Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/V0oXYanUl4olV5iX2BpKCgaNhyw.roa (download)

Subject key identifier:   57:4A:17:61:A9:D4:97:8A:25:57:98:97:D8:1A:4A:0A:06:8D:87:2C 
Authority key identifier: 51:79:8C:C1:43:4B:CE:84:78:B6:AE:49:AA:0B:AC:24:C5:F1:17:FC
asID:                     AS1239
Prefixes:
    1: 2a12:ea00::/29 maxlen: 29

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/V0oXYanUl4olV5iX2BpKCgaNhyw.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 14368520 (0xdb3f08)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=51798cc1434bce8478b6ae49aa0bac24c5f117fc
        Validity
            Not Before: Feb 13 18:05:42 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=574a1761a9d4978a25579897d81a4a0a068d872c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:d3:02:fb:cd:f0:42:aa:fe:c7:d1:45:29:e6:
                    55:56:9d:33:01:d4:1b:9a:81:11:13:8c:4e:b5:2a:
                    2d:48:09:e2:70:89:54:d5:9a:55:b2:73:60:5e:90:
                    df:e6:40:33:d9:b7:68:32:12:5c:5e:cf:90:92:12:
                    05:b6:fa:93:6d:52:94:e8:71:83:1f:bb:6c:a9:e3:
                    0a:69:87:df:3e:ca:e9:8b:fd:be:ed:5b:42:cd:ff:
                    dd:f3:9f:dc:9b:e7:1c:e8:c0:a3:94:be:d4:4c:e9:
                    b0:cc:73:9b:7b:cf:70:53:e4:9d:a8:97:61:35:20:
                    ea:37:be:88:70:45:fd:05:d9:f6:ca:60:58:a6:32:
                    cc:bb:2c:14:c2:e3:c0:1c:ca:53:fd:79:5f:f9:4a:
                    df:f4:71:dd:61:ae:55:69:4e:23:14:47:df:c4:3e:
                    cd:05:75:a5:d8:e0:6e:52:ea:fc:98:55:98:6f:0b:
                    70:65:c9:eb:8b:69:a1:25:18:1e:d8:18:52:ec:48:
                    69:9e:70:6a:1e:e1:3f:6a:4a:c1:17:b7:f1:f0:57:
                    1a:00:ce:8d:ef:61:ee:a4:23:33:b3:85:62:98:99:
                    53:18:5b:0c:14:f7:0e:2c:13:b4:9f:18:40:74:d3:
                    48:33:8f:41:4d:2e:4f:1d:95:98:c7:e9:e4:cf:9a:
                    62:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                57:4A:17:61:A9:D4:97:8A:25:57:98:97:D8:1A:4A:0A:06:8D:87:2C
            X509v3 Authority Key Identifier: 
                keyid:51:79:8C:C1:43:4B:CE:84:78:B6:AE:49:AA:0B:AC:24:C5:F1:17:FC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UXmMwUNLzoR4tq5JqgusJMXxF_w.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/V0oXYanUl4olV5iX2BpKCgaNhyw.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/eada0f-bcbf-4c5e-aaa2-37661770051f/1/UXmMwUNLzoR4tq5JqgusJMXxF_w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a12:ea00::/29

    Signature Algorithm: sha256WithRSAEncryption
         50:32:2b:03:83:5b:08:b8:28:df:5e:e5:47:a6:86:46:b2:e5:
         9f:74:80:ed:1b:05:3a:63:b3:69:39:c1:51:3d:56:b2:d1:75:
         2d:ac:fe:aa:70:58:94:ef:fa:ed:b4:2f:f8:f0:bf:93:8c:72:
         5f:60:4e:40:15:b6:9d:44:14:49:86:c4:b7:2b:f8:22:a4:b2:
         46:82:fd:c5:69:de:4c:50:9b:af:d8:92:56:5f:ed:1c:65:f5:
         e1:2c:78:0e:f5:ca:d3:6e:87:e4:16:ee:5a:93:24:f6:4c:7b:
         50:df:4a:36:3f:0c:c3:c3:ea:cb:bd:3c:e1:94:a0:27:f4:d4:
         9f:0e:18:cf:70:a2:fc:f6:46:52:28:e8:f6:fb:c3:36:ed:7b:
         99:2b:2f:fa:81:80:e9:96:07:de:b9:77:5c:49:15:4c:67:00:
         1c:22:94:95:58:87:15:77:c6:30:15:ec:06:54:0b:37:86:32:
         c0:db:66:3d:c5:6d:47:ba:8f:3f:16:c7:e8:ac:6c:63:34:1e:
         37:7e:9f:75:f3:82:2e:f5:a1:6e:f2:56:87:57:f8:7e:f1:3d:
         36:9f:d9:1a:91:cc:55:c5:01:04:b3:58:e8:98:6e:cd:c0:51:
         df:b6:b5:1f:1a:21:77:97:ab:81:ea:d3:8e:88:cc:79:6a:b5:
         37:32:f1:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Feb 13 20:36:45 2022 by LibreSSL & rpki-client.