Route Origin Authorization
Location:                 rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa (download)

Subject key identifier:   8D:B2:14:D8:10:31:FA:CF:02:A9:B2:9D:17:D6:AA:6F:01:DC:A1:29 
Authority key identifier: B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28
asID:                     AS58895
Prefixes:
    1: 43.246.220.0/22 maxlen: 24
    2: 103.35.208.0/22 maxlen: 24

--
$ test-roa -p rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1977 (0x7b9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28
        Validity
            Not Before: Oct  8 16:22:44 2022 GMT
            Not After : Dec  1 00:00:00 2023 GMT
        Subject: CN=6341a3d3-5078
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:a3:84:9e:2a:88:1a:09:d4:fb:ec:f8:6c:70:
                    ed:ba:33:cb:0e:3c:98:7c:66:7a:71:5d:af:23:ef:
                    cd:72:b5:c3:3a:f2:7b:a8:e1:1a:10:79:83:fe:99:
                    39:2d:a3:20:d9:16:21:5b:9a:44:f9:6c:b6:0b:ad:
                    3e:98:7f:bb:86:4a:d5:a2:37:19:d9:6d:c4:51:3c:
                    3e:e0:bf:e0:48:a8:c8:8e:78:e1:02:06:a4:be:78:
                    87:45:e0:a0:e7:72:08:ce:c4:ac:88:08:eb:b0:1f:
                    65:3a:e2:6d:d3:b0:7e:f2:42:11:72:d4:7a:30:5f:
                    db:5c:51:20:26:b7:9a:10:48:f7:e3:55:a8:b5:74:
                    d5:6f:6a:22:d4:7b:1b:63:19:73:32:c2:2d:12:b6:
                    46:2b:ba:cf:9c:d1:e5:a3:15:db:1a:69:4e:3c:c4:
                    db:c2:f7:51:7f:ae:e2:db:35:7b:cb:b7:dd:56:03:
                    45:34:90:4d:cf:a0:f8:f9:26:c6:a4:00:f4:cd:71:
                    2c:c0:7a:01:a9:99:d6:83:56:21:c5:25:79:b8:93:
                    ad:2c:da:92:b4:82:ae:5b:c9:b8:92:ea:72:5d:87:
                    13:bd:b5:1a:84:5c:79:15:0e:2b:6f:83:26:da:d4:
                    9b:6d:82:60:ea:0f:7f:c2:7a:f7:f1:8e:52:75:83:
                    9e:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                8D:B2:14:D8:10:31:FA:CF:02:A9:B2:9D:17:D6:AA:6F:01:DC:A1:29
            X509v3 Authority Key Identifier: 
                keyid:B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  43.246.220.0/22
                  103.35.208.0/22

    Signature Algorithm: sha256WithRSAEncryption
         1c:d0:76:b0:5e:4e:3e:15:7b:a4:3e:9a:bd:d4:b3:9c:3a:78:
         41:03:a5:14:a3:51:5c:8b:fd:57:2d:af:dd:46:35:f7:5e:3c:
         6e:d4:ed:5b:7e:f2:6a:f1:46:23:e1:a7:48:98:bb:d4:dc:98:
         c6:76:4f:fd:b4:32:87:fe:7c:31:9d:f4:a6:e6:0b:c7:31:62:
         46:73:a7:91:57:94:d2:66:73:54:71:f6:a9:c1:12:34:62:6d:
         72:4e:e1:40:9a:b7:b6:94:3e:63:89:d2:30:ec:a8:f0:b1:08:
         ff:11:75:51:a3:55:eb:8d:1f:8d:bd:6b:a4:b9:5c:86:61:3b:
         68:79:15:d3:4b:ba:1f:0d:1f:9f:2d:b6:f0:ca:f0:12:51:ea:
         01:8d:59:70:ec:bf:0d:12:9c:b4:10:e1:89:68:31:46:20:a7:
         60:74:38:9f:ef:91:ec:16:82:1c:eb:f6:ca:56:42:cc:ef:46:
         c5:3e:aa:5e:74:88:fc:96:1d:86:27:56:4a:97:c9:3b:88:1d:
         26:8e:9e:6d:c0:9f:4e:1d:75:23:34:24:52:89:ad:93:4c:9f:
         ee:5c:8e:81:d2:17:69:cc:c8:69:1f:48:83:66:3c:7e:1d:ec:
         27:6d:4e:d5:ff:72:03:03:fe:d4:4f:9e:05:10:b7:60:fc:a9:
         dc:dc:9e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Generated at Sat Oct 8 20:34:08 2022 by LibreSSL & rpki-client.