Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1175/Qgw-3059C4S0C70yLnr-P2yzkbw.roa
File:                     Qgw-3059C4S0C70yLnr-P2yzkbw.roa (raw, json)
Hash identifier:          vZRGuYhGkwfTgZVW7gVi9KHYCZaE5pBhqxrCnZz3x4g=
Subject key identifier:   42:0C:3E:DF:4E:7D:0B:84:B4:0B:BD:32:2E:7A:FE:3F:6C:B3:91:BC
Certificate issuer:       /CN=8A57051C84A2BF078749E7BB34BE19678E131119
Certificate serial:       2D
Authority key identifier: 8A:57:05:1C:84:A2:BF:07:87:49:E7:BB:34:BE:19:67:8E:13:11:19
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ilcFHISivweHSee7NL4ZZ44TERk.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1175/Qgw-3059C4S0C70yLnr-P2yzkbw.roa
Signing time:             Fri 17 Mar 2023 13:10:57 +0000
ROA not before:           Fri 17 Mar 2023 13:10:57 +0000
ROA not after:            Thu 14 Mar 2024 01:30:02 +0000
asID:                     14418
IP address blocks:        150.35.240.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8A57051C84A2BF078749E7BB34BE19678E131119
        Validity
            Not Before: Mar 17 13:10:57 2023 GMT
            Not After : Mar 14 01:30:02 2024 GMT
        Subject: CN=420C3EDF4E7D0B84B40BBD322E7AFE3F6CB391BC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:9d:c5:12:28:08:3d:07:a7:92:bb:48:94:c6:
                    eb:cd:ce:91:c8:79:a3:6d:6b:f7:8f:66:a9:75:95:
                    98:6c:7d:96:4e:8e:2d:59:16:eb:77:4e:90:fc:08:
                    15:03:bc:80:0e:15:14:8a:d6:67:3b:74:17:af:40:
                    4c:fe:8a:0c:e9:ef:a1:83:1a:28:1c:68:1e:cc:ce:
                    89:19:50:3d:1d:1f:48:93:63:6c:11:de:58:9b:1b:
                    3a:d8:d8:52:3d:a4:8e:ba:c5:d5:6c:bd:c9:07:3a:
                    59:b5:db:8f:e1:94:47:f4:b7:d2:d0:57:a6:8f:0d:
                    77:0c:22:35:e0:ca:d8:06:47:ab:0a:13:6d:c4:b5:
                    5d:92:e8:f4:6f:a2:fd:1b:d5:5a:21:c0:b2:75:d7:
                    1e:80:22:20:0f:34:27:c2:19:9e:4b:ee:26:94:b3:
                    54:de:3e:45:e7:ae:62:33:35:6c:a6:8c:6f:38:af:
                    cd:52:0e:41:ec:84:94:9b:19:89:96:e5:83:e9:70:
                    6c:b0:9a:e8:2b:57:59:10:51:7a:54:e9:24:a6:37:
                    a2:cf:af:d2:2e:02:ec:fa:86:6f:72:60:8e:aa:43:
                    09:c0:4a:32:a5:19:9f:22:dc:c7:7d:e4:d5:57:91:
                    34:9b:bc:2b:d9:61:1f:3e:77:d9:cb:b4:24:2e:ed:
                    32:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:0C:3E:DF:4E:7D:0B:84:B4:0B:BD:32:2E:7A:FE:3F:6C:B3:91:BC
            X509v3 Authority Key Identifier:
                keyid:8A:57:05:1C:84:A2:BF:07:87:49:E7:BB:34:BE:19:67:8E:13:11:19

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1175/ilcFHISivweHSee7NL4ZZ44TERk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ilcFHISivweHSee7NL4ZZ44TERk.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1175/Qgw-3059C4S0C70yLnr-P2yzkbw.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  150.35.240.0/24

    Signature Algorithm: sha256WithRSAEncryption
         01:81:b7:58:5c:b7:d8:76:48:33:7b:40:7b:73:13:0b:66:17:
         5f:26:4c:1a:62:13:c9:8c:bf:81:c8:af:a2:51:1a:c5:23:19:
         bc:f9:5a:5d:a5:54:fa:e8:e3:de:65:34:82:29:70:63:c9:d5:
         02:7f:e2:d3:64:5a:0a:47:02:b9:db:ff:7a:05:32:29:6d:3f:
         d9:19:01:17:c9:cc:77:00:ab:5d:e3:df:64:7b:4b:e0:04:e7:
         dd:4a:94:f0:5e:43:22:64:a3:70:77:d6:62:15:df:b6:11:2c:
         05:a6:45:95:cc:d8:11:c3:3f:87:c7:a9:e7:68:9b:d9:5e:ee:
         80:2d:ae:12:93:ad:5f:1a:49:c2:44:ca:d9:bf:b1:ad:78:6a:
         cc:85:ee:ff:1f:40:78:3c:29:af:bc:68:90:be:65:13:d5:d5:
         1b:bf:7f:e7:51:08:4c:b5:0c:93:a7:12:4b:78:7a:3f:d5:43:
         10:eb:e1:a8:ff:da:65:27:d4:be:49:a1:48:36:64:83:23:c2:
         48:a3:d7:7b:41:0b:a2:78:f1:d0:3d:52:ec:a8:5a:3a:79:1f:
         07:5c:cc:ed:bd:e4:9b:d0:22:72:58:7c:04:b9:20:b4:af:12:
         83:54:44:c4:b3:66:33:bc:e9:ae:28:94:4c:04:19:40:a9:6d:
         2b:c4:e0:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:42 2024 by rpki-client on console-fra.rpki-client.org