Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/8SZEeEekBmX8pI_C_ozth3REGkw.roa (download)

Subject key identifier:   F1:26:44:78:47:A4:06:65:FC:A4:8F:C2:FE:8C:ED:87:74:44:1A:4C 
Authority key identifier: 23:07:E7:97:4F:B8:31:2A:2E:6A:AA:99:6F:5E:F8:47:4A:53:10:7C
asID:                     AS1239
Prefixes:
    1: 146.19.189.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/8SZEeEekBmX8pI_C_ozth3REGkw.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 16127921 (0xf617b1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2307e7974fb8312a2e6aaa996f5ef8474a53107c
        Validity
            Not Before: Mar  7 17:31:18 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=f126447847a40665fca48fc2fe8ced8774441a4c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:d2:d6:89:a1:ac:58:64:4d:d7:4c:16:89:07:
                    54:da:5b:9f:79:b1:d4:d8:bf:e1:c7:6f:b1:ee:6b:
                    f8:11:63:db:da:35:a1:8b:ef:ed:75:15:cf:42:93:
                    49:dd:d0:23:a4:d2:16:87:b1:56:31:13:eb:3c:35:
                    4e:b5:c8:3e:e5:b8:5d:b8:d9:ca:0b:87:eb:38:18:
                    ab:ad:c5:f4:45:c8:64:97:ee:6a:ab:e9:d2:bd:36:
                    f5:82:3d:47:a6:be:4f:b0:b8:bb:d2:25:b3:3c:03:
                    9a:56:d8:d4:76:78:39:76:30:7f:54:58:a2:11:87:
                    f0:a4:cc:41:f7:a9:9b:83:89:37:e7:4a:44:71:d3:
                    09:9e:b0:70:96:df:80:80:69:12:aa:47:13:c1:c8:
                    a8:98:39:ae:1f:d0:08:e8:8c:5c:63:1d:12:43:7e:
                    74:cb:5a:bb:b5:d1:4e:1a:1f:ca:35:e1:79:c4:d9:
                    31:9e:5b:e4:ab:13:6b:96:fa:d1:17:8f:e1:30:81:
                    cf:5f:50:dc:ac:ae:37:4a:fd:6a:9e:e4:43:ce:81:
                    dc:26:05:7d:2e:aa:e6:9b:69:8b:c0:f6:ba:72:75:
                    3d:c6:53:36:7c:38:48:58:d6:1c:89:b6:07:4f:aa:
                    f0:18:eb:11:b6:62:62:2b:dc:3c:df:1f:02:34:02:
                    bd:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                F1:26:44:78:47:A4:06:65:FC:A4:8F:C2:FE:8C:ED:87:74:44:1A:4C
            X509v3 Authority Key Identifier: 
                keyid:23:07:E7:97:4F:B8:31:2A:2E:6A:AA:99:6F:5E:F8:47:4A:53:10:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iwfnl0-4MSouaqqZb174R0pTEHw.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/8SZEeEekBmX8pI_C_ozth3REGkw.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/Iwfnl0-4MSouaqqZb174R0pTEHw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  146.19.189.0/24

    Signature Algorithm: sha256WithRSAEncryption
         96:d7:86:7c:ec:11:1e:d4:f2:0c:3a:14:51:5d:e0:66:3d:86:
         9c:d3:d2:1a:c8:b4:72:38:05:9f:d2:1c:e4:3d:ac:63:fd:64:
         f5:f3:8e:2f:49:f2:5c:b1:8c:d5:7c:17:c6:2e:3b:ad:00:7d:
         7d:bf:39:b1:2a:47:63:51:93:a6:53:3b:60:cf:15:be:22:a9:
         8a:26:94:81:51:37:dc:97:39:a5:63:c9:f9:95:dd:5d:5b:95:
         e9:94:10:dd:c3:19:11:2e:d6:96:d7:44:4b:c7:e5:66:9e:e0:
         0a:fe:96:2d:0b:c9:b1:56:0c:5a:f8:ef:f1:38:bc:8f:ed:80:
         25:17:48:ae:aa:9d:ab:14:ac:f7:7a:76:c2:29:45:54:2a:8a:
         df:72:97:74:c8:7e:7c:d1:f8:39:0e:e6:f6:fd:b5:11:b4:19:
         6c:fb:8c:ed:fa:d7:17:2b:be:27:ac:e9:9f:05:7e:0a:ff:17:
         39:a0:b1:7e:e1:71:9d:97:06:db:e4:f3:48:76:67:60:c7:b5:
         4c:0d:35:16:a7:a6:40:a0:a9:d4:bf:6e:23:68:31:29:d7:eb:
         79:0f:56:6b:1c:7f:00:99:9d:1c:c3:47:64:c0:a8:dd:19:86:
         80:1e:76:0c:60:64:da:f0:c7:03:a3:e6:03:cc:be:dd:41:a3:
         a3:fd:b1:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Mon Mar 7 20:41:57 2022 by LibreSSL & rpki-client.