Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/a9/87f152-5f33-45c9-8511-fefcb4f3b4b4/1/POJN8o8OgD73rnXkQ2rmPoiR984.roa (download)

Subject key identifier:   3C:E2:4D:F2:8F:0E:80:3E:F7:AE:75:E4:43:6A:E6:3E:88:91:F7:CE 
Authority key identifier: E3:68:11:6C:68:49:22:82:10:90:51:22:01:6D:72:20:91:19:7B:E5
asID:                     AS1239
Prefixes:
    1: 193.201.13.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/a9/87f152-5f33-45c9-8511-fefcb4f3b4b4/1/POJN8o8OgD73rnXkQ2rmPoiR984.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 14126484 (0xd78d94)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e368116c6849228210905122016d722091197be5
        Validity
            Not Before: Jan  1 08:56:16 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=3ce24df28f0e803ef7ae75e4436ae63e8891f7ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:51:db:8b:e4:62:d3:74:70:fe:6a:7f:5c:00:
                    ca:e0:34:71:ba:46:3a:10:9a:6c:00:0c:4a:8e:46:
                    82:58:fb:13:4b:cf:b0:27:a0:b8:4c:12:4c:f3:6d:
                    e3:ac:c3:20:97:4a:a1:ff:ff:a3:07:91:52:da:0a:
                    a5:b8:0c:5b:a6:3d:46:3b:0a:39:5e:6e:84:2c:10:
                    4a:ef:24:db:19:2d:39:fc:12:8b:5e:48:a0:d7:3f:
                    1e:b1:4d:71:3c:f0:a3:31:a2:42:1b:dd:e3:82:11:
                    70:63:c3:3b:80:ca:37:23:54:b5:f9:c7:de:6b:db:
                    0e:cc:ee:54:cb:4a:ed:0f:b6:83:48:a1:89:3e:c8:
                    d4:eb:03:75:57:f1:bc:fc:f9:bf:78:d1:41:e1:29:
                    b7:88:29:50:bd:e3:c8:85:3b:de:3c:a5:08:eb:24:
                    92:9f:e0:fc:b0:2c:0d:26:fe:a1:49:ab:40:da:0b:
                    b9:af:a9:31:80:cb:67:51:7c:be:ea:08:ca:4d:70:
                    7f:75:c6:32:82:0f:d2:38:c6:89:a0:28:e7:26:70:
                    2f:9a:e3:02:86:7f:fc:f4:75:34:9d:d1:5c:fe:d4:
                    93:f3:91:a7:a3:d3:81:5e:c3:96:e2:04:26:56:b4:
                    21:0d:4c:cb:b3:1e:f7:33:e8:14:77:c5:a7:67:ec:
                    ab:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                3C:E2:4D:F2:8F:0E:80:3E:F7:AE:75:E4:43:6A:E6:3E:88:91:F7:CE
            X509v3 Authority Key Identifier: 
                keyid:E3:68:11:6C:68:49:22:82:10:90:51:22:01:6D:72:20:91:19:7B:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/42gRbGhJIoIQkFEiAW1yIJEZe-U.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/87f152-5f33-45c9-8511-fefcb4f3b4b4/1/POJN8o8OgD73rnXkQ2rmPoiR984.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/87f152-5f33-45c9-8511-fefcb4f3b4b4/1/42gRbGhJIoIQkFEiAW1yIJEZe-U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.201.13.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6e:b1:be:db:c8:95:2f:17:25:b1:f8:2e:e1:c1:b2:48:bf:70:
         7c:57:e5:16:43:c6:9d:9f:92:17:a0:d3:c0:4a:1e:0d:ca:a9:
         c8:6f:7b:73:fd:7f:2d:71:91:f0:f9:8a:1e:83:8d:95:aa:c8:
         4c:1c:20:24:aa:80:54:68:eb:25:7f:c2:05:1a:b0:4b:02:e2:
         df:1f:d2:e3:52:33:84:94:3f:2e:0e:f6:ae:c2:b6:1d:6c:c9:
         cb:ec:db:ab:d6:49:91:dd:6a:7d:fe:a5:80:69:01:6a:44:f1:
         9b:84:cb:a5:39:16:c6:f7:1a:7a:87:f7:da:84:07:7e:f5:e5:
         2b:02:97:8f:3c:46:42:71:fa:96:67:2b:a2:16:ee:d5:f6:ed:
         2b:b9:fa:ea:d0:5f:5b:7e:9a:4d:f1:3a:24:04:9c:ec:f8:fe:
         b4:ec:5e:c8:1c:29:10:d7:32:63:63:b0:9a:cd:5d:a0:82:ed:
         24:35:db:79:b4:20:7e:4c:4c:b2:9c:41:e9:96:a8:d9:e1:a8:
         39:33:3c:b3:ee:49:6a:72:e2:87:c2:9f:2d:39:c2:ff:65:3a:
         60:7f:e6:d8:43:60:5f:90:99:82:86:7b:24:33:8b:dc:e3:af:
         68:b9:14:9e:57:25:35:f9:c5:43:68:fb:e6:80:40:41:a4:ab:
         17:a6:67:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 13:10:45 2022 by LibreSSL & rpki-client.