Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/1qyzDpjxxW0uRAWxG9_9Xaq8CmY.roa (download)

Subject key identifier:   D6:AC:B3:0E:98:F1:C5:6D:2E:44:05:B1:1B:DF:FD:5D:AA:BC:0A:66 
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
asID:                     AS398859
Prefixes:
    1: 85.117.242.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/1qyzDpjxxW0uRAWxG9_9Xaq8CmY.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 147627523 (0x8cc9e03)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
        Validity
            Not Before: Jan  1 07:04:37 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=d6acb30e98f1c56d2e4405b11bdffd5daabc0a66
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:5b:f6:f1:0e:0d:a0:13:b0:32:a1:81:ca:b7:
                    bf:72:0c:77:6f:fe:1e:40:64:bf:c5:4b:63:6f:a4:
                    ba:b0:d0:82:73:ed:2e:03:ba:af:f3:2a:57:b5:ab:
                    fd:86:e3:c8:5f:39:82:da:f8:ce:fc:dc:59:c2:9f:
                    ad:73:4b:85:10:0f:5a:07:01:17:24:47:7c:f4:19:
                    65:14:f2:a3:9a:a1:db:5c:b1:c8:d6:bc:02:2c:1c:
                    db:e7:f5:aa:fe:f2:e5:4d:bd:b3:0c:de:a9:f7:6b:
                    6f:9e:fe:2b:95:3f:85:dd:61:4d:f1:cd:39:2a:8b:
                    28:0d:b4:01:ad:da:b5:d3:2a:a6:3a:6e:c5:e9:2a:
                    e9:59:8e:5a:0a:1e:67:df:d8:fc:2e:83:72:18:64:
                    36:3c:dc:2f:a3:e4:8a:b1:4d:32:5f:50:e7:6f:1a:
                    70:a2:ed:a3:f0:c3:60:2f:b6:52:68:9a:80:4f:40:
                    6f:64:f4:9e:0f:36:fb:eb:da:63:fb:c1:14:bb:ca:
                    c0:51:00:bd:9d:e2:6c:83:0e:95:a9:f0:19:b3:61:
                    1d:97:e0:90:d8:fd:c9:af:ec:7d:c8:20:ec:fe:8d:
                    a6:a8:fd:ae:27:97:d1:df:03:39:6d:49:53:e9:12:
                    48:6e:f9:7d:a1:cd:a9:eb:e9:d6:ce:7e:e8:95:bd:
                    11:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                D6:AC:B3:0E:98:F1:C5:6D:2E:44:05:B1:1B:DF:FD:5D:AA:BC:0A:66
            X509v3 Authority Key Identifier: 
                keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/1qyzDpjxxW0uRAWxG9_9Xaq8CmY.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  85.117.242.0/24

    Signature Algorithm: sha256WithRSAEncryption
         10:30:5a:ee:68:2a:9d:27:ed:64:b1:db:9a:24:ec:13:2a:81:
         8e:38:07:8d:28:0d:1d:03:c0:a4:5d:54:d1:82:d9:e2:30:5c:
         e1:1d:8a:ae:19:a3:97:8d:a3:e6:56:d5:56:75:bc:20:35:25:
         3b:cc:84:73:e2:48:dc:ed:d4:cb:d0:62:fb:77:d5:a3:96:ca:
         ab:f1:8e:50:7f:a1:6f:a2:a7:71:af:91:69:0f:55:a3:c3:06:
         e6:e3:e8:b6:21:c7:e8:2f:12:30:ac:5c:86:ce:17:a3:cb:60:
         10:c7:e4:98:13:38:fe:3c:94:5a:c9:60:85:9e:1d:d6:22:d4:
         52:2b:c2:f6:97:d2:f1:e9:d5:a8:40:92:7a:a9:a4:e4:5d:cb:
         e0:d9:03:1c:6a:0e:cf:c2:35:31:b5:e5:5c:da:ce:68:68:3c:
         88:06:0a:53:46:93:f5:2b:9a:b0:c2:61:68:28:81:a4:9d:47:
         4b:be:f7:0e:40:71:2b:83:ae:5e:e9:e0:88:b7:1a:ed:b1:98:
         0d:be:8e:e7:46:29:e3:fa:6b:a9:2e:2a:bb:91:8e:25:d7:28:
         25:f8:6a:4e:02:d4:1c:27:7c:d5:08:9b:7a:c6:51:19:79:9b:
         d0:d4:d6:18:b9:54:6b:7f:73:66:47:89:f4:bc:24:b2:97:7d:
         e7:44:5f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 13:26:13 2022 by LibreSSL & rpki-client.