Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/cf/8a44d5-3d74-4b8a-93c0-0436250277ff/1/2Hfx6xLhCWzlhrmC6_ObBTYjWI4.roa (download)

Subject key identifier:   D8:77:F1:EB:12:E1:09:6C:E5:86:B9:82:EB:F3:9B:05:36:23:58:8E 
Authority key identifier: AB:CE:21:45:64:C2:F4:8E:BE:97:A4:37:6E:D1:27:E3:1C:50:B9:74
asID:                     AS1239
Prefixes:
    1: 185.234.15.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/cf/8a44d5-3d74-4b8a-93c0-0436250277ff/1/2Hfx6xLhCWzlhrmC6_ObBTYjWI4.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 17732236 (0x10e928c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=abce214564c2f48ebe97a4376ed127e31c50b974
        Validity
            Not Before: Jan  1 12:56:11 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=d877f1eb12e1096ce586b982ebf39b053623588e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:63:32:65:cc:5f:d5:7e:38:bc:5b:ca:d6:d9:
                    af:ce:a6:89:7e:36:3d:28:8b:ac:5e:69:36:d0:53:
                    c2:7e:24:38:b4:90:7f:b3:35:a9:4b:01:a1:09:ed:
                    b0:21:b3:f9:c8:bf:ec:44:fe:55:55:6b:ba:28:28:
                    81:7f:5b:2f:b7:d0:21:ae:21:34:70:31:0e:29:00:
                    96:69:e0:d7:fb:b4:58:ed:48:fc:47:8e:4d:33:ce:
                    dc:b1:1e:eb:ba:c2:9c:fa:7b:a7:7f:14:9d:a0:aa:
                    e6:b3:ed:dc:93:a7:82:f1:0e:f0:29:98:83:40:da:
                    9d:f8:a6:c5:b3:8a:bd:de:c3:11:11:49:60:c9:df:
                    91:17:20:21:af:8f:a1:b9:ab:9a:65:34:00:f1:39:
                    9f:17:23:31:92:1a:27:ee:93:59:77:ae:e3:9a:04:
                    7c:ac:f6:90:5b:ff:e2:29:e2:b9:80:8c:19:05:c1:
                    5b:a5:d0:14:47:4e:a2:a7:ac:ec:7b:1b:70:4e:9b:
                    5e:a5:68:5e:5b:a1:27:ef:f1:e4:a4:68:95:01:94:
                    f3:4a:cd:93:9c:79:64:77:c0:4a:48:69:47:a3:4e:
                    49:7c:f9:db:0f:a5:0d:a7:22:78:21:b8:5c:ce:98:
                    39:1b:5e:72:99:d0:02:79:8d:c4:ba:15:3f:80:5f:
                    f6:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                D8:77:F1:EB:12:E1:09:6C:E5:86:B9:82:EB:F3:9B:05:36:23:58:8E
            X509v3 Authority Key Identifier: 
                keyid:AB:CE:21:45:64:C2:F4:8E:BE:97:A4:37:6E:D1:27:E3:1C:50:B9:74

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q84hRWTC9I6-l6Q3btEn4xxQuXQ.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/8a44d5-3d74-4b8a-93c0-0436250277ff/1/2Hfx6xLhCWzlhrmC6_ObBTYjWI4.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/8a44d5-3d74-4b8a-93c0-0436250277ff/1/q84hRWTC9I6-l6Q3btEn4xxQuXQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.234.15.0/24

