Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/l0d8O7TQMIrC95UbWHLNNR2OflA.roa (download)

Subject key identifier:   97:47:7C:3B:B4:D0:30:8A:C2:F7:95:1B:58:72:CD:35:1D:8E:7E:50 
Authority key identifier: 02:32:A4:BF:B7:79:64:05:A5:56:B7:59:F1:D1:93:E4:C4:D3:71:29
asID:                     AS399734
Prefixes:
    1: 217.163.118.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/l0d8O7TQMIrC95UbWHLNNR2OflA.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 307763530 (0x1258194a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0232a4bfb7796405a556b759f1d193e4c4d37129
        Validity
            Not Before: Feb 24 18:24:06 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=97477c3bb4d0308ac2f7951b5872cd351d8e7e50
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:9b:a2:36:ce:30:38:f0:de:53:38:cd:c5:46:
                    65:ec:e8:22:09:47:57:0a:ca:73:80:36:70:df:bb:
                    fa:92:6b:33:ec:08:ce:36:73:a7:fc:c2:ca:3e:87:
                    6f:57:66:5e:ad:e9:75:57:ba:6d:17:c6:8b:74:26:
                    66:a8:e7:43:c6:5d:69:fa:f6:13:ca:69:3b:2e:85:
                    4b:af:a6:cb:7b:8e:1a:fb:f4:0b:96:f2:2d:e8:c2:
                    24:ab:96:7a:35:f5:23:83:3a:58:19:7e:63:51:b9:
                    c7:57:42:71:00:55:cd:c9:e5:6a:bc:d5:6b:00:c2:
                    c4:32:e8:00:fd:2c:cd:5f:a4:c0:dc:8c:3b:f2:f9:
                    df:81:38:57:5f:16:83:13:de:34:22:41:83:48:1f:
                    82:a5:2c:e6:3c:0e:c3:ed:b6:27:72:49:1a:6d:85:
                    d1:1c:3c:9a:6b:de:98:0b:87:b7:90:2c:31:17:1a:
                    4b:04:a8:f0:af:f6:48:62:f0:a6:bb:d4:83:69:d7:
                    bc:ca:31:de:de:cd:f5:a9:bf:5f:bf:65:52:44:dc:
                    0c:ec:14:7b:c2:c3:b1:e6:64:1c:38:b5:c2:41:15:
                    0f:95:3d:9f:f3:7f:9e:a8:05:b6:ad:cc:a4:21:03:
                    a3:6b:43:d0:d9:44:44:8d:21:93:d2:e6:cd:38:cf:
                    0c:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                97:47:7C:3B:B4:D0:30:8A:C2:F7:95:1B:58:72:CD:35:1D:8E:7E:50
            X509v3 Authority Key Identifier: 
                keyid:02:32:A4:BF:B7:79:64:05:A5:56:B7:59:F1:D1:93:E4:C4:D3:71:29

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AjKkv7d5ZAWlVrdZ8dGT5MTTcSk.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/l0d8O7TQMIrC95UbWHLNNR2OflA.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a7ce7a-8443-46eb-8cba-3bb4d6200518/1/AjKkv7d5ZAWlVrdZ8dGT5MTTcSk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  217.163.118.0/24

    Signature Algorithm: sha256WithRSAEncryption
         c1:87:12:aa:60:76:33:30:9b:d6:c6:be:a9:b6:9e:b7:41:ff:
         3e:06:8a:62:4c:73:01:6f:a7:76:66:f1:c5:f2:c4:43:f8:ff:
         7e:0d:4c:18:53:9f:f8:fb:90:bb:48:1f:05:4a:28:73:cc:65:
         bc:f4:65:59:31:4b:ec:1e:45:88:1d:44:f2:c9:55:6e:c7:e1:
         f9:43:06:9f:0a:07:80:65:f1:6c:88:16:ac:f3:05:25:45:32:
         da:4a:0f:61:68:b7:ac:a8:7c:ab:57:ef:e5:d9:a7:fc:c1:18:
         73:8f:25:51:b9:04:b3:8b:46:87:74:34:02:6f:45:81:9b:fb:
         4e:8f:b1:29:ed:4f:32:02:a5:37:9c:de:86:f3:f4:cf:60:4a:
         95:71:90:57:84:46:55:bc:9e:87:bf:ff:5d:82:4c:8b:4f:f5:
         5f:85:67:dd:6f:fa:26:f7:cb:77:c1:dc:fe:d2:78:ef:76:0e:
         4f:11:27:8d:b2:2b:d0:11:15:a0:d2:25:f5:7a:43:aa:12:52:
         4f:e4:21:ac:5a:5e:c9:e5:d2:80:18:4c:3a:9e:78:37:80:e3:
         59:e6:91:ac:d5:72:6a:c6:0b:9b:a5:c9:16:25:7a:b1:f2:c4:
         2a:87:7e:b0:69:45:6a:26:6d:f6:6b:a0:a3:f9:35:fe:3e:4e:
         8c:ac:ce:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Thu Feb 24 20:11:35 2022 by LibreSSL & rpki-client.