Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/tjXR3UC7VlULemAjsVVYukaXB8s.roa
File:                     tjXR3UC7VlULemAjsVVYukaXB8s.roa (raw, json)
Hash identifier:          uvpYTQzuUOirihJ/uyjupNV3qpA8QaHACaqOT1bnQts=
Subject key identifier:   B6:35:D1:DD:40:BB:56:55:0B:7A:60:23:B1:55:58:BA:46:97:07:CB
Certificate issuer:       /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5
Certificate serial:       7D
Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/tjXR3UC7VlULemAjsVVYukaXB8s.roa
Signing time:             Sun 01 May 2022 01:30:31 +0000
ROA not before:           Sun 01 May 2022 01:30:31 +0000
ROA not after:            Thu 27 Apr 2023 09:52:34 +0000
asID:                     18126
IP address blocks:        203.209.176.0/22 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 125 (0x7d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5
        Validity
            Not Before: May  1 01:30:31 2022 GMT
            Not After : Apr 27 09:52:34 2023 GMT
        Subject: CN=B635D1DD40BB56550B7A6023B15558BA469707CB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:bf:f5:cb:e9:8c:e7:4d:6c:83:65:33:2f:b6:
                    9c:e1:f2:92:08:bf:0c:37:ae:fd:24:32:d0:0a:8d:
                    9d:b8:26:7b:0e:ea:c6:44:63:a3:7e:a3:a6:04:d4:
                    7b:7d:b9:71:a4:f6:e7:6b:44:9b:c2:6e:41:0a:a2:
                    a3:00:23:66:91:0b:d8:70:92:44:5e:c1:75:0a:1f:
                    0b:d5:67:4d:32:b9:b4:00:50:84:64:8b:c3:bb:16:
                    63:b4:9a:43:1b:ce:d8:a1:fa:1c:17:e9:ee:30:f6:
                    58:35:3c:32:08:ed:0b:ab:41:8e:7d:23:0c:4b:af:
                    c8:4b:2b:b9:6a:3e:11:a2:44:21:18:ad:14:62:42:
                    7b:d5:9b:45:d8:53:85:6c:be:f0:8e:4f:6e:8d:02:
                    5e:4d:e8:79:2e:48:a4:a1:31:6b:02:50:21:57:f9:
                    c4:ab:2e:54:c6:89:b3:70:c7:c9:8a:67:c9:b4:ce:
                    88:99:9e:2a:4b:37:64:ad:cc:6c:3d:92:45:05:38:
                    f2:9d:da:97:a9:fa:01:0a:11:bc:86:dd:6b:b5:8c:
                    6b:59:22:a2:bf:e4:e5:a5:5d:66:8d:f1:0c:7e:04:
                    25:29:db:18:34:e2:38:a7:0d:3f:3b:71:dc:f2:20:
                    af:93:02:bb:2e:8b:b8:79:b8:58:fc:4d:02:51:fa:
                    00:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:35:D1:DD:40:BB:56:55:0B:7A:60:23:B1:55:58:BA:46:97:07:CB
            X509v3 Authority Key Identifier:
                keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/tjXR3UC7VlULemAjsVVYukaXB8s.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  203.209.176.0/22

    Signature Algorithm: sha256WithRSAEncryption
         33:26:63:e3:67:39:15:0d:97:db:d3:fe:94:1d:55:45:86:ce:
         c4:af:b1:e4:ce:da:d6:1d:a3:26:7e:90:13:2a:3f:18:a5:05:
         2e:93:8f:4e:80:fa:b6:28:73:7b:aa:8e:94:c5:d9:70:99:dc:
         31:7d:84:99:a2:0b:eb:c6:e5:84:69:a3:21:2a:6a:da:f0:d2:
         1e:a6:6a:91:aa:e7:8a:fd:c6:a9:fd:78:cc:a8:d5:5e:c4:29:
         92:4f:81:8c:89:43:6e:ad:60:d0:bb:7a:84:60:e9:41:08:ea:
         6f:f8:c7:0d:13:6a:37:fd:a1:db:20:6d:cb:6e:d6:33:40:7c:
         5a:a7:91:cb:86:93:26:f0:7a:98:2d:66:d4:07:1b:61:d6:41:
         a4:9f:e4:6b:5e:25:3a:b5:07:52:ef:0c:bd:b1:d1:1f:24:65:
         80:94:a3:2e:da:ae:39:7d:8e:92:1a:84:db:7b:fa:66:18:62:
         e7:3c:45:39:70:e4:ba:fd:78:d7:26:85:6a:ed:57:c9:4b:59:
         15:72:41:e0:86:90:d3:c0:a9:b3:e2:47:39:e3:1a:a4:7a:d6:
         0a:48:99:1b:1e:64:72:6a:00:a7:a3:17:e8:9c:bf:82:29:1a:
         de:6a:28:41:cb:dd:34:de:f0:70:9e:77:07:95:a3:5d:9b:6a:
         4e:30:ff:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:44 2024 by rpki-client on console-fra.rpki-client.org