Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/6PWUu-5GG6iP9SRtKGlgVUSOSvs.roa (download)

Subject key identifier:   E8:F5:94:BB:EE:46:1B:A8:8F:F5:24:6D:28:69:60:55:44:8E:4A:FB 
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
asID:                     AS400377
Prefixes:
    1: 104.222.188.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/6PWUu-5GG6iP9SRtKGlgVUSOSvs.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 24724776 (0x1794528)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
        Validity
            Not Before: Jan 25 23:57:56 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=e8f594bbee461ba88ff5246d28696055448e4afb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f8:6b:09:2a:28:fb:0c:a9:49:89:94:bd:2c:23:
                    54:eb:c2:ac:5c:1e:3a:4a:9e:fb:42:89:17:69:84:
                    14:28:47:ef:4c:00:0e:4c:40:45:43:a4:98:2f:65:
                    e6:8a:3e:f4:d6:2c:a6:45:ad:d9:82:90:ba:ea:aa:
                    48:d5:a7:ba:47:d4:d1:04:1e:e4:f9:4e:a7:5a:74:
                    ca:64:63:ae:53:bb:79:f7:72:0c:6f:81:10:18:f7:
                    b7:66:8d:06:40:2a:f3:ab:45:04:ad:28:4e:61:d6:
                    47:e9:ad:18:04:ac:ef:1c:4c:54:3f:94:e3:f1:8e:
                    93:4a:bc:1e:f9:8d:29:de:13:ed:43:6a:f1:fb:50:
                    ee:f6:50:c6:0a:bb:5f:fa:54:20:74:ba:67:9e:86:
                    fe:65:94:07:d2:10:ad:47:9a:05:3c:0c:27:74:8b:
                    9a:ce:57:ba:ec:9d:00:7a:8c:fb:7e:ce:45:7d:dc:
                    e9:73:c1:c0:b5:f9:d2:ef:73:e3:0c:19:6b:09:0d:
                    cd:10:0b:f4:45:89:89:84:07:a5:81:44:9a:57:17:
                    4b:b2:5b:bb:19:12:e6:cf:13:d2:4d:f0:32:53:4f:
                    a0:a9:35:90:f8:e4:0e:76:73:77:43:0e:6e:e6:f4:
                    61:d3:71:dc:b7:02:17:c6:2d:f6:35:53:81:f5:21:
                    b1:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E8:F5:94:BB:EE:46:1B:A8:8F:F5:24:6D:28:69:60:55:44:8E:4A:FB
            X509v3 Authority Key Identifier: 
                keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/6PWUu-5GG6iP9SRtKGlgVUSOSvs.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  104.222.188.0/24

    Signature Algorithm: sha256WithRSAEncryption
         7e:d1:5f:e3:ea:d6:d2:0f:2c:f5:3e:46:f8:8d:c1:e8:43:bf:
         8c:3e:bc:5d:0f:75:4e:5a:e4:2c:6f:ac:6f:e1:a9:2c:c3:d0:
         f2:76:6e:62:63:15:61:72:87:19:87:7b:7f:1f:c6:d5:73:3b:
         7b:72:fe:b4:29:a0:1d:ed:c1:30:28:8f:f5:d0:71:5f:10:d9:
         4b:07:15:89:6e:3a:ec:cc:c6:b4:70:e1:11:42:23:f6:4d:3e:
         d3:30:25:20:49:b7:6c:2e:24:ef:a5:b4:2b:d8:21:90:f8:a7:
         24:9d:17:3f:87:40:0f:a0:2b:58:ba:d8:ad:a1:2c:ed:04:fa:
         9f:48:51:06:1a:f9:39:b1:6a:56:b9:30:31:d3:67:14:c0:4c:
         58:ed:5e:10:d3:12:ab:e9:ac:01:b3:ca:da:4d:e1:4a:32:74:
         ea:ba:41:ee:c6:11:82:1d:ac:e1:72:d0:3d:6b:55:84:ea:b0:
         f9:17:38:c6:ca:c6:be:2c:d8:37:ef:e5:cb:52:d7:dc:2a:63:
         3b:36:4f:6a:a4:d1:e3:c8:9a:0b:75:41:85:9a:55:5c:32:a9:
         41:6d:8c:8d:9a:87:e2:6f:81:12:1b:f7:a0:d9:35:0a:cc:ed:
         a9:59:a9:79:9c:0e:21:68:af:af:02:a3:1a:24:a0:60:de:6a:
         d6:60:74:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 12:50:54 2022 by LibreSSL & rpki-client.