Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/e7/9c9f28-b1fb-4793-ad56-008af3a418a3/1/vTEFkaYMJkHZuqyeFfCAqPLNdDw.roa (download)

Subject key identifier:   BD:31:05:91:A6:0C:26:41:D9:BA:AC:9E:15:F0:80:A8:F2:CD:74:3C 
Authority key identifier: A4:F9:5A:68:56:31:DA:B8:B6:4A:EC:06:0C:4D:1B:C6:66:CC:87:0E
asID:                     AS1239
Prefixes:
    1: 176.116.11.0/24 maxlen: 24

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/e7/9c9f28-b1fb-4793-ad56-008af3a418a3/1/vTEFkaYMJkHZuqyeFfCAqPLNdDw.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9638068 (0x9310b4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a4f95a685631dab8b64aec060c4d1bc666cc870e
        Validity
            Not Before: Jan  1 00:58:37 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=bd310591a60c2641d9baac9e15f080a8f2cd743c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:63:05:66:98:c4:85:10:c0:47:fb:be:50:36:
                    06:dd:7e:d6:83:80:14:64:85:0e:0f:5b:bd:dd:5b:
                    8e:bb:82:c4:91:cc:94:f4:3e:b0:49:03:15:eb:0d:
                    20:aa:89:63:bc:99:3a:fd:53:a8:48:af:84:46:7e:
                    ca:9a:8c:5a:47:ce:38:24:05:d1:6c:a0:a4:03:c3:
                    5d:0d:31:20:38:4d:98:75:bb:a4:e7:ae:ef:bc:ec:
                    78:a1:80:d1:13:db:5f:18:bb:5a:3e:01:ea:42:60:
                    58:a1:89:1b:f0:18:95:7c:25:4c:16:26:b2:8a:71:
                    ec:a4:b9:1e:b1:4b:94:70:0e:5b:7a:74:53:54:4a:
                    21:50:74:3b:1e:81:13:2c:1a:f1:a8:18:dc:07:79:
                    21:33:db:a0:4b:85:1c:de:87:70:52:e9:5d:68:ce:
                    fc:52:66:9b:5d:a9:0b:51:63:05:75:31:4e:51:96:
                    1d:c0:22:73:fd:76:ed:0b:c7:b1:4b:23:ec:7b:60:
                    ff:d2:0c:3d:e3:00:92:49:2e:ad:a3:55:b5:3d:c4:
                    b3:5b:ac:44:ee:57:9a:74:92:54:e0:1d:b4:b4:c6:
                    bf:7c:53:8a:29:da:8c:8a:03:30:3e:93:2e:29:29:
                    6a:eb:a4:22:ec:32:0c:ba:82:20:91:7f:af:62:a8:
                    61:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                BD:31:05:91:A6:0C:26:41:D9:BA:AC:9E:15:F0:80:A8:F2:CD:74:3C
            X509v3 Authority Key Identifier: 
                keyid:A4:F9:5A:68:56:31:DA:B8:B6:4A:EC:06:0C:4D:1B:C6:66:CC:87:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPlaaFYx2ri2SuwGDE0bxmbMhw4.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/9c9f28-b1fb-4793-ad56-008af3a418a3/1/vTEFkaYMJkHZuqyeFfCAqPLNdDw.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/9c9f28-b1fb-4793-ad56-008af3a418a3/1/pPlaaFYx2ri2SuwGDE0bxmbMhw4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  176.116.11.0/24

    Signature Algorithm: sha256WithRSAEncryption
         7b:e9:63:27:50:3f:16:83:02:a7:05:fb:09:b6:f1:66:b5:47:
         42:54:56:07:c4:ab:42:01:58:86:e1:9f:df:14:44:12:50:60:
         55:65:93:5a:88:75:66:a3:fc:9a:e2:c7:88:b6:2c:f2:f4:85:
         a4:43:52:8c:ca:e5:02:07:f1:fa:ae:9b:7b:55:0a:08:fb:9a:
         ac:6a:a3:f3:d9:8d:fb:fb:7c:48:85:b0:ef:da:11:f3:8e:c9:
         1f:35:e2:14:92:13:85:1d:02:f8:d0:7d:64:34:91:1e:0c:4b:
         b2:84:93:5a:b6:e9:a7:ed:28:67:37:1d:aa:06:9b:30:c5:42:
         88:d9:20:b1:6f:9b:d2:01:19:5a:5f:23:8c:fd:d4:ff:14:0f:
         f5:f7:4b:6a:f3:a7:db:9c:cd:0e:f1:56:76:60:2c:db:3c:dd:
         58:45:e7:e4:e4:e9:ec:fb:dd:f5:6d:7c:cf:a9:10:f1:f5:6b:
         99:1c:ba:27:f5:a9:98:f5:f1:17:d7:58:a4:51:2c:03:9f:6c:
         d8:e5:f2:3d:6e:0f:3e:20:13:7d:1e:65:14:2c:00:07:ff:d9:
         4f:9b:4f:da:f7:d6:51:b8:b4:33:f2:47:7e:25:df:3b:97:d6:
         f3:e9:99:ff:d0:a6:1c:02:48:45:21:f3:19:dd:92:f9:80:40:
         16:c5:4c:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 13:26:38 2022 by LibreSSL & rpki-client.