Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/_i5EEt_MJkV0B-q_EHDNP4eJXdg.roa (download)

Subject key identifier:   FE:2E:44:12:DF:CC:26:45:74:07:EA:BF:10:70:CD:3F:87:89:5D:D8 
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
asID:                     AS1239
Prefixes:
    1: 86.38.246.0/23 maxlen: 24
    2: 86.38.242.0/23 maxlen: 24
    3: 89.116.135.0/24 maxlen: 24
    4: 89.117.109.0/24 maxlen: 24
    5: 89.116.156.0/24 maxlen: 24
    6: 89.116.56.0/24 maxlen: 24
    7: 86.38.189.0/24 maxlen: 24
    8: 86.38.200.0/24 maxlen: 24
    9: 86.38.4.0/23 maxlen: 24
   10: 89.117.48.0/20 maxlen: 24
   11: 86.38.220.0/23 maxlen: 24
   12: 89.116.218.0/24 maxlen: 24
   13: 89.116.242.0/23 maxlen: 24
   14: 89.116.246.0/23 maxlen: 24
   15: 86.38.180.0/23 maxlen: 24
   16: 86.38.182.0/23 maxlen: 24
   17: 89.117.11.0/24 maxlen: 24
   18: 89.116.175.0/24 maxlen: 24
   19: 89.116.177.0/24 maxlen: 24
   20: 84.46.200.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/_i5EEt_MJkV0B-q_EHDNP4eJXdg.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:83:5a:da:c7:5a:06:da:11:be:cd:c1:11:c7:f5:fc:f2:d1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
        Validity
            Not Before: Sep 20 12:23:50 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=fe2e4412dfcc26457407eabf1070cd3f87895dd8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:28:cc:33:8a:a4:77:4a:51:e4:11:31:98:27:
                    ac:e4:18:02:49:dc:89:73:77:62:50:38:d7:5d:83:
                    18:10:d0:c1:f9:2c:97:51:de:45:83:d1:07:50:bb:
                    a9:95:6b:ce:37:9d:d5:19:6b:51:d9:d0:b0:9a:82:
                    33:a8:53:e1:93:9e:1f:22:f2:5d:56:56:db:56:50:
                    5c:5f:3c:5b:ba:2c:34:3c:77:f5:8f:cc:2e:b8:bb:
                    84:f5:0a:93:df:8b:7f:80:1a:02:00:33:0a:cd:97:
                    04:2a:68:72:1c:1a:20:db:47:83:54:3e:a6:98:76:
                    45:49:f1:ca:8c:f9:d7:42:a5:4c:1b:c7:2a:fb:56:
                    c4:b9:9b:1d:5c:ac:72:02:22:2a:ca:e4:30:9f:ba:
                    b2:6e:91:81:f1:5a:1d:db:a2:27:fa:32:f8:68:03:
                    d5:28:54:8f:0e:26:00:b8:26:62:c2:69:94:6c:c9:
                    1c:ec:3a:08:5c:24:90:ce:e7:ef:6c:34:e8:10:3a:
                    ce:43:56:e8:7e:e6:9c:c9:02:21:e3:a6:49:a6:41:
                    5a:ab:c7:f4:fc:9b:64:e8:4d:fc:04:10:ea:41:1f:
                    41:ad:6e:98:64:e7:c9:69:dc:f0:33:85:6f:04:6d:
                    e5:6a:67:f0:18:8a:e3:ba:09:f2:5b:29:03:9f:fb:
                    b3:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                FE:2E:44:12:DF:CC:26:45:74:07:EA:BF:10:70:CD:3F:87:89:5D:D8
            X509v3 Authority Key Identifier: 
                keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/_i5EEt_MJkV0B-q_EHDNP4eJXdg.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  84.46.200.0/24
                  86.38.4.0/23
                  86.38.180.0/22
                  86.38.189.0/24
                  86.38.200.0/24
                  86.38.220.0/23
                  86.38.242.0/23
                  86.38.246.0/23
                  89.116.56.0/24
                  89.116.135.0/24
                  89.116.156.0/24
                  89.116.175.0/24
                  89.116.177.0/24
                  89.116.218.0/24
                  89.116.242.0/23
                  89.116.246.0/23
                  89.117.11.0/24
                  89.117.48.0/20
                  89.117.109.0/24

    Signature Algorithm: sha256WithRSAEncryption
         70:dc:33:b5:e0:dc:7a:6e:95:a9:1b:72:4f:2e:07:40:85:58:
         e4:04:9d:04:bf:b3:dd:3f:0a:a2:f0:b5:66:20:cc:75:fb:81:
         bf:eb:78:09:2a:1d:e6:ac:f5:c5:15:19:b8:f7:df:cd:9b:85:
         90:20:3f:e7:92:d1:dd:1c:38:36:c7:7d:7b:48:d3:76:66:0a:
         27:d7:9e:8f:31:f2:2c:8c:6c:7d:ed:69:04:55:e5:8d:53:4b:
         b4:14:91:84:0a:59:1a:d9:f4:e8:87:d8:4c:97:7e:0c:71:1f:
         b7:ae:71:41:eb:fe:97:b5:b6:a5:92:f5:29:fc:a4:68:48:e7:
         50:5f:b2:bb:45:1c:f5:c6:d9:ec:2e:9b:d9:0d:fc:8d:be:ba:
         07:87:5e:ed:7e:86:1e:78:7a:73:cc:9f:39:85:da:3d:c9:5f:
         70:1d:19:92:21:d8:73:16:39:fa:cc:7c:89:47:5c:7f:48:e4:
         62:84:bb:0f:a1:24:cb:d9:3b:2c:eb:e0:23:71:5c:86:80:0d:
         44:78:f7:03:ef:6f:33:84:39:53:fe:18:d4:50:7b:97:51:56:
         ec:00:fc:9a:c6:55:d9:ad:c6:53:14:84:16:c0:97:5d:4d:cd:
         de:0f:9d:75:81:3c:54:f9:d0:a3:e2:0d:d9:bf:db:da:19:1f:
         ea:cb:07:6b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

Generated at Tue Sep 20 14:47:10 2022 by LibreSSL & rpki-client.