Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20183/WAhXidW3Bleg6U2ln9fU8nr8ykE.roa
File:                     WAhXidW3Bleg6U2ln9fU8nr8ykE.roa (raw, json)
Hash identifier:          SVdMJ5L91X6Uh4Nk/SjklUpzQAcwo9z3Rv1JpF7mb4U=
Subject key identifier:   58:08:57:89:D5:B7:06:57:A0:E9:4D:A5:9F:D7:D4:F2:7A:FC:CA:41
Certificate issuer:       /CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
Certificate serial:       0196
Authority key identifier: 16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/WAhXidW3Bleg6U2ln9fU8nr8ykE.roa
Signing time:             Mon 20 Feb 2023 07:50:58 +0000
ROA not before:           Mon 20 Feb 2023 07:50:58 +0000
ROA not after:            Thu 15 Feb 2024 01:30:03 +0000
asID:                     146979
IP address blocks:        202.236.90.146/32 maxlen: 32

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 406 (0x196)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
        Validity
            Not Before: Feb 20 07:50:58 2023 GMT
            Not After : Feb 15 01:30:03 2024 GMT
        Subject: CN=58085789D5B70657A0E94DA59FD7D4F27AFCCA41
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:2a:68:04:55:c1:3d:b9:3a:19:6a:f1:8f:ba:
                    4c:d5:b6:6d:b5:42:32:32:07:62:97:cc:8a:6a:26:
                    bf:de:88:52:47:3d:84:56:7c:4d:0e:a5:8f:bd:43:
                    26:ba:d2:61:5f:97:59:a3:44:8a:69:d0:73:fc:b9:
                    4a:e9:13:b0:91:b3:31:5e:ad:73:c9:77:f8:a5:4e:
                    01:ba:71:b3:23:b5:dc:cc:08:29:d9:19:b9:2e:e2:
                    88:df:a2:ca:54:0e:fe:e4:8f:f2:e2:dc:40:75:5d:
                    d5:38:0f:46:75:e0:3b:a4:0a:05:2b:8a:c6:a1:9b:
                    64:1a:62:09:fc:18:d2:d3:9b:b2:6c:16:f4:96:ef:
                    ce:3c:37:ad:af:41:6e:e6:79:e7:e5:7d:06:16:98:
                    29:20:16:72:48:77:ce:fc:65:2a:93:e0:3e:22:5f:
                    f5:0e:e8:f9:c2:91:02:b5:5c:ec:17:b1:16:ec:c5:
                    83:e8:88:e7:4f:2b:27:a9:a3:38:68:da:3d:17:92:
                    d5:0c:d5:b9:b3:8c:e5:1d:94:9b:9f:35:01:24:16:
                    27:b9:92:f1:b4:ea:c3:77:fa:87:47:54:5b:41:ba:
                    60:02:23:2b:a5:1b:15:1e:b4:93:c1:77:f0:b5:25:
                    33:05:1b:c9:85:25:f9:4b:08:39:d9:2b:23:fd:02:
                    de:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                58:08:57:89:D5:B7:06:57:A0:E9:4D:A5:9F:D7:D4:F2:7A:FC:CA:41
            X509v3 Authority Key Identifier:
                keyid:16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/Fga-sTe4jbvuunhRoKj419GClK8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/WAhXidW3Bleg6U2ln9fU8nr8ykE.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.236.90.146/32

    Signature Algorithm: sha256WithRSAEncryption
