Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/5b/207823-8bc3-45be-af9c-3c5127926612/1/_ZNCY8MbuV2FeVibOGD-u8IqWGU.roa (download)

Subject key identifier:   FD:93:42:63:C3:1B:B9:5D:85:79:58:9B:38:60:FE:BB:C2:2A:58:65 
Authority key identifier: 9C:68:D5:8B:2D:65:8F:F2:0F:DD:0A:44:27:2C:1D:B6:F3:CF:7F:C6
asID:                     AS1239
Prefixes:
    1: 195.8.47.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/5b/207823-8bc3-45be-af9c-3c5127926612/1/_ZNCY8MbuV2FeVibOGD-u8IqWGU.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5671362 (0x5689c2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9c68d58b2d658ff20fdd0a44272c1db6f3cf7fc6
        Validity
            Not Before: Apr 28 10:17:08 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=fd934263c31bb95d8579589b3860febbc22a5865
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:e2:a0:eb:ba:e9:2b:36:d3:ee:4f:e3:bb:db:
                    5b:8e:a0:a8:3a:be:27:a3:7d:6c:be:ab:db:33:e7:
                    51:b0:f4:37:38:30:9b:2d:cb:ea:b3:1d:b8:44:25:
                    cd:49:7e:ff:b3:6a:61:fc:57:23:39:d8:9f:de:b9:
                    4e:ba:b3:6d:04:e0:32:34:8e:91:14:10:d5:fa:91:
                    d7:52:77:29:34:4e:4d:d7:5f:60:b5:b4:68:a1:27:
                    40:db:84:23:bf:e3:99:b2:9a:82:73:db:39:90:6e:
                    46:42:ae:86:3c:6d:25:46:b3:d2:c5:88:4b:43:00:
                    dc:dd:9e:3e:12:4c:e1:46:82:45:61:81:51:6e:61:
                    a7:80:db:b0:b2:24:c8:34:c4:8b:92:fe:cc:86:05:
                    c7:6a:6f:86:05:fa:2d:7a:e3:41:16:43:90:9c:f1:
                    4a:4b:b6:48:a9:ac:19:89:fb:f8:61:60:e8:ef:45:
                    b7:1c:fe:ff:4c:0d:3d:53:b9:70:90:d4:ca:e1:c7:
                    a3:92:83:6f:fb:54:7f:46:5a:38:ad:ac:32:50:53:
                    26:20:7b:fa:27:53:91:f1:01:40:5a:60:ac:34:6e:
                    cf:79:1f:e4:dc:e0:67:f5:21:de:51:15:b8:20:6d:
                    a8:d8:80:0b:06:39:83:fc:4c:e5:da:8a:8e:72:07:
                    96:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                FD:93:42:63:C3:1B:B9:5D:85:79:58:9B:38:60:FE:BB:C2:2A:58:65
            X509v3 Authority Key Identifier: 
                keyid:9C:68:D5:8B:2D:65:8F:F2:0F:DD:0A:44:27:2C:1D:B6:F3:CF:7F:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGjViy1lj_IP3QpEJywdtvPPf8Y.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/207823-8bc3-45be-af9c-3c5127926612/1/_ZNCY8MbuV2FeVibOGD-u8IqWGU.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/207823-8bc3-45be-af9c-3c5127926612/1/nGjViy1lj_IP3QpEJywdtvPPf8Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  195.8.47.0/24

    Signature Algorithm: sha256WithRSAEncryption
         11:dd:5e:62:ab:8e:25:6c:cd:4d:38:65:ff:69:dc:45:54:43:
         a4:6c:5d:ac:6f:00:89:cd:f2:88:b5:9f:09:3a:df:9d:ea:2f:
         72:aa:27:bc:7a:43:0f:04:bd:47:9f:1d:59:5d:3b:7b:0e:cd:
         cd:ea:f3:9f:76:59:ff:7e:f3:bc:85:44:e0:fd:c4:99:b0:4f:
         16:de:e4:11:32:bc:65:58:bc:42:16:1e:06:88:0c:95:fb:71:
         2d:78:9f:33:7d:7b:c8:76:d6:81:bd:2e:13:3d:38:20:87:ed:
         a6:aa:62:6a:96:d2:53:23:14:da:d3:c1:cd:76:e3:d9:8f:44:
         73:0f:27:df:be:67:c2:d7:03:cf:5a:45:ef:6e:bd:5c:d3:a1:
         a6:67:b9:52:43:2e:8d:e1:d0:a8:ca:91:5a:f8:db:8d:72:7c:
         a9:42:31:c5:60:38:90:fd:0a:8e:0d:3c:41:33:30:13:71:be:
         9f:97:69:34:0a:44:4d:9a:a9:00:40:8b:83:9d:bd:4a:e2:3e:
         d3:41:71:c5:eb:f7:d2:a3:01:b8:11:f5:01:02:30:af:85:4b:
         6f:a9:31:54:fd:66:c6:27:e8:b1:31:ff:0e:85:0e:43:d5:1b:
         09:27:48:c3:94:b8:8d:10:d2:a1:a9:72:43:04:51:34:5f:f8:
         e5:27:9d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Thu Apr 28 14:46:20 2022 by LibreSSL & rpki-client.