Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/53Wu1KJcKgSkMgvOGBib2wjbAgI.roa (download)

Subject key identifier:   E7:75:AE:D4:A2:5C:2A:04:A4:32:0B:CE:18:18:9B:DB:08:DB:02:02 
Authority key identifier: 3B:09:D4:11:26:07:72:79:14:3C:18:0B:91:15:38:41:74:AB:A7:0A
asID:                     AS1239
Prefixes:
    1: 146.19.123.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/53Wu1KJcKgSkMgvOGBib2wjbAgI.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 17920493 (0x11171ed)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3b09d41126077279143c180b9115384174aba70a
        Validity
            Not Before: Mar  7 17:31:11 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=e775aed4a25c2a04a4320bce18189bdb08db0202
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:41:0d:40:e6:19:fd:ff:ef:99:30:cf:55:e2:
                    70:39:36:68:14:58:9e:59:25:3e:3f:d5:91:52:51:
                    91:8e:c7:5c:41:95:9f:ad:8d:1e:0d:8d:fe:d1:7a:
                    9e:ce:b9:88:f4:93:ee:34:82:42:68:50:22:df:64:
                    e9:68:20:86:b6:44:0e:90:60:b7:62:74:0f:35:1f:
                    6f:a3:f2:59:37:41:78:61:15:92:94:f0:ba:42:c1:
                    d9:31:10:90:70:69:2a:d9:1b:0a:de:dc:cc:31:4b:
                    3f:d0:e8:62:1b:d5:02:b8:3a:b6:20:cd:43:46:e2:
                    50:8f:80:c0:f1:dd:42:71:0b:6d:e8:c2:4d:29:0d:
                    1d:d7:57:49:3c:ae:4d:95:9f:55:c5:f9:3d:30:74:
                    25:7c:3f:d4:49:85:94:c7:11:3b:46:77:6f:74:9e:
                    cb:c9:37:53:71:18:12:ec:ec:1b:2f:14:83:38:df:
                    06:3b:c6:3b:aa:64:c5:54:da:8e:cd:59:62:9f:4f:
                    b3:f6:d7:6e:63:2e:16:18:4b:2c:5a:67:5c:27:99:
                    76:b7:29:d1:73:1e:25:75:4e:1b:c6:c4:89:df:1e:
                    c8:49:12:2b:33:a4:8b:34:57:15:a7:33:64:e3:47:
                    7e:b6:f0:6b:29:80:5e:a8:67:c9:f7:60:c6:9e:f6:
                    1f:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E7:75:AE:D4:A2:5C:2A:04:A4:32:0B:CE:18:18:9B:DB:08:DB:02:02
            X509v3 Authority Key Identifier: 
                keyid:3B:09:D4:11:26:07:72:79:14:3C:18:0B:91:15:38:41:74:AB:A7:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwnUESYHcnkUPBgLkRU4QXSrpwo.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/53Wu1KJcKgSkMgvOGBib2wjbAgI.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5c28ab-4402-419b-acd2-b10f0b66232c/1/OwnUESYHcnkUPBgLkRU4QXSrpwo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  146.19.123.0/24

    Signature Algorithm: sha256WithRSAEncryption
         11:34:76:0b:8a:cb:aa:6b:40:e4:29:6b:b6:97:24:ba:2a:6c:
         d5:0e:32:e5:7c:2f:9b:81:32:90:0e:19:66:ba:dc:0e:72:be:
         39:7b:bc:bc:11:c7:66:69:17:e7:0c:26:de:11:5f:4a:03:75:
         b0:c5:5a:6b:58:91:22:c6:2e:fd:79:43:63:72:7a:86:fa:80:
         0f:4e:14:31:47:ca:a5:b0:67:06:32:e9:31:1c:4f:eb:ba:0c:
         d7:37:5c:81:be:0f:d4:44:f3:bc:1a:42:d4:72:f2:47:26:3a:
         61:e5:bb:48:83:d0:a0:5d:53:28:18:ae:0a:71:af:e7:11:4a:
         6a:c5:64:37:a5:32:3a:62:da:75:fc:51:6b:5b:07:eb:56:84:
         1b:2b:6c:cb:d6:af:9a:f0:37:48:ca:de:61:af:f0:ec:81:a1:
         c4:38:53:88:ca:b9:05:74:ad:ae:21:3f:40:d2:6b:1e:9a:11:
         3f:7e:c5:44:bf:9a:d3:7b:32:35:e4:c8:8e:c5:28:80:4f:25:
         f6:e2:73:b6:a4:34:da:d0:bb:0c:bb:c2:f0:e0:ae:c2:bd:fb:
         21:bb:20:5c:19:e6:f2:f8:83:9e:8d:33:bb:db:ef:df:d3:3e:
         2a:f6:11:e9:09:35:c6:57:7d:f5:02:0c:d2:20:4e:cf:65:82:
         82:ad:66:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Mon Mar 7 20:53:18 2022 by LibreSSL & rpki-client.