Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/e9qIxqfkC-eXjYGSHL2qghl24Bw.roa (download)

Subject key identifier:   7B:DA:88:C6:A7:E4:0B:E7:97:8D:81:92:1C:BD:AA:82:19:76:E0:1C 
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
asID:                     AS1239
Prefixes:
    1: 152.89.192.0/23 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/e9qIxqfkC-eXjYGSHL2qghl24Bw.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:82:4e:7b:65:e6:61:77:e0:81:22:29:9f:00:1b:ff:d9:ac
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
        Validity
            Not Before: Jul 30 09:41:25 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=7bda88c6a7e40be7978d81921cbdaa821976e01c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:fb:e1:f7:eb:0c:02:7d:14:95:a3:23:8e:e8:
                    17:e3:2a:a1:fe:ec:b3:93:14:0d:8e:b3:99:90:37:
                    64:a7:69:05:d6:c2:ef:5d:d3:74:b6:89:43:0a:16:
                    6d:1c:e0:2f:ca:7d:83:86:4b:fd:64:58:9a:e9:43:
                    e0:81:7e:78:5f:08:20:41:50:49:b0:6e:b4:4c:f5:
                    5e:52:88:c3:17:e2:5e:98:71:ff:99:92:a8:16:ff:
                    42:3e:8a:47:05:9f:c6:fc:f7:0c:99:5c:a6:56:ce:
                    5c:17:fe:3d:45:b1:b7:0f:b6:71:3e:7f:3a:d0:ec:
                    7d:69:5d:b8:54:7f:8d:3f:69:f6:36:14:2b:38:b0:
                    c4:49:38:88:42:9d:5f:b9:b5:ba:d2:54:c1:fa:b2:
                    c5:94:93:69:2a:3f:26:78:77:ec:0a:bf:ae:61:67:
                    11:85:75:2c:19:44:4d:14:85:bb:35:1e:8d:b1:07:
                    e9:bc:82:ca:32:47:7c:bf:24:39:a8:57:b0:bd:4e:
                    f6:99:8c:9c:ff:2e:a5:d7:1e:7c:87:87:aa:4b:37:
                    ae:10:f4:0d:65:c4:dd:08:0c:de:a1:9e:6d:02:d9:
                    04:84:c7:d4:7f:2e:a0:6d:4d:8c:07:2f:f0:45:8f:
                    eb:00:14:0d:b0:88:fc:34:68:a4:1c:a7:e2:33:27:
                    e6:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                7B:DA:88:C6:A7:E4:0B:E7:97:8D:81:92:1C:BD:AA:82:19:76:E0:1C
            X509v3 Authority Key Identifier: 
                keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/e9qIxqfkC-eXjYGSHL2qghl24Bw.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  152.89.192.0/23

    Signature Algorithm: sha256WithRSAEncryption
         ab:f8:0c:93:19:cb:c8:61:4b:ee:2a:39:d2:41:0b:ad:57:1c:
         f7:3d:1e:e8:c4:c2:83:b9:ba:78:33:cf:6e:b5:2c:26:4c:c3:
         71:36:c5:22:30:3f:47:75:9c:45:b7:da:d8:f6:18:66:ea:7e:
         65:f7:75:51:4c:5b:e1:a3:fd:e2:91:2d:ff:4f:bb:00:fb:8d:
         4f:bb:3a:5d:81:3b:aa:c4:fc:a8:93:1d:e2:87:75:16:1b:c7:
         a1:2f:7b:0b:89:fb:de:cf:35:d0:6c:8a:94:e0:3a:7f:7e:b3:
         3f:d7:20:f9:42:a2:08:33:e8:d8:0f:7b:ec:d3:63:b6:5a:36:
         af:9a:2e:b1:12:82:8f:7c:38:40:d4:56:54:5b:0e:4e:ac:17:
         78:80:28:02:fd:5b:60:d5:dd:fb:88:76:8f:c8:f3:1b:9f:c4:
         1b:e1:fb:12:e1:59:0a:dd:e0:15:81:79:06:5d:f3:12:95:3f:
         4e:47:7c:f6:1d:b7:aa:bf:69:2b:0f:81:4d:7d:fc:39:34:8a:
         21:7d:0b:aa:9f:17:71:fa:3d:2a:0e:6d:ef:75:44:e8:5f:ac:
         9b:23:b7:e3:55:f8:8e:bc:dd:fd:6c:7c:c3:da:c4:74:56:2b:
         89:4f:f7:a2:a0:f2:cd:29:fe:c4:70:9f:f1:b1:e7:7f:e1:f9:
         00:f7:da:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sat Jul 30 11:19:16 2022 by LibreSSL & rpki-client.