Route Origin Authorization
Location:                 rsync.krill.cloud/repo/nlnetlabs/1/326130343a623930323a3a2f33322d3332203d3e203134363138.roa (download)

Subject key identifier:   58:B5:49:F1:91:D9:BB:38:0B:3B:C5:A2:17:CD:CF:58:82:8C:59:B9 
Authority key identifier: F5:60:BE:A5:F5:C5:CB:73:9F:20:A7:4B:83:78:B3:88:A2:F9:5B:C7
asID:                     AS14618
Prefixes:
    1: 2a04:b902::/32 maxlen: 32

--
$ test-roa -p rsync.krill.cloud/repo/nlnetlabs/1/326130343a623930323a3a2f33322d3332203d3e203134363138.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            68:ad:72:b1:c4:34:dd:c5:c3:df:4e:22:76:05:ba:b1:5f:bd:4d:69
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f560bea5f5c5cb739f20a74b8378b388a2f95bc7
        Validity
            Not Before: Dec  3 09:45:17 2021 GMT
            Not After : Dec  2 09:50:17 2022 GMT
        Subject: CN=58B549F191D9BB380B3BC5A217CDCF58828C59B9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:6a:f3:29:87:db:34:13:a9:97:94:ae:3a:63:
                    69:fc:f1:5c:68:41:23:80:1f:3c:30:12:49:e1:2b:
                    67:3a:d3:14:bc:c5:bf:1f:0d:6b:30:2a:c3:7f:10:
                    6c:15:f1:9b:91:bd:ce:3f:f9:68:20:3b:0c:98:6e:
                    11:3a:66:05:67:98:e5:14:6a:c7:0e:3e:56:eb:cd:
                    5f:17:e4:e5:cc:7a:bd:49:26:a2:46:73:a5:fe:38:
                    fe:ec:bd:37:e7:88:8e:e7:af:a0:10:b0:a8:d5:e0:
                    6d:1d:ed:3a:d2:19:56:30:16:a1:e8:38:f4:74:12:
                    3b:33:03:09:39:8c:ca:30:3e:f3:fa:2d:fa:15:51:
                    b7:0c:92:04:c4:4e:52:77:e8:ad:a0:a0:df:89:bb:
                    a7:27:e8:b1:c5:82:ac:c5:0b:4f:8a:e1:cd:2a:8e:
                    a4:0f:d8:65:1d:27:86:46:61:59:8c:5d:ef:7f:0a:
                    36:67:b4:58:af:e2:70:b8:14:73:46:90:52:3f:12:
                    17:90:0c:03:65:77:8d:cd:7f:06:5c:ec:1f:28:fe:
                    cb:dc:6a:e7:7d:52:c6:6d:7f:22:e9:0b:4d:df:13:
                    3c:14:38:fb:ad:31:70:79:b5:4c:a9:57:63:d2:25:
                    71:90:9e:32:8b:f0:d1:8b:80:39:4a:9a:8b:79:c2:
                    85:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                58:B5:49:F1:91:D9:BB:38:0B:3B:C5:A2:17:CD:CF:58:82:8C:59:B9
            X509v3 Authority Key Identifier: 
                keyid:F5:60:BE:A5:F5:C5:CB:73:9F:20:A7:4B:83:78:B3:88:A2:F9:5B:C7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rsync.krill.cloud/repo/nlnetlabs/1/F560BEA5F5C5CB739F20A74B8378B388A2F95BC7.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9WC-pfXFy3OfIKdLg3iziKL5W8c.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rsync.krill.cloud/repo/nlnetlabs/1/326130343a623930323a3a2f33322d3332203d3e203134363138.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a04:b902::/32

    Signature Algorithm: sha256WithRSAEncryption
         33:af:95:27:2c:e1:e5:19:c4:f9:2a:f0:29:8f:4b:93:95:42:
         8b:59:40:5b:31:1f:2b:c8:bf:5d:c9:5f:6a:9f:37:8c:f4:f9:
         10:41:df:79:0f:59:2f:1b:47:07:e7:4d:19:6b:40:1f:b7:56:
         29:d6:71:17:26:e2:53:d1:c3:90:b1:fb:48:cb:bb:83:55:02:
         3d:97:b9:1b:6c:ac:c8:ab:83:1a:70:61:00:76:f1:81:99:89:
         da:ee:5e:84:16:48:23:c3:6b:be:2e:16:82:8b:d7:75:ac:f2:
         2d:00:6d:ec:f5:b6:d8:ac:b5:f6:a5:2b:25:56:56:63:8b:98:
         3c:fa:09:e4:c6:55:7c:b8:db:65:6f:cc:69:3d:98:2c:30:34:
         94:9b:5d:70:5e:fe:09:5b:9c:cd:00:c6:62:4e:eb:2d:41:26:
         ee:bb:f7:51:97:36:99:4d:58:47:22:3a:24:eb:fc:9b:00:f6:
         03:de:fb:b7:16:29:db:1f:dc:62:d1:c2:fe:ad:ad:f7:0d:c4:
         15:4f:c2:90:0f:06:54:f4:0f:45:fd:44:ad:a2:18:54:f4:29:
         ea:ab:3b:a8:5e:ef:ef:e3:7a:06:a1:e8:a1:f7:e8:a8:5a:ab:
         16:73:c0:ed:78:bb:a0:72:2e:4d:f7:11:81:23:b5:31:5f:57:
         a5:59:c4:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 14:31:02 2022 by LibreSSL & rpki-client.