Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/db/916670-1d0a-4e6d-af4a-27c6820a23fa/1/v2Bgc5BkCFGQSoW6kt49nvh83ho.roa (download)

Subject key identifier:   BF:60:60:73:90:64:08:51:90:4A:85:BA:92:DE:3D:9E:F8:7C:DE:1A 
Authority key identifier: A7:F1:A0:AF:5A:7E:92:07:7C:E3:A2:98:8D:79:76:D1:F5:C7:4B:19
asID:                     AS14618
Prefixes:
    1: 194.29.58.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/db/916670-1d0a-4e6d-af4a-27c6820a23fa/1/v2Bgc5BkCFGQSoW6kt49nvh83ho.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 18131421 (0x114a9dd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a7f1a0af5a7e92077ce3a2988d7976d1f5c74b19
        Validity
            Not Before: Jan  1 04:58:31 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=bf60607390640851904a85ba92de3d9ef87cde1a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:c5:a3:44:21:6a:37:0f:4d:19:a3:6b:20:09:
                    3d:d5:b8:53:3c:38:81:75:f4:d0:54:0e:20:be:91:
                    e1:e1:df:b3:b2:0a:5d:c7:1c:c8:5b:19:7e:e7:f8:
                    82:47:a5:d4:85:fa:42:f9:f9:e6:37:7a:0f:c3:8c:
                    4c:80:0f:81:69:9e:94:a8:af:74:74:44:22:07:0f:
                    55:19:f9:6d:5d:cc:5c:0a:21:67:ec:03:10:d7:b2:
                    17:05:f9:75:eb:dd:eb:e4:5e:e8:69:a5:2c:16:5f:
                    a6:1c:fa:dd:70:73:4c:ad:47:36:27:82:3c:6a:0a:
                    24:30:be:9f:ac:5e:56:45:6f:8f:e3:8f:4a:df:f2:
                    37:2d:75:59:31:35:f9:d7:51:7a:f7:f3:d6:43:b7:
                    d4:d8:6c:02:26:34:e2:c1:91:c6:04:9f:6c:be:15:
                    83:26:a9:0a:bf:3d:93:3c:6b:00:34:b4:88:62:c6:
                    a4:9a:23:af:89:2f:81:a3:b1:e7:5b:db:b3:ff:85:
                    78:9a:30:d4:24:d6:d2:5b:94:89:99:e8:65:35:ac:
                    0c:c5:0e:55:cd:24:ec:a7:f5:93:bd:00:93:c0:fd:
                    8b:81:fd:f0:de:f2:c9:8e:23:54:29:98:59:b2:6a:
                    a0:ee:d0:4d:3d:b6:0f:f3:f9:d9:2f:2e:c9:aa:74:
                    1c:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                BF:60:60:73:90:64:08:51:90:4A:85:BA:92:DE:3D:9E:F8:7C:DE:1A
            X509v3 Authority Key Identifier: 
                keyid:A7:F1:A0:AF:5A:7E:92:07:7C:E3:A2:98:8D:79:76:D1:F5:C7:4B:19

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_Ggr1p-kgd846KYjXl20fXHSxk.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/916670-1d0a-4e6d-af4a-27c6820a23fa/1/v2Bgc5BkCFGQSoW6kt49nvh83ho.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/db/916670-1d0a-4e6d-af4a-27c6820a23fa/1/p_Ggr1p-kgd846KYjXl20fXHSxk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  194.29.58.0/24

    Signature Algorithm: sha256WithRSAEncryption
         eb:3c:58:27:c2:22:ae:6f:3e:d5:b8:89:c3:24:52:cc:65:b2:
         23:df:d6:27:ad:74:19:78:16:0e:40:49:8c:ee:89:df:6c:4a:
         32:4d:67:19:e9:12:43:2d:fc:e2:99:22:b5:5c:e2:18:0b:ae:
         f8:63:f6:a3:04:37:c5:1a:0d:c4:e4:b4:19:97:d5:ca:8a:14:
         44:7d:2e:c6:8b:f6:49:43:23:0b:35:fb:57:0c:10:55:a8:14:
         35:4c:5f:58:f6:b2:da:3c:0c:6c:79:bd:4c:6f:14:d2:f7:9a:
         bf:5b:9a:d6:2c:c5:cf:f6:14:6d:28:0f:59:22:20:0d:98:ac:
         ab:55:16:79:7a:8a:db:dc:eb:3d:be:c4:18:5b:3a:56:aa:aa:
         ca:6a:d4:5b:74:03:d1:90:f5:2e:d0:8b:c5:5d:25:1f:14:5e:
         85:09:07:ae:ce:0f:87:e9:83:4d:25:b7:5e:7f:80:53:14:45:
         3d:9c:a1:f8:cb:44:cf:c5:49:d6:97:40:eb:25:0f:9e:3d:f9:
         ec:00:75:d8:06:64:37:2e:eb:b3:2c:eb:91:9f:e4:82:74:54:
         60:26:90:6a:95:85:44:65:47:5b:f1:57:c7:2c:a6:df:00:e5:
         9a:2d:dc:c8:81:2a:13:18:84:1d:6d:a6:f6:4b:14:e6:4b:b8:
         64:0a:84:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 13:23:32 2022 by LibreSSL & rpki-client.