    Signature Algorithm: sha256WithRSAEncryption
         8a:c1:e9:e7:41:25:18:b0:0e:4f:e5:59:bd:42:7f:a6:a3:97:
         1b:11:7a:e1:57:97:7d:80:c0:f8:04:88:23:15:d0:43:33:b9:
         dd:21:d1:4a:c2:56:d3:cc:97:88:d6:09:54:de:fd:53:29:9f:
         c4:16:07:c2:24:f3:5d:f7:04:15:fe:d6:fd:44:3b:f2:3a:44:
         16:87:28:8c:5a:9e:61:41:ed:c1:65:f0:70:b3:b0:ab:8b:b1:
         c5:8d:34:4e:39:6e:7f:35:f6:4c:a8:b5:dd:20:e1:05:71:c5:
         0f:f0:28:f7:c9:cb:3f:11:f8:d1:87:1c:a4:36:82:e4:c4:39:
         23:91:29:fd:9d:66:2b:34:86:5d:50:1f:98:2b:f2:e4:02:53:
         30:bf:a0:63:17:3d:5a:e5:7b:6c:8f:77:ed:fa:99:74:b8:8e:
         0e:b6:d9:a3:36:a1:32:f7:da:3e:d9:20:ed:7e:76:98:9b:f5:
         d6:24:47:69:b1:0d:ed:6b:55:da:a2:49:0b:30:b6:d8:55:83:
         b9:53:34:75:7b:9a:62:d0:ce:32:c9:60:15:b8:25:52:15:cc:
         18:a0:a5:86:93:d4:91:7d:13:e6:06:09:e3:f7:40:fb:62:61:
         24:2d:72:3e:8c:a3:50:4a:6f:20:0e:b0:fb:c4:36:11:15:e4:
         40:bc:da:3b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAQ6SjDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YmNlMjE0NTY0YzJmNDhlYmU5N2E0Mzc2ZWQxMjdlMzFjNTBiOTc0MB4XDTIyMDEw
MTEyNTYxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDg3N2YxZWIxMmUx
MDk2Y2U1ODZiOTgyZWJmMzliMDUzNjIzNTg4ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALNjMmXMX9V+OLxbytbZr86miX42PSiLrF5pNtBTwn4kOLSQ
f7M1qUsBoQntsCGz+ci/7ET+VVVruigogX9bL7fQIa4hNHAxDikAlmng1/u0WO1I
/EeOTTPO3LEe67rCnPp7p38UnaCq5rPt3JOngvEO8CmYg0DanfimxbOKvd7DERFJ
YMnfkRcgIa+PobmrmmU0APE5nxcjMZIaJ+6TWXeu45oEfKz2kFv/4iniuYCMGQXB
W6XQFEdOoqes7HsbcE6bXqVoXluhJ+/x5KRolQGU80rNk5x5ZHfASkhpR6NOSXz5
2w+lDacieCG4XM6YORtecpnQAnmNxLoVP4Bf9hkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTYd/HrEuEJbOWGuYLr85sFNiNYjjAfBgNVHSMEGDAWgBSrziFFZML0jr6X
pDdu0SfjHFC5dDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3E4NGhSV1RDOUk2LWw2UTNidEVuNHh4UXVYUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2YvOGE0NGQ1LTNkNzQtNGI4YS05M2MwLTA0MzYyNTAyNzdmZi8x
LzJIZng2eExoQ1d6bGhybUM2X09iQlRZaldJNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Yv
OGE0NGQ1LTNkNzQtNGI4YS05M2MwLTA0MzYyNTAyNzdmZi8xL3E4NGhSV1RDOUk2
LWw2UTNidEVuNHh4UXVYUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnqDzANBgkqhkiG9w0BAQsFAAOC
AQEAisHp50ElGLAOT+VZvUJ/pqOXGxF64VeXfYDA+ASIIxXQQzO53SHRSsJW08yX
iNYJVN79UymfxBYHwiTzXfcEFf7W/UQ78jpEFocojFqeYUHtwWXwcLOwq4uxxY00
TjlufzX2TKi13SDhBXHFD/Ao98nLPxH40YccpDaC5MQ5I5Ep/Z1mKzSGXVAfmCvy
5AJTML+gYxc9WuV7bI937fqZdLiODrbZozahMvfaPtkg7X52mJv11iRHabEN7WtV
2qJJCzC22FWDuVM0dXuaYtDOMslgFbglUhXMGKClhpPUkX0T5gYJ4/dA+2JhJC1y
PoyjUEpvIA6w+8Q2ERXkQLzaOw==
-----END CERTIFICATE-----

Generated at Sun Jan 30 13:20:26 2022 by LibreSSL & rpki-client.