:   5A:8F:EE:9D:9A:64:73:1F:D2:73:7D:C9:CE:C8:68:B4:86:01:74:94 
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
asID:                     AS1239
Prefixes:
    1: 217.113.10.0/23 maxlen: 23

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Wo_unZpkcx_Sc33JzshotIYBdJQ.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 133156644 (0x7efcf24)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
        Validity
            Not Before: Apr 14 06:49:42 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=5a8fee9d9a64731fd2737dc9cec868b486017494
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:e5:e8:0b:24:1c:9a:fa:e8:07:bb:a1:db:a3:
                    4d:71:f5:7e:7b:0b:e1:dd:4b:f1:1a:f7:41:2a:88:
                    f4:2e:73:7a:ad:33:c1:dc:72:d3:31:d7:23:08:ee:
                    60:67:e5:b7:eb:fa:f7:b0:08:22:fd:f7:ea:8a:8f:
                    7d:c4:92:18:66:98:34:f5:d7:53:42:d5:a7:b9:ec:
                    46:b5:b4:a8:50:df:7d:34:df:df:f6:f3:d2:98:e0:
                    c5:66:21:c2:f6:bd:d6:33:9b:21:54:1b:92:86:0b:
                    0a:67:7b:15:1f:8b:4a:02:5c:ce:6d:98:ac:aa:22:
                    3b:8e:70:a5:b6:19:57:47:b8:1f:39:9d:ca:46:df:
                    46:6d:39:88:26:4e:90:15:f5:01:4b:7a:11:a1:32:
                    55:37:25:d3:3e:4a:62:f7:f4:a2:0b:b9:ff:94:c4:
                    55:62:91:2c:fc:ba:69:1c:55:fe:d1:b5:a6:24:1d:
                    85:72:d4:8e:14:d9:7f:d1:52:14:0e:28:1d:0b:92:
                    6e:91:8a:8c:a6:f3:89:f6:da:c8:a5:c8:ee:d0:5a:
                    03:3c:92:ba:b3:c3:5c:df:19:7c:a8:27:fb:8f:62:
                    22:0d:b4:a3:38:86:88:e4:87:a6:be:53:5b:15:c5:
                    33:e7:64:c4:68:d3:7c:aa:93:21:75:6c:6c:48:63:
                    6e:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                5A:8F:EE:9D:9A:64:73:1F:D2:73:7D:C9:CE:C8:68:B4:86:01:74:94
            X509v3 Authority Key Identifier: 
                keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Wo_unZpkcx_Sc33JzshotIYBdJQ.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  217.113.10.0/23

    Signature Algorithm: sha256WithRSAEncryption
         a5:e3:ad:9c:5d:97:27:bf:bc:88:2d:aa:47:14:6e:89:8b:ea:
         e1:49:0b:d7:b0:9f:f3:fa:e3:d5:c1:b8:4d:5c:9b:8f:d5:30:
         41:6e:5d:73:90:8d:46:a6:96:6f:db:52:07:9e:4c:a9:a3:15:
         0c:d0:b5:80:0e:5a:5b:90:81:49:70:6d:fc:6a:b0:84:db:a6:
         04:1f:d5:69:05:04:bd:d0:56:53:8b:68:43:d7:1d:95:9f:98:
         69:9c:0a:4f:3a:bf:04:a8:3c:4e:76:0f:22:ab:57:42:27:b9:
         3c:2d:50:e9:36:69:d6:01:8c:ec:8a:c7:07:1c:ce:7b:90:9e:
         cf:62:40:01:9a:41:51:27:17:ed:53:0d:4f:d0:21:85:61:52:
         fc:bc:81:81:7f:16:64:75:36:91:0a:04:31:dd:2c:ec:87:94:
         ff:14:54:b0:7e:2c:7a:5d:07:d9:0d:ba:f3:51:c2:ca:eb:cf:
         7f:83:f0:7a:f7:b8:97:2d:a9:ed:52:1c:3c:59:97:88:c9:d8:
         50:cf:e5:9d:81:b7:bd:d5:b1:f0:7a:e8:45:8b:69:37:5a:ab:
         df:0e:59:ae:74:98:ea:f5:32:b5:80:e5:30:60:f3:b4:9b:4a:
         99:8e:9d:c6:bf:a3:f5:01:ce:77:1e:ba:18:fd:1d:71:66:43:
         69:93:cd:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Thu Apr 14 11:10:11 2022 by LibreSSL & rpki-client.