Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/UbZEFx12R1T9Ii2BMuLPpFdpUDI.roa (download)

Subject key identifier:   51:B6:44:17:1D:76:47:54:FD:22:2D:81:32:E2:CF:A4:57:69:50:32 
Authority key identifier: 9A:75:82:C0:14:F2:6D:23:B6:EF:9C:2E:82:F4:85:70:C0:B6:78:68
asID:                     AS1239
Prefixes:
    1: 193.3.171.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/UbZEFx12R1T9Ii2BMuLPpFdpUDI.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9121044 (0x8b2d14)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9a7582c014f26d23b6ef9c2e82f48570c0b67868
        Validity
            Not Before: Jan  1 01:54:45 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=51b644171d764754fd222d8132e2cfa457695032
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:29:3e:53:49:e7:48:d9:6a:4b:a3:b2:63:cb:
                    67:63:75:84:24:f6:ba:6b:0d:3a:b2:c2:fe:d0:7f:
                    06:c1:c1:a0:8b:4b:9f:05:24:f9:f5:28:a8:ed:16:
                    79:84:dc:77:ca:fe:e0:26:cf:e2:f5:de:11:30:89:
                    d7:98:56:b9:a8:e0:60:db:d8:99:75:9c:01:f6:f2:
                    18:68:8c:8f:2c:38:29:48:87:5c:df:b5:48:02:ae:
                    a2:9f:f0:1a:70:d5:70:71:de:5c:7d:3c:de:57:ef:
                    e7:21:df:2b:f7:81:8b:5f:be:4f:24:84:54:14:88:
                    8a:b6:ad:37:35:f0:f8:f3:17:d5:2c:d7:dc:6f:12:
                    5f:9b:43:0d:22:f1:b4:57:b3:02:c8:4d:72:28:35:
                    07:df:0c:fe:a8:d4:40:fb:4f:f4:e1:5d:a8:60:af:
                    8d:c1:4c:7f:73:87:0a:cb:eb:22:b6:ed:c9:20:dc:
                    a8:ed:5f:94:ec:82:b8:8d:13:08:ac:68:eb:5d:8b:
                    5f:95:34:ae:e1:aa:70:cb:98:3d:21:27:11:3d:e4:
                    b5:c9:59:81:08:e5:b0:31:60:34:77:3a:34:94:23:
                    13:ef:3a:4d:ab:01:fe:7e:b1:85:78:d2:ac:98:76:
                    63:43:c9:4e:9e:42:9c:f8:70:2e:f4:b8:ee:bb:ad:
                    97:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                51:B6:44:17:1D:76:47:54:FD:22:2D:81:32:E2:CF:A4:57:69:50:32
            X509v3 Authority Key Identifier: 
                keyid:9A:75:82:C0:14:F2:6D:23:B6:EF:9C:2E:82:F4:85:70:C0:B6:78:68

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnWCwBTybSO275wugvSFcMC2eGg.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/UbZEFx12R1T9Ii2BMuLPpFdpUDI.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cd7bdf-2f6c-4402-95d7-c3d18b275465/1/mnWCwBTybSO275wugvSFcMC2eGg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.3.171.0/24

    Signature Algorithm: sha256WithRSAEncryption
         70:3c:5f:80:53:ee:43:04:27:29:ee:8e:cd:e7:a5:7b:00:b6:
         0d:37:6e:d1:0b:38:33:47:6f:85:ca:14:4e:ac:c3:f7:ac:66:
         bd:0c:e4:f8:2b:39:be:99:e1:77:ef:54:d7:cf:e9:40:a7:fd:
         d0:42:9a:20:d9:5e:fd:67:58:be:b3:50:34:e3:c5:d2:09:de:
         19:84:ee:83:9c:7f:d6:f5:b2:e4:ba:4d:fb:f0:71:d7:81:c8:
         cf:45:64:35:c6:55:ec:b5:3b:04:a8:18:f1:09:6b:3f:9a:e2:
         d7:70:89:79:08:1d:ea:01:8c:a2:62:4b:62:c8:e4:99:27:42:
         b8:da:f0:d0:f5:47:cd:45:cb:cd:c4:22:ca:5a:75:37:49:46:
         4a:21:26:92:20:fb:5d:d2:02:d9:a1:ac:ab:73:68:5e:ee:7d:
         6f:57:88:04:47:24:f9:f0:95:02:11:a0:5b:7d:4b:62:b5:32:
         93:88:c4:7c:a1:5d:e7:e7:1c:cc:e2:7c:c1:34:03:5a:2d:f3:
         c0:1d:5f:eb:64:24:71:58:82:01:eb:27:40:26:d0:31:b0:25:
         cf:ca:f2:67:4b:29:23:78:eb:de:e6:52:9f:be:db:27:15:05:
         ac:55:dd:d1:a0:e6:e3:55:66:a0:21:c1:8a:82:5e:89:0b:eb:
         4b:b0:36:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 13:02:50 2022 by LibreSSL & rpki-client.