Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/k3THCbtPF_KM58XPbHvfCk_AvF4.roa (download)

Subject key identifier:   93:74:C7:09:BB:4F:17:F2:8C:E7:C5:CF:6C:7B:DF:0A:4F:C0:BC:5E 
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
asID:                     AS1239
Prefixes:
    1: 88.209.245.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/k3THCbtPF_KM58XPbHvfCk_AvF4.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:82:81:8b:89:d6:f4:7f:cd:2b:e5:13:90:cc:29:38:b6:d7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
        Validity
            Not Before: Aug  9 07:39:41 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=9374c709bb4f17f28ce7c5cf6c7bdf0a4fc0bc5e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:80:e2:b0:5a:18:17:4a:88:9d:6f:85:1d:ac:bf:
                    b5:e5:22:3d:0d:53:bb:53:dc:3c:ee:a2:19:31:d4:
                    36:a8:91:42:f0:f8:34:b6:29:f5:8f:7e:cd:a4:09:
                    c2:94:85:ca:5b:e6:b9:c7:ba:22:a0:38:58:ef:7e:
                    a1:ed:31:02:fe:ad:2d:01:2d:45:bc:27:bf:ca:6b:
                    d7:61:ec:0c:44:d8:46:a2:ca:be:14:01:69:ca:d3:
                    04:0f:66:00:8c:4f:61:d7:c6:9d:63:ed:dd:e7:6e:
                    68:f8:36:f8:da:ec:47:8e:57:c3:34:47:2c:00:18:
                    d1:76:d5:b9:71:c2:18:77:f2:7c:f0:62:cc:41:48:
                    78:7e:a3:c3:2a:74:6e:fa:a8:b7:83:d3:9c:4f:b5:
                    77:22:15:04:9d:1d:15:13:43:70:ec:58:9c:46:1b:
                    18:df:91:4a:a4:47:2e:f5:47:46:b7:8d:89:30:00:
                    8a:88:72:37:0c:3e:24:5a:03:ba:d6:83:81:91:7f:
                    e7:81:2c:46:b9:de:ff:6c:3a:dd:b6:1d:18:ca:0a:
                    fe:88:f2:95:cc:7a:14:29:b1:15:71:c9:78:f0:f0:
                    f7:fe:08:fe:63:33:e2:f5:3b:de:99:45:30:20:0f:
                    37:9e:9b:bc:50:68:84:b4:51:4a:fa:a0:10:b0:f6:
                    e1:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                93:74:C7:09:BB:4F:17:F2:8C:E7:C5:CF:6C:7B:DF:0A:4F:C0:BC:5E
            X509v3 Authority Key Identifier: 
                keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/k3THCbtPF_KM58XPbHvfCk_AvF4.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  88.209.245.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a2:f7:6d:d4:b9:c1:10:7f:96:bf:76:aa:e2:ca:55:30:9e:ca:
         b9:ce:1d:6b:47:be:68:d1:5f:66:25:97:cd:09:aa:56:3c:8a:
         48:4a:1a:36:2a:0e:19:c8:0a:41:2b:b1:c7:cc:09:fb:bc:b4:
         b1:5e:dc:8a:46:ad:2d:74:23:d6:c2:e2:b2:f4:62:b0:9f:cf:
         9e:13:56:60:6d:bc:aa:f6:74:b1:64:48:f3:9c:15:46:82:dd:
         12:4a:d5:6a:3d:d2:a7:4b:54:5d:00:9f:bb:7b:a6:4f:14:9e:
         3b:45:b5:1e:90:3a:63:b6:c5:41:41:0c:cd:d8:f6:41:ae:22:
         f9:19:23:88:2a:09:d4:4d:b2:a7:2a:00:27:95:91:e2:7f:9d:
         31:0a:24:63:c7:e0:0a:bc:06:b1:85:25:ab:81:94:40:5c:35:
         97:3a:f5:e1:e8:ce:7c:ff:15:51:3d:51:4a:06:fc:81:2b:31:
         d8:44:ba:7d:11:aa:db:09:ee:59:97:fd:ae:97:c6:5b:87:5b:
         d6:91:f7:d4:46:f1:40:c5:7d:ad:00:8b:24:e8:53:04:18:73:
         02:20:f8:c6:17:38:9f:6d:e5:0c:1f:5f:e5:33:ba:98:81:bd:
         60:92:8d:ed:24:de:07:98:fe:5b:53:27:bd:c4:ac:9d:83:02:
         6c:40:7e:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Tue Aug 9 11:33:19 2022 by LibreSSL & rpki-client.