Route Origin Authorization
Location:                 rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7C66BF543BD011ECBCB98F83C4F9AE02.roa (download)

Subject key identifier:   DC:9A:87:B5:5E:82:6A:30:21:A5:1F:3F:86:1F:96:EB:D7:CF:77:94 
Authority key identifier: 8C:38:14:72:3F:C7:55:E9:A9:BA:1B:C3:35:66:4A:51:9B:BC:1C:EE
asID:                     AS399955
Prefixes:
    1: 43.251.224.0/22 maxlen: 24
    2: 103.43.8.0/22 maxlen: 24

--
$ test-roa -p rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7C66BF543BD011ECBCB98F83C4F9AE02.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 78 (0x4e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913C40D/serialNumber=8C3814723FC755E9A9BA1BC335664A519BBC1CEE
        Validity
            Not Before: Dec  8 03:21:46 2021 GMT
            Not After : Mar  2 00:00:00 2023 GMT
        Subject: CN=61b024ca-d653
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:8e:44:6d:aa:03:1f:00:68:86:d2:21:2f:e0:
                    27:fe:fe:89:9f:a9:f6:c2:c0:c5:95:db:dc:02:d0:
                    99:b2:89:d6:d0:f2:2e:19:87:c9:cd:2b:20:f5:d2:
                    e6:5c:b9:a3:37:88:d1:77:a6:6e:bb:00:3a:40:f1:
                    1d:8c:f9:67:1a:57:f9:6a:53:6f:f2:92:82:03:29:
                    b1:88:f1:eb:ef:77:4f:cb:aa:0a:1e:23:f5:27:7d:
                    c4:45:b7:e5:d6:f1:53:62:77:c1:12:85:d0:d1:4c:
                    29:c3:b9:21:36:52:70:7f:4f:1f:1f:d0:b1:2b:0f:
                    84:e7:af:e6:c4:38:d7:8b:ee:63:d5:c9:9e:ac:4e:
                    18:9e:dd:56:e8:db:a2:25:98:c0:91:42:79:4a:2f:
                    7e:a7:4b:f2:c7:8a:99:14:1f:7e:e1:90:e7:17:7d:
                    0d:a9:81:c3:ff:82:7c:a9:33:13:30:b5:43:0a:37:
                    9e:1e:ba:b7:56:c6:6a:d0:b6:9f:56:2c:e6:4f:07:
                    52:21:fd:ae:c6:b5:95:8c:12:4d:c4:37:63:a6:65:
                    d0:82:83:db:35:c1:de:b4:ea:c2:f9:cc:48:88:4b:
                    bb:d5:7c:50:bd:ad:9b:ed:a3:a0:9c:0d:38:2e:a2:
                    0f:d6:92:f4:88:2a:65:a1:b5:85:ad:ce:c0:0f:b4:
                    0a:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                DC:9A:87:B5:5E:82:6A:30:21:A5:1F:3F:86:1F:96:EB:D7:CF:77:94
            X509v3 Authority Key Identifier: 
                keyid:8C:38:14:72:3F:C7:55:E9:A9:BA:1B:C3:35:66:4A:51:9B:BC:1C:EE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7C66BF543BD011ECBCB98F83C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  43.251.224.0/22
                  103.43.8.0/22

    Signature Algorithm: sha256WithRSAEncryption
         b9:e0:0b:65:ca:7d:36:cc:32:d9:be:52:4b:da:b8:95:90:8b:
         3c:6c:10:9f:d8:b6:ef:6c:5e:6c:cd:db:e8:31:9a:1e:bc:41:
         c0:0f:08:83:59:79:b2:f1:c4:91:62:18:a4:97:ee:60:92:1a:
         d1:e5:7b:86:bd:b6:01:cc:e1:49:1e:58:9e:17:e1:fc:fa:ed:
         20:7c:99:7e:26:06:f5:1b:7a:7c:4a:f8:24:ed:7d:25:0e:3c:
         42:55:fe:40:66:1b:2c:d1:f2:8d:51:ab:31:1b:61:5b:42:6d:
         a9:7d:a0:2c:88:9c:6f:e4:4e:2a:d0:80:0e:0c:38:ab:2e:d8:
         33:23:bb:ae:cf:ff:2c:39:51:1c:1a:c2:e4:ce:1e:b4:23:85:
         a3:ca:d2:47:25:c5:c6:60:e2:31:12:c3:0c:99:7e:a1:25:b2:
         79:4b:d5:cb:98:22:01:e7:24:d9:9a:9a:b8:e9:e8:da:58:ab:
         cb:be:4d:14:00:7d:f4:6c:3c:29:bd:f8:c2:48:25:bb:68:2d:
         f2:80:6b:22:5a:70:ac:19:86:d5:aa:a4:11:36:00:1a:29:2d:
         5c:ef:07:fb:b1:70:a2:7d:18:20:65:82:5f:3f:29:4f:08:eb:
         98:5f:85:05:f0:27:d2:11:04:fc:d4:90:af:e7:6a:ac:7c:4a:
         7d:e5:3b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 13:50:32 2022 by LibreSSL & rpki-client.