Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/1-pvoLED7_gWs_CROV3cSuM3qBXw.roa (download)

Subject key identifier:   FA:9B:E8:2C:40:FB:FE:05:AC:FC:24:4E:57:77:12:B8:CD:EA:05:7C 
Authority key identifier: 62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
asID:                     AS1239
Prefixes:
    1: 185.251.21.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/1-pvoLED7_gWs_CROV3cSuM3qBXw.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 15604172 (0xee19cc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
        Validity
            Not Before: Jan  1 08:57:55 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=fa9be82c40fbfe05acfc244e577712b8cdea057c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:e4:e9:28:d4:bb:e4:40:c4:b0:0c:6c:e6:9d:
                    ba:8c:7d:05:fe:c0:34:ed:3a:49:a3:46:7f:c6:1a:
                    c4:6c:06:7a:7d:ad:2a:f7:38:b2:cc:c8:dc:dd:b6:
                    47:20:d6:90:2a:68:ee:07:2a:42:3e:79:86:f7:0e:
                    8a:1e:d6:7d:25:1d:39:22:05:52:46:9f:f0:35:76:
                    9d:f5:49:c6:e4:0e:2a:35:3a:58:92:7d:85:c9:b8:
                    36:9d:35:0e:bf:09:46:a6:84:3c:91:17:c9:9d:ea:
                    8a:3e:da:f3:15:79:33:bb:fe:fc:2f:80:11:44:3d:
                    1e:38:d2:05:0b:bd:a7:39:69:6f:74:92:2f:73:cc:
                    81:00:a2:36:c7:4a:9d:2f:c3:3a:74:38:b2:89:e7:
                    93:6b:4a:c2:60:00:97:fe:ef:ff:1c:7e:6b:83:ee:
                    b0:9e:fe:11:3b:07:7d:29:ab:e1:42:83:d0:4e:7b:
                    9d:c6:d3:9e:fd:a7:64:7d:db:8f:98:13:9f:63:37:
                    fd:47:70:9e:c1:d8:b9:75:88:4a:c3:e3:f2:7d:3e:
                    df:e5:01:15:da:01:3e:d5:d2:67:da:07:e7:e1:4b:
                    aa:4a:29:d9:97:2a:1b:15:5d:19:e7:43:cb:52:33:
                    c1:96:0a:4a:e7:d1:28:b9:ca:e0:6a:56:b7:9b:2e:
                    b8:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                FA:9B:E8:2C:40:FB:FE:05:AC:FC:24:4E:57:77:12:B8:CD:EA:05:7C
            X509v3 Authority Key Identifier: 
                keyid:62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/1-pvoLED7_gWs_CROV3cSuM3qBXw.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.251.21.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6a:b6:e3:f2:89:89:2d:56:28:a3:78:00:e6:b7:96:09:60:09:
         70:e7:c0:98:2b:a1:54:43:ed:a0:18:c2:8d:b1:62:aa:48:d4:
         6a:ae:72:4a:4e:95:d0:58:04:25:83:5d:31:52:11:4f:fd:0f:
         da:26:88:4b:c6:ce:b1:2f:7c:2e:20:99:01:b0:55:f3:56:11:
         e4:25:25:69:40:f8:e1:e1:0c:38:16:72:73:58:0b:bd:c5:98:
         72:48:82:c7:5f:85:8f:35:5a:4f:c8:b6:2a:ee:8d:b9:5e:75:
         e2:ac:00:a2:c3:0b:a2:8e:72:e3:ce:60:a4:1b:6d:cb:4c:f9:
         83:bc:6e:2d:54:c2:f4:5c:14:6b:5a:c6:41:9a:de:c2:c6:1c:
         89:5d:0e:63:81:81:0d:85:4c:d1:8a:7a:54:87:4a:79:7b:cf:
         d7:dc:83:52:d2:1b:be:9e:d3:8a:aa:19:f7:f7:9a:99:e5:a8:
         43:00:5c:2e:3d:17:96:a9:f7:cf:d8:ac:e7:8e:f2:8a:c1:2e:
         b7:ba:40:b4:8a:a5:40:f9:16:c0:2e:eb:a0:5a:c9:9d:a6:bb:
         88:d3:97:7a:fc:62:c9:77:7a:b9:f1:c8:08:41:30:f7:39:c4:
         f3:0c:3a:ed:ca:8c:71:cd:4f:da:31:1b:49:35:cb:da:50:2a:
         fc:7e:74:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 12:37:41 2022 by LibreSSL & rpki-client.