Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/cox9hys3SNwfXuir35uwGkOxwNU.roa (download)

Subject key identifier:   72:8C:7D:87:2B:37:48:DC:1F:5E:E8:AB:DF:9B:B0:1A:43:B1:C0:D5 
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
asID:                     AS1239
Prefixes:
    1: 193.108.102.0/23 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/cox9hys3SNwfXuir35uwGkOxwNU.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 49713514 (0x2f6916a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
        Validity
            Not Before: Jun 27 20:00:32 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=728c7d872b3748dc1f5ee8abdf9bb01a43b1c0d5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:e1:dd:4d:b2:55:20:3c:84:d5:35:4e:96:11:
                    87:59:08:d2:95:26:ac:de:31:14:f3:a2:a4:a3:54:
                    15:3e:f4:fd:60:cb:9d:55:2b:f5:38:f7:b2:4a:34:
                    5c:87:5c:8f:2e:62:1d:7a:2c:38:30:e5:fb:c2:5f:
                    f3:fe:82:90:9e:f2:61:a6:e6:d2:ea:c0:2d:25:2b:
                    eb:d4:ba:3f:c1:9c:d9:78:1e:ab:54:24:6f:79:51:
                    2e:9c:f6:7e:69:09:ee:a1:dd:70:20:e3:9c:cf:ee:
                    c2:0f:aa:02:f2:04:98:43:a8:76:30:02:d3:b5:23:
                    43:a9:a1:2f:92:59:c5:80:42:32:e3:e0:a7:e3:3f:
                    e6:9a:e8:95:90:a3:04:5b:a2:36:5b:39:46:d8:cf:
                    45:02:a6:6e:73:52:86:31:1a:cb:87:54:8e:d3:15:
                    23:35:da:76:4c:6d:a3:d3:f0:5b:ae:ac:05:b5:13:
                    23:0b:71:1a:fb:2e:93:a6:64:98:ad:95:70:8b:f4:
                    18:3b:18:86:1f:78:b9:e1:ec:3f:ab:61:1d:70:b6:
                    61:3e:5b:51:83:d7:59:bb:9c:b2:88:99:31:82:b8:
                    2c:b3:b6:e0:cf:ec:ce:77:cd:f1:56:a3:f9:43:6e:
                    15:ff:de:93:f7:48:a3:e7:ba:43:10:e9:23:64:97:
                    05:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                72:8C:7D:87:2B:37:48:DC:1F:5E:E8:AB:DF:9B:B0:1A:43:B1:C0:D5
            X509v3 Authority Key Identifier: 
                keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/cox9hys3SNwfXuir35uwGkOxwNU.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.108.102.0/23

    Signature Algorithm: sha256WithRSAEncryption
         0b:83:6b:11:20:1e:89:54:a9:a1:c9:2b:19:00:e3:a9:2b:0d:
         f6:5c:27:bb:ca:a6:d1:8d:97:2e:e5:7e:3a:cb:ac:e0:2e:4b:
         6f:9f:d5:96:7f:ac:42:39:05:80:19:0e:63:43:ac:da:8c:8c:
         03:ec:af:6e:aa:87:78:16:e0:9f:cc:f6:ce:9c:d5:db:d3:6d:
         9a:cf:05:23:44:7e:82:bd:ee:23:5e:f9:5f:89:f3:3b:22:48:
         cc:17:63:ef:30:9a:2e:50:61:49:81:a8:f8:64:df:f1:be:a4:
         8f:c0:b8:7d:ee:63:2d:46:b6:77:e8:5c:d3:42:47:8b:f6:5f:
         2b:c2:9e:5b:b3:fb:48:7b:c4:6b:22:89:67:53:77:c0:27:c5:
         34:67:03:05:90:cb:83:a5:93:da:df:b9:6f:3b:0f:f8:fa:66:
         2c:19:58:ae:89:1a:f5:5d:36:ec:74:61:53:b2:dd:12:ec:25:
         23:b9:56:83:cc:1f:02:95:b1:c9:e3:15:c8:cd:c1:47:79:64:
         74:fe:f7:29:40:87:c9:80:9c:fa:33:28:17:5f:c2:76:56:36:
         dc:67:5f:73:47:ff:95:c4:18:36:d9:12:42:c7:2c:d5:6f:7f:
         f9:e9:20:8c:cd:9c:f1:f2:0c:b2:a6:30:64:23:8f:9a:10:33:
         ad:73:2c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Mon Jun 27 23:07:10 2022 by LibreSSL & rpki-client.