         76:60:3b:4e:6f:f8:2e:f0:d7:ab:66:92:d5:9a:91:9d:3c:d1:
         ed:87:40:49:57:df:95:df:51:c1:40:f0:56:6a:0e:f5:95:17:
         2d:48:dc:b1:0d:e2:c9:e4:a8:34:99:c7:6c:25:df:f5:ce:8e:
         65:56:9f:2e:ec:b4:3a:a3:dd:f3:f0:5c:53:56:75:e2:3a:ad:
         df:ff:1e:e9:4c:65:de:43:bb:e2:fb:09:32:f8:97:d3:30:a9:
         e3:59:11:e0:b9:5b:a8:bc:29:3b:09:fe:94:e6:27:ad:41:c8:
         65:32:38:61:5d:ce:d6:5e:b1:bb:12:48:f5:36:6b:e5:7e:88:
         d7:7a:0d:f5:03:0c:d2:ba:aa:bc:99:da:64:e5:37:4c:f1:72:
         e7:a3:c1:ac:3c:03:17:49:79:61:62:9e:c6:03:1e:d8:7a:72:
         62:0e:49:53:fa:50:d0:07:bd:68:44:ae:66:92:55:f2:b2:e2:
         40:60:48:81:25:e3:09:03:b7:d2:a3:c4:74:07:42:bb:1d:aa:
         e0:92:c5:41:61:26:e1:f2:3c:2b:ff:a1:ae:8b:37:25:9f:00:
         f5:66:bb:b2:25:b7:71:aa:f9:31:f9:c1:45:e8:f7:13:aa:0d:
         9f:27:36:5c:d4:43:68:7f:d9:ee:81:e6:5c:12:10:08:6f:a3:
         e8:4e:80:53
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTYw
NkJFQjEzN0I4OERCQkVFQkE3ODUxQTBBOEY4RDdEMTgyOTRBRjAeFw0yMzAyMjAw
NzUwNThaFw0yNDAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDU4MDg1Nzg5RDVCNzA2
NTdBMEU5NERBNTlGRDdENEYyN0FGQ0NBNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxKmgEVcE9uToZavGPukzVtm21QjIyB2KXzIpqJr/eiFJHPYRW
fE0OpY+9Qya60mFfl1mjRIpp0HP8uUrpE7CRszFerXPJd/ilTgG6cbMjtdzMCCnZ
Gbku4ojfospUDv7kj/Li3EB1XdU4D0Z14DukCgUrisahm2QaYgn8GNLTm7JsFvSW
7848N62vQW7meeflfQYWmCkgFnJId878ZSqT4D4iX/UO6PnCkQK1XOwXsRbsxYPo
iOdPKyepozho2j0XktUM1bmzjOUdlJufNQEkFie5kvG06sN3+odHVFtBumACIyul
GxUetJPBd/C1JTMFG8mFJflLCDnZKyP9At4/AgMBAAGjggIpMIICJTAdBgNVHQ4E
FgQUWAhXidW3Bleg6U2ln9fU8nr8ykEwHwYDVR0jBBgwFoAUFga+sTe4jbvuunhR
oKj419GClK8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g
W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzIwMTgzL0ZnYS1zVGU0amJ2dXVuaFJvS2o0MTlHQ2xLOC5jcmwwbQYI
KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y
eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0ZnYS1zVGU0amJ2dXVuaFJvS2o0
MTlHQ2xLOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj
BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw
L0E5MUE3MzgxMDAwMC8yMDE4My9XQWhYaWRXM0JsZWc2VTJsbjlmVThucjh5a0Uu
cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu
anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzAN
BAIAATAHAwUAyuxakjANBgkqhkiG9w0BAQsFAAOCAQEAdmA7Tm/4LvDXq2aS1ZqR
nTzR7YdASVffld9RwUDwVmoO9ZUXLUjcsQ3iyeSoNJnHbCXf9c6OZVafLuy0OqPd
8/BcU1Z14jqt3/8e6Uxl3kO74vsJMviX0zCp41kR4LlbqLwpOwn+lOYnrUHIZTI4
YV3O1l6xuxJI9TZr5X6I13oN9QMM0rqqvJnaZOU3TPFy56PBrDwDF0l5YWKexgMe
2HpyYg5JU/pQ0Ae9aESuZpJV8rLiQGBIgSXjCQO30qPEdAdCux2q4JLFQWEm4fI8
K/+hros3JZ8A9Wa7siW3car5MfnBRej3E6oNnyc2XNRDaH/Z7oHmXBIQCG+j6E6A
Uw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:55 2024 by rpki-client on console-ams.rpki-client.org