Route Origin Authorization
Location:                 rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/2CE5BE065BDA11ECAA855355C4F9AE02.roa (download)

Subject key identifier:   2F:E0:A3:FD:BC:F2:CC:97:48:02:3D:96:F0:2A:77:36:05:66:8B:94 
Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7
asID:                     AS398355
Prefixes:
    1: 2400:3e20::/36 maxlen: 36

--
$ test-roa -p rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/2CE5BE065BDA11ECAA855355C4F9AE02.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7
        Validity
            Not Before: Dec 13 06:01:56 2021 GMT
            Not After : Mar 31 00:00:00 2023 GMT
        Subject: CN=61b6e1d3-b2d0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:e0:5c:99:21:aa:ff:51:38:34:1d:36:24:38:
                    bd:58:e0:b8:98:6c:ac:91:28:cd:9f:34:73:ef:e0:
                    f9:f9:3d:b6:d1:99:f8:9d:fd:8e:f5:e6:55:4f:16:
                    db:be:02:a8:db:d2:a9:c0:b4:01:13:c2:ac:27:fc:
                    f8:c3:de:0b:bf:e3:54:2e:0a:b5:6d:2f:8c:be:b3:
                    66:60:64:f8:f6:7b:4a:72:5c:81:47:79:64:9a:1e:
                    51:05:98:2f:f0:ab:fd:06:46:51:13:f7:77:c0:66:
                    1c:43:ff:52:b7:f0:88:11:d5:12:f4:96:53:19:a7:
                    7d:81:d1:c1:21:4a:0f:1f:91:10:7c:1e:c6:c0:bf:
                    2f:89:13:67:13:6a:91:9a:86:d9:f6:7e:20:95:76:
                    8c:cc:6d:d8:3a:89:62:d6:9b:2f:1a:47:b8:20:8b:
                    b1:01:9d:e5:b0:17:7b:1a:ba:76:d7:19:a6:77:1a:
                    b2:79:b5:be:6a:0c:22:91:04:2c:4b:f4:de:b1:40:
                    ff:73:e3:16:9f:b7:be:c0:39:c2:8c:dc:11:2f:d8:
                    d0:d9:68:07:ac:d2:30:4d:ba:19:cd:23:cf:4e:65:
                    d4:bc:43:bd:28:38:e6:9c:20:99:ee:42:ff:b7:f4:
                    9f:20:fb:70:68:08:8a:58:4a:35:fd:9b:75:07:52:
                    2a:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                2F:E0:A3:FD:BC:F2:CC:97:48:02:3D:96:F0:2A:77:36:05:66:8B:94
            X509v3 Authority Key Identifier: 
                keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/2CE5BE065BDA11ECAA855355C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2400:3e20::/36

    Signature Algorithm: sha256WithRSAEncryption
         1d:8a:bc:92:60:36:4d:dc:19:03:fd:e0:ef:a2:12:d8:42:47:
         65:70:e7:82:46:3c:a5:a4:e3:2f:b6:62:b1:8d:59:f9:9e:98:
         1b:44:52:7b:b1:61:c1:ea:07:19:ab:a8:fb:4a:b9:2d:48:e7:
         a6:6c:e2:d4:04:f0:66:f1:2e:21:da:d7:91:5e:a3:be:5b:ee:
         7b:bf:c6:c8:3c:38:06:89:1f:cd:63:14:37:66:b4:31:be:c1:
         68:a8:a1:27:f6:ed:d6:4e:66:21:ae:b4:24:43:d3:c3:0d:f5:
         1e:0e:09:70:7e:d3:55:11:40:92:54:e5:4a:c1:28:d2:26:c8:
         66:75:5a:50:ac:da:33:49:d0:c5:18:1a:8a:b9:e1:db:8e:97:
         5c:e9:88:f1:6e:c7:fb:50:f3:89:40:eb:15:d3:49:b7:9f:65:
         d3:48:f2:83:81:1f:ca:5d:f3:4f:da:d6:3a:be:6f:b3:be:3a:
         f5:9f:cd:5c:00:1a:4a:35:f9:2c:f7:c8:86:0e:9d:3b:38:b6:
         52:c3:68:79:1a:2b:72:4b:3c:5a:41:6c:f1:bb:25:2d:53:c1:
         aa:4f:6c:30:47:de:8c:0d:aa:4b:23:97:f2:57:a4:1e:d3:dc:
         7d:ee:bf:be:f9:8e:5a:a7:be:d9:12:83:0a:85:3c:c8:44:cf:
         94:5b:e7:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sun Jan 30 13:54:17 2022 by LibreSSL & rpki-client.