Route Origin Authorization
Location:                 rpki.apnic.net/member_repository/A91AD0B2/2213E5BCCB2E11EBB2D39748C4F9AE02/B2EA4D6E3BCD11EC8086E031C4F9AE02.roa (download)

Subject key identifier:   E7:68:FC:FB:5F:37:C7:49:16:CF:15:24:89:AA:2A:EC:0D:DB:E5:55 
Authority key identifier: 44:BA:56:9B:FD:2E:C8:16:B0:69:73:45:13:E0:BB:F2:D3:4E:B7:07
asID:                     AS399955
Prefixes:
    1: 43.242.200.0/22 maxlen: 24
    2: 103.38.80.0/22 maxlen: 24

--
$ test-roa -p rpki.apnic.net/member_repository/A91AD0B2/2213E5BCCB2E11EBB2D39748C4F9AE02/B2EA4D6E3BCD11EC8086E031C4F9AE02.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 908 (0x38c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AD0B2/serialNumber=44BA569BFD2EC816B069734513E0BBF2D34EB707
        Validity
            Not Before: Sep  9 02:01:55 2022 GMT
            Not After : Dec  1 00:00:00 2023 GMT
        Subject: CN=631a9e92-2f7d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:24:35:94:15:76:38:dc:8d:92:60:e4:be:77:
                    81:24:c2:bf:80:e4:2f:4c:c4:3b:3b:f2:c8:37:f0:
                    e6:b0:3b:74:38:47:29:12:c4:35:c4:25:cf:10:6b:
                    1f:22:75:b5:95:6c:d7:72:5b:ac:89:43:c2:d8:23:
                    15:f5:22:c8:06:8c:1e:6b:23:e0:ec:a6:fc:88:08:
                    81:1b:f6:8f:87:e2:7e:7a:3d:79:00:2b:17:40:d2:
                    00:7c:88:29:5f:b7:35:7a:57:c0:2b:ed:95:89:7e:
                    0e:42:55:29:93:3f:cf:96:1b:56:df:3f:be:da:d1:
                    ec:e9:c1:13:82:ed:12:d3:4a:60:cb:f4:29:92:51:
                    32:d3:57:fc:ef:9f:b1:e6:05:f0:e0:e7:5e:ca:ff:
                    28:aa:38:c2:d2:82:2c:25:c3:03:9f:57:fd:78:4c:
                    47:fe:d0:49:ea:f0:7d:e9:f7:77:04:8f:3f:64:95:
                    99:d0:1c:f9:6a:96:f1:0e:80:5b:cf:c0:99:b2:f5:
                    12:7f:b7:14:18:9a:8e:61:71:1c:87:e5:39:0a:41:
                    62:b3:98:08:98:22:af:9d:88:10:83:42:fc:1c:db:
                    82:a0:9d:80:08:f2:18:8c:cd:27:e6:7a:ab:16:fc:
                    0f:18:53:2d:95:0f:a2:3e:85:d4:38:2a:fe:c7:02:
                    41:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E7:68:FC:FB:5F:37:C7:49:16:CF:15:24:89:AA:2A:EC:0D:DB:E5:55
            X509v3 Authority Key Identifier: 
                keyid:44:BA:56:9B:FD:2E:C8:16:B0:69:73:45:13:E0:BB:F2:D3:4E:B7:07

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AD0B2/2213E5BCCB2E11EBB2D39748C4F9AE02/RLpWm_0uyBawaXNFE-C78tNOtwc.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RLpWm_0uyBawaXNFE-C78tNOtwc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD0B2/2213E5BCCB2E11EBB2D39748C4F9AE02/B2EA4D6E3BCD11EC8086E031C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  43.242.200.0/22
                  103.38.80.0/22

    Signature Algorithm: sha256WithRSAEncryption
         79:ac:2f:f4:ee:b9:cd:2c:22:d0:8f:66:14:9d:10:ad:74:1f:
         f6:c7:16:7c:c0:02:6e:87:90:77:4d:9d:69:89:fb:fd:a6:b6:
         d1:c5:a3:dc:c9:99:7f:a2:58:14:da:60:3a:36:f1:a1:36:1b:
         3f:67:66:05:84:bb:0e:93:3b:30:0c:9f:b2:98:db:6e:a1:83:
         c5:81:72:46:72:28:f5:60:41:d2:11:5d:b1:6a:c2:9f:82:d7:
         1d:30:47:19:92:b0:d1:41:83:3b:33:4f:ea:57:fa:b1:9f:d3:
         fe:53:40:50:4a:eb:ae:e9:0e:b9:15:18:58:9b:8d:ba:9f:a7:
         c0:f1:bc:c3:5e:73:f5:59:8e:19:3a:60:14:f8:4b:ca:a3:9f:
         dd:ca:8f:5f:68:81:e8:16:35:2f:2e:5b:bb:3b:2d:5f:5d:ac:
         ca:34:20:0b:59:1b:58:83:99:64:cf:93:85:b2:83:69:fa:5c:
         bb:3f:6b:cc:a7:79:aa:1f:b8:90:ac:72:3e:22:d6:e1:02:34:
         bf:a0:02:29:61:f3:b3:0b:86:86:87:da:98:8d:72:2a:6c:00:
         d8:d4:fd:9b:e6:de:75:bd:81:0c:4c:78:ef:a8:55:57:80:a1:
         7a:ae:c6:22:d5:b6:df:b0:39:82:c0:4d:1a:6a:ab:62:ef:f1:
         da:f1:88:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Fri Sep 9 04:11:21 2022 by LibreSSL & rpki-client.