Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/LvCj20SMjcI96VZVU9j-4925vZU.roa (download)

Subject key identifier:   2E:F0:A3:DB:44:8C:8D:C2:3D:E9:56:55:53:D8:FE:E3:DD:B9:BD:95 
Authority key identifier: 81:2A:6C:DC:5C:B9:CE:9C:FD:95:0B:34:40:D3:08:3B:78:8B:95:E6
asID:                     AS1239
Prefixes:
    1: 91.242.245.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/LvCj20SMjcI96VZVU9j-4925vZU.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 11192777 (0xaac9c9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=812a6cdc5cb9ce9cfd950b3440d3083b788b95e6
        Validity
            Not Before: Jan  1 07:03:54 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=2ef0a3db448c8dc23de9565553d8fee3ddb9bd95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:43:69:29:4e:c9:25:45:4d:fd:25:1d:4e:44:
                    df:8a:a1:e4:f5:9b:00:2f:e6:48:b3:2e:5b:d4:25:
                    8c:41:52:1e:70:06:e8:22:fc:39:4e:af:50:58:88:
                    4b:32:19:44:0b:67:63:00:e7:91:eb:de:b5:1e:8f:
                    b8:0d:0e:be:1a:73:31:44:15:87:b3:4d:1c:13:a7:
                    04:94:8b:ea:ac:33:dd:d7:53:7b:8e:f6:8b:6b:d6:
                    36:52:97:21:be:94:f5:43:72:02:f9:56:90:fb:4a:
                    da:f5:35:0c:da:88:68:a5:37:30:f9:be:fb:38:39:
                    b5:11:ab:66:be:aa:a3:4a:09:72:3c:80:31:22:af:
                    36:d6:d2:cb:b8:b8:7b:be:13:28:bb:09:ea:4e:59:
                    5e:f0:d3:5c:8c:d2:c4:3b:7c:02:55:e9:69:a3:1a:
                    a4:df:eb:c8:04:ba:04:2c:a3:4b:74:4c:07:00:6d:
                    7f:e6:c7:61:7b:69:39:95:1f:19:0d:90:60:15:48:
                    b2:f1:da:cf:45:08:1e:35:15:09:e4:b1:d9:a4:dc:
                    e4:a2:86:44:52:93:b0:b5:e4:55:77:8a:b7:48:c8:
                    53:20:26:a0:a2:ae:b9:8a:7a:c2:f9:3d:d1:bc:78:
                    0a:0b:88:5d:6b:57:76:4f:06:7e:79:0b:69:9d:ab:
                    b3:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                2E:F0:A3:DB:44:8C:8D:C2:3D:E9:56:55:53:D8:FE:E3:DD:B9:BD:95
            X509v3 Authority Key Identifier: 
                keyid:81:2A:6C:DC:5C:B9:CE:9C:FD:95:0B:34:40:D3:08:3B:78:8B:95:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSps3Fy5zpz9lQs0QNMIO3iLleY.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/LvCj20SMjcI96VZVU9j-4925vZU.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/gSps3Fy5zpz9lQs0QNMIO3iLleY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  91.242.245.0/24

    Signature Algorithm: sha256WithRSAEncryption
         8a:4c:75:e9:78:c3:7a:eb:0b:cc:f0:7c:41:92:5a:1b:7d:58:
         ad:90:ad:52:51:79:78:bf:71:a5:0c:63:5c:4a:e8:db:ac:67:
         a9:ba:d8:db:2f:31:a5:c4:3a:35:f4:52:94:a3:cb:fc:14:d4:
         9d:83:c4:98:a9:4c:88:42:7a:bc:2c:b9:c9:3d:84:a9:fd:96:
         c5:5d:59:c4:eb:6f:ce:a4:91:d9:d8:33:32:9d:04:cb:94:45:
         ec:82:7e:ec:bd:d9:ba:0f:70:a1:6c:a5:0d:a2:0f:2c:63:81:
         a9:a2:b1:16:b0:44:38:7b:3c:99:73:6e:1c:a1:77:35:18:39:
         89:21:16:f1:85:40:ca:f5:d9:a9:77:02:8c:9f:c9:b5:18:64:
         de:66:cf:91:d3:72:c3:f9:77:a3:3c:d9:db:5c:bb:22:41:a0:
         4a:99:98:64:e2:46:8a:13:0e:f5:c2:65:84:d7:42:97:9d:e1:
         8c:29:8c:e4:72:97:9a:f9:fa:d0:c1:79:6c:67:b7:a1:8a:f6:
         c5:de:39:32:af:9b:81:fd:f6:3e:ec:ab:7b:e6:da:7d:bb:89:
         9f:aa:04:a6:ea:33:fd:a7:e4:ce:e4:5e:b8:7f:bd:bd:17:54:
         3d:c0:35:0c:1d:c7:d4:db:25:64:1a:43:2e:78:eb:b9:2c:c8:
         b2:62:71:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 13:22:14 2022 by LibreSSL & rpki-client.