Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/b8/c5383c-d0c4-4c19-90cb-35e14f73425c/1/WNCd53aXui49hmuSDZrgcYsXvTg.roa (download)

Subject key identifier:   58:D0:9D:E7:76:97:BA:2E:3D:86:6B:92:0D:9A:E0:71:8B:17:BD:38 
Authority key identifier: 8E:1B:91:D4:83:60:96:26:13:83:71:C6:55:0A:1F:CD:0C:05:7E:12
asID:                     AS1239
Prefixes:
    1: 146.19.151.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/b8/c5383c-d0c4-4c19-90cb-35e14f73425c/1/WNCd53aXui49hmuSDZrgcYsXvTg.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 16602740 (0xfd5674)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8e1b91d483609626138371c6550a1fcd0c057e12
        Validity
            Not Before: Mar  7 17:31:13 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=58d09de77697ba2e3d866b920d9ae0718b17bd38
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:95:7e:c4:2e:74:ae:1a:a0:01:96:07:89:93:
                    94:a2:0e:79:e0:39:21:db:e7:9e:07:f3:ad:43:b2:
                    22:8c:87:bd:03:27:36:d4:8e:f6:d4:e7:10:90:8a:
                    bf:f6:bb:b3:b6:04:66:6b:2b:fb:d7:48:3b:13:e2:
                    f4:55:18:ab:63:40:1f:31:24:36:ef:f4:22:9f:c4:
                    a4:cb:02:59:cc:c5:45:fd:62:cf:d5:dc:16:db:58:
                    06:e2:f0:d4:54:c3:23:f9:64:c9:8a:9e:82:3a:05:
                    48:c8:5c:5f:a7:08:56:dc:fd:d1:d9:e2:b6:6f:9b:
                    1a:54:c7:20:2a:e8:66:05:c8:38:7f:0e:79:03:fb:
                    05:ea:67:e4:cd:fc:e1:13:e7:ab:05:ac:51:84:69:
                    51:1b:70:00:23:70:60:bf:ca:73:ec:37:b4:5b:8a:
                    50:9d:44:2b:d7:94:b2:72:8e:1c:cd:3c:31:ad:d7:
                    3a:1d:21:a6:d0:23:d7:41:65:9d:75:14:7a:dd:16:
                    e7:02:1b:bf:23:39:95:05:aa:da:21:e4:0f:20:d5:
                    6a:73:3e:7b:83:6c:b4:00:06:d4:6b:b9:b3:4d:be:
                    35:b0:80:d4:3b:40:17:11:56:7a:40:59:ca:75:77:
                    af:ea:00:49:3e:6a:9d:0a:7a:20:e4:5f:3a:cc:d3:
                    37:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                58:D0:9D:E7:76:97:BA:2E:3D:86:6B:92:0D:9A:E0:71:8B:17:BD:38
            X509v3 Authority Key Identifier: 
                keyid:8E:1B:91:D4:83:60:96:26:13:83:71:C6:55:0A:1F:CD:0C:05:7E:12

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhuR1INgliYTg3HGVQofzQwFfhI.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c5383c-d0c4-4c19-90cb-35e14f73425c/1/WNCd53aXui49hmuSDZrgcYsXvTg.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c5383c-d0c4-4c19-90cb-35e14f73425c/1/jhuR1INgliYTg3HGVQofzQwFfhI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  146.19.151.0/24

    Signature Algorithm: sha256WithRSAEncryption
         15:fa:67:17:67:23:12:8e:bb:cf:aa:03:fc:81:52:19:4e:bc:
         da:c3:15:11:3f:b1:05:e4:9b:85:a8:be:37:28:d2:13:66:f5:
         ab:75:17:7c:87:41:66:4a:52:8d:d9:37:23:8a:1b:4b:80:28:
         46:e4:c4:58:9d:af:e3:78:60:47:3a:ab:63:d1:17:a9:21:8b:
         8e:f8:b9:41:73:46:5e:1d:7b:47:fa:0f:4c:a8:e1:05:ba:d2:
         2e:44:66:04:cc:d0:f5:c5:54:fe:ac:f2:33:84:6d:e4:df:74:
         d8:16:67:ff:8f:44:b6:1d:4d:2f:30:13:cf:f9:c7:c4:16:b1:
         f4:ee:3c:5f:9f:18:1b:38:4a:02:e7:ae:41:d7:89:cd:d9:32:
         c3:39:a0:a5:67:fd:99:b0:d3:01:55:74:56:4f:ca:d1:1b:07:
         45:72:3b:a3:06:4c:e0:bb:f1:a3:a1:98:09:85:1f:b1:71:75:
         26:51:97:4a:39:8c:13:ea:52:0e:ee:fd:60:0a:88:e0:39:c0:
         27:70:8e:d5:9a:0e:a9:a8:79:a3:44:4f:de:21:34:ce:c7:ec:
         6a:f4:95:fd:13:cb:0e:c5:19:7e:ee:0b:fb:52:21:12:70:a1:
         e9:e0:4d:c6:53:d3:6b:b0:49:cc:12:33:39:ae:54:9b:ab:c9:
         46:02:49:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Mon Mar 7 20:53:48 2022 by LibreSSL & rpki-client.