Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/jQMpagKy3nUSDa-t6pdKlxSAnOI.roa (download)

Subject key identifier:   8D:03:29:6A:02:B2:DE:75:12:0D:AF:AD:EA:97:4A:97:14:80:9C:E2 
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
asID:                     AS206499
Prefixes:
    1: 185.133.208.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/jQMpagKy3nUSDa-t6pdKlxSAnOI.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 266996561 (0xfea0b51)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
        Validity
            Not Before: Jan  1 14:59:46 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=8d03296a02b2de75120dafadea974a9714809ce2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:07:20:5f:f0:cd:dc:1a:a1:51:35:b5:63:fa:
                    18:6d:75:b0:da:30:1e:c7:c0:6d:9a:27:4e:78:b8:
                    4a:d2:d7:2f:85:e1:d5:98:f1:00:05:46:75:73:af:
                    99:1f:d5:bb:4c:05:c3:fe:c7:0a:c9:6a:95:40:26:
                    cb:f7:51:0a:a5:0a:05:7b:21:bd:a0:f9:88:c2:d2:
                    89:02:f3:0c:af:e3:ff:bc:63:5b:66:e0:c5:e4:47:
                    60:94:6f:e1:f7:77:9a:75:72:39:ed:71:28:13:bb:
                    5f:54:a5:19:c0:9d:1d:db:0e:ef:5f:f8:3f:cf:4c:
                    fc:ca:69:28:3a:eb:5a:c3:12:26:69:49:63:0a:4a:
                    c5:d9:65:38:98:ea:3e:bf:61:24:0f:fc:81:87:1e:
                    0f:09:c2:c6:53:0e:d0:e7:8d:a7:c5:78:78:bc:17:
                    e2:f2:ce:fa:7e:37:11:40:d9:54:39:f9:57:2f:a8:
                    7e:6f:e9:62:23:94:4a:44:fb:83:72:eb:96:30:37:
                    55:c7:a2:e8:f4:1b:48:db:b0:75:f8:7d:44:ab:4f:
                    5d:e7:28:27:dd:2e:15:c1:ea:a9:19:e1:84:e6:9f:
                    90:d3:03:0c:36:e8:76:6e:82:73:59:c5:dd:9d:07:
                    80:9a:95:ec:84:5a:b4:d0:17:e4:b2:32:13:22:9c:
                    c0:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                8D:03:29:6A:02:B2:DE:75:12:0D:AF:AD:EA:97:4A:97:14:80:9C:E2
            X509v3 Authority Key Identifier: 
                keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/jQMpagKy3nUSDa-t6pdKlxSAnOI.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.133.208.0/24

    Signature Algorithm: sha256WithRSAEncryption
         3d:66:76:4f:77:ca:06:98:21:22:ad:6f:c7:da:69:e1:ab:7f:
         79:f8:26:e5:96:00:5a:6d:6c:b5:52:94:df:9d:4a:31:af:a2:
         78:61:3a:9b:ab:8e:01:c3:94:38:c9:eb:30:ae:5a:d3:f3:dd:
         2c:6f:12:f9:ff:5d:43:ab:88:60:54:bd:3f:72:de:71:8c:05:
         43:9f:a7:b3:8e:12:0a:41:67:bb:1a:a4:49:60:be:4c:ac:a8:
         4d:3a:83:24:f2:8a:e3:e0:4e:7e:fa:59:bc:50:25:93:a0:80:
         35:e5:2c:b2:5a:4c:08:a8:63:ab:1f:5f:ea:c0:9f:c0:b0:b3:
         ee:cb:f4:ca:57:43:5f:17:22:51:06:f0:24:1d:d8:64:b0:cd:
         e7:b0:fd:53:27:b1:a3:99:26:84:21:21:6f:b8:dc:a1:73:9c:
         f0:1a:ce:cc:88:a7:b9:f7:f2:79:e1:fe:ed:26:96:a2:0c:ef:
         c6:f5:45:8a:b7:b3:c0:db:0c:6c:4d:2f:24:d8:36:5a:92:87:
         1c:de:f4:ec:79:cf:90:bf:4d:6f:0a:18:e3:45:50:ca:d8:6c:
         ee:18:84:9e:5e:dc:70:46:00:6e:90:34:9f:78:f8:fc:6e:57:
         a4:fa:95:25:c8:f7:91:da:d5:81:98:11:a1:24:da:38:ca:be:
         c7:01:94:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 13:06:59 2022 by LibreSSL & rpki-client.