Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/EhIzL8eu_acX-vl6NQPnj2dV-GI.roa (download)

Subject key identifier:   12:12:33:2F:C7:AE:FD:A7:17:FA:F9:7A:35:03:E7:8F:67:55:F8:62 
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
asID:                     AS400039
Prefixes:
    1: 45.95.35.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/EhIzL8eu_acX-vl6NQPnj2dV-GI.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 360041960 (0x1575cde8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
        Validity
            Not Before: Jan  6 14:55:15 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=1212332fc7aefda717faf97a3503e78f6755f862
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:c4:60:76:e5:3c:1b:46:ad:46:a3:3b:a2:c7:
                    e8:31:ea:02:80:b8:b3:27:2e:b8:26:53:fe:92:3a:
                    8a:04:f6:e2:cf:92:10:39:9d:db:c1:5d:73:06:d4:
                    7a:01:ce:c1:96:90:00:4c:38:2f:6d:fe:9e:75:34:
                    ad:c6:ea:9b:64:05:98:78:5f:88:c2:8d:b8:d6:88:
                    15:39:dd:17:95:2a:4b:8b:d9:9c:60:a8:ef:89:b6:
                    c4:81:65:b5:37:93:bd:1a:48:fe:81:02:6b:6a:96:
                    ba:0c:5e:3e:eb:2d:6e:b3:74:00:1a:13:3a:c0:00:
                    8f:7b:77:e4:31:97:22:a6:76:e5:fa:91:95:14:e8:
                    38:4b:8c:aa:91:5c:69:61:fb:e2:bc:47:36:24:0a:
                    0f:55:16:de:0c:f8:c4:b2:d0:8d:c5:19:14:bf:b2:
                    db:80:06:e7:ae:0c:3a:c4:d5:ed:17:80:c7:4e:c2:
                    68:1c:da:d1:c9:8a:ce:9d:9d:35:da:9f:cf:82:de:
                    3c:8c:be:23:41:49:c5:82:89:72:13:9c:0c:49:c3:
                    01:b8:ff:a7:28:9a:2e:5e:3b:ff:ea:b1:4b:cb:50:
                    f8:a4:65:0d:50:9c:f5:52:94:00:17:96:f4:81:4a:
                    b8:82:f8:44:7b:0f:ed:f3:29:a3:7b:63:3d:49:fc:
                    6a:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                12:12:33:2F:C7:AE:FD:A7:17:FA:F9:7A:35:03:E7:8F:67:55:F8:62
            X509v3 Authority Key Identifier: 
                keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/EhIzL8eu_acX-vl6NQPnj2dV-GI.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.95.35.0/24

    Signature Algorithm: sha256WithRSAEncryption
         ab:eb:54:0b:b0:c8:97:a5:95:db:a5:83:84:85:57:3b:42:fc:
         47:86:ec:2f:1f:8f:a2:21:b3:2f:f9:af:af:01:fa:26:29:c6:
         cb:e0:7e:0c:1f:57:90:77:81:f7:27:c4:5e:bd:56:82:12:2a:
         80:e5:52:8f:1e:0f:58:7f:64:83:b7:c7:21:c3:03:53:0b:51:
         8c:b6:34:a7:3b:72:3b:7c:63:d9:4c:75:ac:26:c7:65:7d:78:
         a7:f2:87:12:91:00:d5:d5:24:83:3f:73:b2:d5:97:5c:34:d7:
         d6:4e:ad:97:50:4f:4e:b3:53:2f:c6:27:c5:2f:03:4b:04:b8:
         d9:9b:02:3f:fb:77:2b:98:87:ff:23:36:e4:a8:51:1e:96:57:
         d8:20:16:97:1f:9e:cd:d7:7b:ff:8d:5a:1c:f8:a4:1e:ca:13:
         fe:14:ba:57:53:61:f8:7e:a0:70:65:8f:aa:80:bf:6c:c4:cc:
         0d:cb:d4:17:4c:31:9a:1c:94:fd:b8:7a:f6:7a:75:cb:5d:7a:
         9b:ad:0e:3e:f7:26:73:d0:78:11:41:81:dd:dc:d3:94:68:96:
         bb:61:de:b7:8b:2a:38:6e:09:73:0b:a5:9a:56:dd:71:49:a5:
         19:f4:30:4c:1d:19:e0:4f:df:0d:f6:78:45:7d:d7:7a:06:21:
         dd:a8:bc:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 13:08:24 2022 by LibreSSL & rpki-client.