Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/6agTI3qs-6nqEIHZXodI6YU3pF8.roa (download)

Subject key identifier:   E9:A8:13:23:7A:AC:FB:A9:EA:10:81:D9:5E:87:48:E9:85:37:A4:5F 
Authority key identifier: 98:FD:44:0C:BB:B0:4B:96:9B:92:BB:6B:39:C0:BB:B4:16:34:CD:12
asID:                     AS2914
Prefixes:
    1: 91.212.152.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/6agTI3qs-6nqEIHZXodI6YU3pF8.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 416289851 (0x18d0143b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=98fd440cbbb04b969b92bb6b39c0bbb41634cd12
        Validity
            Not Before: Jan  1 05:04:38 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=e9a813237aacfba9ea1081d95e8748e98537a45f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:07:cd:89:bf:20:54:93:b0:0a:ca:45:c9:a1:
                    d8:24:bc:33:71:cf:05:ac:41:5b:8b:34:5c:51:91:
                    98:c1:06:84:3d:d3:c3:4f:bf:03:11:bc:ac:9f:4b:
                    67:0b:62:03:28:eb:ef:6b:37:4f:30:5b:a5:ae:10:
                    0e:fd:cc:5f:c3:f4:8c:8d:c6:14:56:06:f1:50:6e:
                    85:b1:0f:3b:df:d5:bc:18:84:61:12:41:c8:1c:15:
                    7b:03:46:51:dd:dd:61:06:7d:8e:b3:cf:2e:65:fb:
                    28:c6:50:90:b1:d1:b3:3a:b0:8c:2a:a6:f3:9d:4d:
                    6e:e3:61:65:9a:f0:24:4b:b1:ae:64:44:6b:79:79:
                    64:1a:e0:e5:f3:0d:0e:fb:77:ec:98:c6:da:8a:a1:
                    c2:8f:07:f7:b3:df:86:ba:c3:ac:61:17:02:b6:61:
                    62:da:45:b4:da:b7:b2:2c:70:a6:4e:01:aa:1c:d1:
                    e9:97:b1:bb:24:24:fd:b6:0f:33:d1:fc:9e:7e:a9:
                    07:88:ae:2a:cf:d1:9a:08:ec:2a:88:18:ff:ae:6f:
                    09:71:f9:95:d7:dc:83:89:53:b8:91:11:25:6b:8b:
                    f6:b1:b4:ae:b4:20:da:42:aa:61:61:b5:2d:36:07:
                    6f:bf:30:9e:fc:ed:34:39:a1:0d:33:d6:3c:93:f3:
                    36:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E9:A8:13:23:7A:AC:FB:A9:EA:10:81:D9:5E:87:48:E9:85:37:A4:5F
            X509v3 Authority Key Identifier: 
                keyid:98:FD:44:0C:BB:B0:4B:96:9B:92:BB:6B:39:C0:BB:B4:16:34:CD:12

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mP1EDLuwS5abkrtrOcC7tBY0zRI.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/6agTI3qs-6nqEIHZXodI6YU3pF8.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/mP1EDLuwS5abkrtrOcC7tBY0zRI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  91.212.152.0/24

    Signature Algorithm: sha256WithRSAEncryption
         78:24:a6:c4:02:df:07:31:46:fe:26:80:b6:33:4e:86:73:a7:
         56:0a:f0:d6:fb:fa:7a:93:5d:6a:a0:2a:73:c9:da:c2:61:95:
         13:81:e1:ae:e9:a3:1e:86:46:b7:fb:e3:8b:0f:8c:fd:36:5b:
         f5:c2:70:4d:7f:17:15:5f:ff:08:13:b1:be:a4:30:17:c7:db:
         74:8e:c2:42:c6:2d:4f:ad:4b:9a:54:ba:db:be:ea:1e:f0:17:
         e6:bb:29:00:d1:0f:b2:a5:9c:ec:be:7f:58:51:04:e3:2b:7a:
         da:fe:34:c3:89:c9:68:df:26:af:03:71:c3:d0:40:e7:f2:1a:
         21:c9:f9:c6:0b:67:f2:fa:ad:a7:fa:4c:b0:a2:7a:8e:18:e6:
         25:2f:7b:0f:47:bb:d3:da:c1:8b:2a:ec:4f:2f:5f:cd:58:16:
         48:45:b3:71:e5:dc:d0:37:62:91:51:de:80:ad:8e:4f:d5:f6:
         e0:bd:56:2c:84:c1:a8:e5:00:f1:73:e4:f3:06:6d:3c:3f:4c:
         5e:3e:90:76:48:89:35:54:94:8b:d7:dd:dc:0b:12:2b:da:c7:
         28:ab:c9:37:64:df:f2:b7:98:e2:a6:69:eb:26:1e:c2:70:67:
         b6:28:5a:d4:73:02:fd:13:61:47:41:0e:85:e2:3c:71:10:52:
         14:ac:ee:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 13:06:34 2022 by LibreSSL & rpki-client.