Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/55/78c103-89da-4b84-8f34-aeb6d2cf2de2/1/s2bKhRRiSPKlM4ddopJiSJwEAFw.roa (download)

Subject key identifier:   B3:66:CA:85:14:62:48:F2:A5:33:87:5D:A2:92:62:48:9C:04:00:5C 
Authority key identifier: 8F:8B:15:D3:4C:08:B5:F1:FC:FF:4F:9E:74:C9:5B:C7:6A:0B:6A:BE
asID:                     AS1239
Prefixes:
    1: 185.249.54.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/55/78c103-89da-4b84-8f34-aeb6d2cf2de2/1/s2bKhRRiSPKlM4ddopJiSJwEAFw.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 20576335 (0x139f84f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8f8b15d34c08b5f1fcff4f9e74c95bc76a0b6abe
        Validity
            Not Before: Jan  1 14:07:38 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=b366ca85146248f2a533875da29262489c04005c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:72:73:9a:8d:fc:4c:d3:75:25:0c:07:c3:92:
                    46:73:5e:38:31:d6:11:80:2e:99:6c:60:78:96:90:
                    40:8b:56:90:7e:da:72:cb:9a:52:f2:5d:f3:7d:40:
                    41:41:76:a8:60:25:35:ce:5f:63:11:a2:88:ea:a6:
                    67:bf:39:fb:bb:f5:70:1a:f1:48:06:8a:2f:95:16:
                    09:14:76:ba:a4:1d:73:7a:f1:03:ec:7c:87:65:05:
                    e7:14:17:20:10:5a:ca:7c:df:28:b4:23:3f:ee:95:
                    13:c6:c5:c4:cb:67:56:2d:40:52:42:63:8e:fb:ab:
                    a3:0d:8d:89:12:b3:1b:22:fe:ee:31:58:03:97:15:
                    c3:c0:f2:f9:fd:06:79:84:63:31:f6:d9:e2:25:0c:
                    31:a2:db:13:05:b2:e5:78:e7:8d:89:bd:ec:a6:95:
                    bf:d9:4d:70:5c:9b:2b:4f:20:f9:0b:8a:a6:b6:d7:
                    bb:dc:03:41:26:f7:91:6a:53:e9:e1:32:53:66:df:
                    c0:67:e9:54:58:50:b4:a0:a2:c5:09:ce:15:93:a7:
                    6e:5c:68:0a:ad:4c:4c:a1:88:55:a1:b8:9a:2e:76:
                    b4:4d:a7:b4:16:da:65:33:fd:c5:29:af:db:f2:55:
                    57:62:b1:8d:db:de:cf:aa:9a:09:bf:97:85:fa:5f:
                    64:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                B3:66:CA:85:14:62:48:F2:A5:33:87:5D:A2:92:62:48:9C:04:00:5C
            X509v3 Authority Key Identifier: 
                keyid:8F:8B:15:D3:4C:08:B5:F1:FC:FF:4F:9E:74:C9:5B:C7:6A:0B:6A:BE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j4sV00wItfH8_0-edMlbx2oLar4.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/78c103-89da-4b84-8f34-aeb6d2cf2de2/1/s2bKhRRiSPKlM4ddopJiSJwEAFw.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/55/78c103-89da-4b84-8f34-aeb6d2cf2de2/1/j4sV00wItfH8_0-edMlbx2oLar4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.249.54.0/24

    Signature Algorithm: sha256WithRSAEncryption
         b0:06:be:2d:f2:75:d6:1f:dd:5d:3a:c8:8a:7b:63:e2:45:6c:
         38:23:14:6c:29:75:02:55:c4:46:f7:2e:9d:43:ff:e0:40:13:
         56:cb:1a:f7:75:1f:03:43:7c:d4:c7:0b:28:c7:bd:a7:27:5b:
         90:90:a7:26:8a:56:5e:4c:b0:9a:96:c9:0a:84:eb:6f:a3:ea:
         6c:5a:00:fc:5b:64:29:1e:23:76:3d:f0:a3:c8:cc:64:6e:8f:
         d7:1e:37:10:48:fb:76:9e:d8:36:b7:54:1a:6d:44:e4:84:13:
         34:bb:33:1d:55:c3:63:21:1f:72:e1:20:3a:a5:59:9c:54:66:
         23:d9:79:ad:9b:12:d1:db:4a:d3:d1:f9:b7:ca:13:06:22:ee:
         b5:8e:30:8b:80:c6:3b:4e:8d:50:0b:65:4f:27:28:2e:9f:89:
         dc:28:a6:84:3a:b8:47:a6:df:e7:90:86:ac:13:fc:09:02:ee:
         45:6f:23:21:01:26:79:89:72:48:3f:13:b3:bb:9b:ca:69:59:
         3a:77:5f:51:a3:b0:20:a0:49:5a:3e:5f:68:e4:97:eb:ab:e0:
         cc:c7:1e:71:a0:7e:2f:da:09:de:d6:6d:f3:c6:c4:66:81:66:
         68:50:fe:e1:7e:04:52:4b:bb:37:5c:0c:4a:8d:0c:cb:fb:11:
         38:b2:24:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 12:40:11 2022 by LibreSSL & rpki-client.