Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/65/5073f7-8d19-483b-af32-32361b3d782d/1/vRIMS1v0epnLU9D3SXpGZozCZNA.roa (download)

Subject key identifier:   BD:12:0C:4B:5B:F4:7A:99:CB:53:D0:F7:49:7A:46:66:8C:C2:64:D0 
Authority key identifier: BB:74:36:80:8A:73:7C:5E:DC:65:25:6C:74:57:8B:E3:5E:C4:10:09
asID:                     AS1239
Prefixes:
    1: 194.62.16.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/65/5073f7-8d19-483b-af32-32361b3d782d/1/vRIMS1v0epnLU9D3SXpGZozCZNA.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 21704256 (0x14b2e40)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bb7436808a737c5edc65256c74578be35ec41009
        Validity
            Not Before: Jan  1 05:58:57 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=bd120c4b5bf47a99cb53d0f7497a46668cc264d0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:70:fd:b0:2f:0c:79:78:90:2a:90:ad:62:44:
                    64:60:d9:7c:8f:37:f7:0f:b8:15:d6:a3:c3:f3:4b:
                    d2:67:3d:19:fb:35:41:2c:a5:7b:82:e2:3a:75:fa:
                    4f:e7:29:e3:91:f8:e9:a0:da:4c:d9:27:f6:74:5e:
                    66:91:88:5a:c4:d3:10:9e:01:96:71:66:6e:1b:fd:
                    dd:a6:d4:f4:a7:5f:42:77:6b:e3:75:24:8d:b9:b5:
                    74:05:89:9f:16:49:4d:85:6d:69:b7:fd:88:56:da:
                    a7:9f:e7:e0:29:a8:62:d9:e4:b6:68:77:54:97:57:
                    6a:78:e7:84:97:bf:2e:8d:ae:a7:96:f8:99:18:a0:
                    95:f9:97:9c:5e:f2:05:76:f0:3a:89:c2:96:a6:5c:
                    d9:07:f7:c3:0a:97:0b:e8:25:d9:9d:ac:51:77:13:
                    70:83:78:ff:b8:64:78:cb:bd:f7:66:ec:36:20:8a:
                    64:7f:64:f6:2e:1a:2f:75:d6:b1:98:12:56:e6:7c:
                    10:ad:e6:d8:77:76:d5:37:ca:99:82:38:a1:a2:a6:
                    cb:fe:d9:ea:3a:bd:a1:83:18:1f:e6:c8:aa:8a:f3:
                    98:d0:a8:2b:32:70:50:3c:27:9a:62:6a:d9:bb:84:
                    39:10:5d:2d:9c:18:7c:3f:13:df:87:2c:3a:32:a2:
                    76:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                BD:12:0C:4B:5B:F4:7A:99:CB:53:D0:F7:49:7A:46:66:8C:C2:64:D0
            X509v3 Authority Key Identifier: 
                keyid:BB:74:36:80:8A:73:7C:5E:DC:65:25:6C:74:57:8B:E3:5E:C4:10:09

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u3Q2gIpzfF7cZSVsdFeL417EEAk.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5073f7-8d19-483b-af32-32361b3d782d/1/vRIMS1v0epnLU9D3SXpGZozCZNA.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5073f7-8d19-483b-af32-32361b3d782d/1/u3Q2gIpzfF7cZSVsdFeL417EEAk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  194.62.16.0/24

    Signature Algorithm: sha256WithRSAEncryption
         60:85:48:e4:47:37:c2:d0:16:57:87:d2:d2:64:33:b5:3e:c4:
         6e:5a:07:04:f1:3d:39:01:b2:61:74:3f:52:0e:7b:41:31:aa:
         c8:af:a7:2a:70:cc:8b:d9:cb:36:89:08:c3:4f:71:11:d5:14:
         87:ef:72:3c:f8:b5:c0:f0:48:f8:f2:f6:89:b1:11:cc:99:0d:
         ab:25:2f:cc:a3:ec:d1:f2:89:6c:37:96:65:0e:8d:ff:0e:ff:
         40:71:a9:17:3e:c5:c9:2c:68:6a:2d:db:0e:02:13:c5:56:82:
         1a:7b:39:d4:a4:78:35:b2:58:2c:1f:5d:c2:e9:34:30:8e:57:
         ea:53:9c:cc:f3:eb:5d:82:f7:24:c1:3f:52:c0:82:70:38:97:
         e3:4d:bd:cd:86:dc:73:8e:6c:15:fd:76:c4:71:c3:62:10:04:
         a3:04:ac:eb:2b:0b:82:2f:c2:a3:ab:00:d7:1a:b7:f9:47:b7:
         d7:31:ee:f6:65:26:2b:8c:57:ac:6c:7a:3f:03:60:36:b4:34:
         19:1d:78:18:11:87:1b:5e:32:cd:d8:a4:27:bc:93:6e:3d:e7:
         45:28:26:7b:32:59:3c:b8:b6:4a:79:06:96:d9:38:77:68:1d:
         73:06:be:f4:b8:cf:7c:bc:16:39:c6:06:37:61:41:92:15:d3:
         0c:34:6d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 12:53:32 2022 by LibreSSL & rpki-client.