Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/sGlsMUUlJoH2coTtN-eE0W6I4Io.roa
File:                     sGlsMUUlJoH2coTtN-eE0W6I4Io.roa (raw, json)
Hash identifier:          KgfIxxgRvcoH9+r+HWRexrOF44nuovuLJbfYBlSOwg8=
Subject key identifier:   B0:69:6C:31:45:25:26:81:F6:72:84:ED:37:E7:84:D1:6E:88:E0:8A
Certificate issuer:       /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial:       0211
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/sGlsMUUlJoH2coTtN-eE0W6I4Io.roa
Signing time:             Mon 01 May 2023 01:37:46 +0000
ROA not before:           Mon 01 May 2023 01:37:46 +0000
ROA not after:            Sun 14 Apr 2024 01:30:02 +0000
asID:                     2516
IP address blocks:        118.153.0.0/16 maxlen: 16

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 529 (0x211)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
        Validity
            Not Before: May  1 01:37:46 2023 GMT
            Not After : Apr 14 01:30:02 2024 GMT
        Subject: CN=B0696C3145252681F67284ED37E784D16E88E08A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:02:11:f5:06:13:eb:0c:9f:dd:cf:da:2c:bd:
                    c1:59:99:31:73:b5:87:a3:52:06:6f:4d:3f:e3:51:
                    45:a1:4f:fc:7c:16:19:d2:b7:ae:af:2e:48:be:b6:
                    36:08:6b:36:a9:61:6a:b8:b1:81:42:ed:73:7c:a7:
                    18:17:02:d5:49:a3:51:62:a8:29:db:dc:73:63:c4:
                    35:77:ad:29:8a:34:a7:71:c8:1a:d4:70:70:3b:a5:
                    5b:79:fd:87:66:ac:c6:86:ef:19:b1:55:38:40:75:
                    64:24:9b:f2:7a:24:66:48:70:dc:ce:87:34:98:ee:
                    04:8b:f9:aa:a5:49:b0:a6:38:ff:df:13:b3:5a:f2:
                    d2:65:42:f6:34:56:2d:71:10:cd:b8:30:df:03:65:
                    af:f0:42:2c:37:77:c7:1d:b0:45:99:1d:ef:af:0a:
                    60:aa:8b:46:d8:8a:dc:77:07:f9:b3:06:f5:8d:69:
                    c9:5c:8b:42:ad:51:1a:78:93:80:99:34:c8:28:bb:
                    46:f8:28:84:77:64:e0:df:27:7c:f3:b7:54:b2:77:
                    24:2f:3a:73:af:2f:25:14:e2:78:c6:7b:bc:aa:32:
                    39:04:73:3c:21:e8:d7:72:d7:9a:e3:f6:ab:8b:8f:
                    22:cf:13:84:f8:72:c6:46:5c:7a:33:8f:a7:7f:79:
                    6e:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:69:6C:31:45:25:26:81:F6:72:84:ED:37:E7:84:D1:6E:88:E0:8A
            X509v3 Authority Key Identifier:
                keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/sGlsMUUlJoH2coTtN-eE0W6I4Io.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.153.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         21:7d:c0:a6:b1:63:d3:f2:ac:41:8e:c9:60:69:b0:0c:6c:de:
         bd:66:c4:6a:39:5b:dd:b2:4b:3d:13:9d:73:c4:6e:a8:cc:23:
         fb:02:c2:b7:3e:ed:92:b9:80:19:eb:12:c7:42:c2:65:bf:7f:
         49:d6:99:31:02:9c:1f:b0:b6:11:97:5f:e9:5e:dd:3a:48:f9:
         da:95:81:40:41:cf:a9:64:24:3c:c2:b4:f1:73:5a:29:e5:b7:
         85:4c:5d:51:02:dd:95:9e:c4:c1:03:29:31:62:e2:a1:5a:18:
         bc:3a:27:93:24:fa:26:1a:ce:66:f3:df:25:16:d8:88:88:02:
         c8:9b:b6:3e:ae:df:54:c0:6a:5d:5e:dd:cd:3e:67:58:37:37:
         ac:ea:9b:0f:ea:e4:10:98:a0:41:a0:bc:17:d1:85:a7:62:42:
         81:a3:51:dd:78:be:a8:bd:85:62:89:94:e2:5a:ac:5f:c7:dc:
         fe:f5:28:6d:12:f1:8b:d5:dd:56:65:4c:70:ec:96:92:9f:b1:
         11:ab:17:e2:e8:6a:3f:73:02:0e:1b:aa:19:f3:c6:a7:0f:58:
         ea:e3:2c:e1:16:f1:bd:f2:68:26:f6:b5:f3:c1:bc:57:df:ee:
         f1:e3:17:99:ff:08:11:60:36:a2:18:cb:72:57:88:f5:1d:a6:
         8a:5c:1a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:38 2024 by rpki-client on console-ams.rpki-client.org