Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5azQHiFe6cg6cfhL7N8eYMJB_rk.roa (download)

Subject key identifier:   E5:AC:D0:1E:21:5E:E9:C8:3A:71:F8:4B:EC:DF:1E:60:C2:41:FE:B9 
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
asID:                     AS399741
Prefixes:
    1: 2a0e:b107:5c8::/48 maxlen: 48

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5azQHiFe6cg6cfhL7N8eYMJB_rk.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 314987933 (0x12c6559d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
        Validity
            Not Before: Mar  9 09:20:34 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=e5acd01e215ee9c83a71f84becdf1e60c241feb9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:65:58:ef:f6:92:fa:53:96:e8:65:57:cd:05:
                    9d:34:47:9d:30:5d:6f:15:4e:de:c3:2a:c9:36:4e:
                    91:d3:c0:89:b6:c8:8e:63:bb:f5:b5:e9:1f:3a:f0:
                    ff:45:00:9b:ff:75:a5:30:28:7c:48:e2:a0:88:3d:
                    a8:ac:9b:f5:e4:5f:95:bd:f3:f9:42:69:4f:b4:8c:
                    3d:88:59:2d:35:c4:e1:4b:cf:3a:43:ed:c5:89:a7:
                    d7:91:be:5f:ea:20:76:cc:36:ad:9d:82:5a:eb:80:
                    20:ed:3a:18:7c:2c:53:91:9b:c2:7f:00:e0:66:b5:
                    d6:8d:d0:11:e7:79:e7:2e:4c:2f:60:92:e7:85:2b:
                    b4:d2:4d:ea:47:ba:51:9e:13:42:3a:58:95:81:be:
                    e2:08:5c:a7:8f:16:83:5e:0e:76:2a:ae:b1:2d:ee:
                    b7:f7:5d:4b:c1:ae:9f:50:06:83:27:c1:47:16:f5:
                    a8:1d:d7:13:d1:9a:b1:06:52:54:65:09:68:25:f3:
                    2b:b1:61:b6:1e:83:cf:ed:12:99:57:24:f9:77:77:
                    6b:e8:cd:06:2a:40:46:d7:cc:12:ed:c9:50:55:9c:
                    fe:19:d9:1b:87:41:5b:7d:b7:b8:80:15:bd:38:3f:
                    d6:9a:af:85:f8:27:ef:ff:01:4d:5e:76:44:4c:c9:
                    79:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E5:AC:D0:1E:21:5E:E9:C8:3A:71:F8:4B:EC:DF:1E:60:C2:41:FE:B9
            X509v3 Authority Key Identifier: 
                keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5azQHiFe6cg6cfhL7N8eYMJB_rk.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0e:b107:5c8::/48

    Signature Algorithm: sha256WithRSAEncryption
         58:6a:26:d7:2b:ac:fd:ec:2c:64:9a:ea:7d:c9:de:c8:4e:2d:
         88:77:ed:a3:03:ec:bc:85:49:11:99:8c:e5:ca:7f:dd:28:5a:
         41:8a:c9:a9:30:a3:ba:f9:e8:f6:01:83:a7:a7:7a:48:2f:ea:
         b1:79:10:76:db:e1:38:c7:02:eb:9a:c2:ae:84:8c:6a:db:8e:
         c9:38:e1:bd:f2:5a:8b:7c:d2:46:de:3a:e2:59:44:5e:8a:1c:
         44:79:d3:3c:5f:b4:94:2d:86:73:d2:b3:a2:cf:cd:7e:ff:59:
         26:b5:29:98:1a:a8:6c:98:3a:fd:64:e5:04:31:36:4e:5d:32:
         1d:b9:55:7b:7c:68:8c:23:f7:cf:b9:31:5a:f5:5d:99:4a:8c:
         6c:a4:c1:cb:c6:11:d2:3f:af:6e:f9:a0:04:41:b9:7c:3d:c8:
         82:e6:e5:37:f4:32:ac:5c:9d:b5:ef:72:60:c8:5d:9f:9e:65:
         31:f3:3b:08:15:43:8d:50:6b:0c:38:63:74:28:1b:17:94:2c:
         1d:ad:df:69:9c:40:97:c1:b8:dd:86:e1:8f:df:b0:d7:03:47:
         41:17:fc:e4:01:a7:55:0d:83:62:ca:2b:1f:59:7c:40:8b:03:
         ae:11:64:df:4a:71:7e:d3:f5:d4:a9:86:df:b0:7e:8c:e0:20:
         e3:53:6c:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Wed Mar 9 12:00:01 2022 by LibreSSL & rpki-client.