Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2370/qhV6lvQBrA5__uQ8ubMfYEnpIlw.roa
File:                     qhV6lvQBrA5__uQ8ubMfYEnpIlw.roa (raw, json)
Hash identifier:          KuYltmdTks8f3cJwDY1ylS3OsNY+4VqjRH0r6RrNSTM=
Subject key identifier:   AA:15:7A:96:F4:01:AC:0E:7F:FE:E4:3C:B9:B3:1F:60:49:E9:22:5C
Certificate issuer:       /CN=00711F2DD7667CFB08804BE8FA284A49E613EDC4
Certificate serial:       21
Authority key identifier: 00:71:1F:2D:D7:66:7C:FB:08:80:4B:E8:FA:28:4A:49:E6:13:ED:C4
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/AHEfLddmfPsIgEvo-ihKSeYT7cQ.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/qhV6lvQBrA5__uQ8ubMfYEnpIlw.roa
Signing time:             Wed 01 Feb 2023 01:29:53 +0000
ROA not before:           Wed 01 Feb 2023 01:29:53 +0000
ROA not after:            Mon 15 Jan 2024 01:30:02 +0000
asID:                     55396
IP address blocks:        192.50.151.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 33 (0x21)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=00711F2DD7667CFB08804BE8FA284A49E613EDC4
        Validity
            Not Before: Feb  1 01:29:53 2023 GMT
            Not After : Jan 15 01:30:02 2024 GMT
        Subject: CN=AA157A96F401AC0E7FFEE43CB9B31F6049E9225C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:0f:64:c8:e8:8f:2d:87:dc:27:74:c7:9c:97:
                    70:b2:16:26:83:1a:66:8e:71:0b:95:ba:36:80:34:
                    28:54:00:b8:24:f8:46:bc:a7:19:ab:88:5a:fe:30:
                    45:0f:8a:e6:8c:d8:8f:1d:45:9a:48:21:01:54:e3:
                    a8:9d:84:2c:27:2a:c9:96:c8:b1:20:0a:da:65:d6:
                    56:b3:9b:a4:f4:4e:85:4d:68:35:24:29:9b:37:fa:
                    86:f4:a4:fc:64:db:fb:71:22:4d:73:cf:c0:49:55:
                    fc:34:77:59:53:c2:38:90:d4:70:e2:9e:ad:06:62:
                    70:48:4d:22:20:0b:2a:af:0b:93:3a:11:37:0b:29:
                    43:c1:85:19:62:c8:a0:a1:48:e6:df:06:68:ba:e3:
                    0d:73:fb:12:0c:d8:3b:38:1b:e5:00:a4:ed:85:be:
                    e5:1e:f3:3e:35:9f:e3:87:76:55:73:38:d1:42:c9:
                    0c:88:8c:17:e8:b4:b6:6b:b7:ec:9f:cb:48:ea:30:
                    bb:95:0d:3c:71:4c:0c:bd:80:dd:cb:c9:04:0f:e4:
                    3c:68:47:59:d2:30:52:d1:b1:b4:df:ec:cd:b4:36:
                    49:fe:c1:62:f6:19:6e:cd:72:61:b4:35:e7:ea:95:
                    40:54:58:c5:f8:ac:a4:65:6a:4e:ef:83:fe:1a:da:
                    3f:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:15:7A:96:F4:01:AC:0E:7F:FE:E4:3C:B9:B3:1F:60:49:E9:22:5C
            X509v3 Authority Key Identifier:
                keyid:00:71:1F:2D:D7:66:7C:FB:08:80:4B:E8:FA:28:4A:49:E6:13:ED:C4

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/AHEfLddmfPsIgEvo-ihKSeYT7cQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/AHEfLddmfPsIgEvo-ihKSeYT7cQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/qhV6lvQBrA5__uQ8ubMfYEnpIlw.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  192.50.151.0/24

    Signature Algorithm: sha256WithRSAEncryption
         88:41:74:0e:6e:24:93:51:38:cd:80:d2:dc:5c:75:a3:48:6d:
         a9:f2:f0:95:e2:50:9b:57:32:b8:57:3f:3d:fb:cb:bc:5f:62:
         94:7a:50:42:61:c5:81:c2:3d:13:e4:d4:1c:93:77:28:60:67:
         cc:a6:3f:a3:5a:e4:59:02:f7:88:85:48:28:7c:52:85:6f:bd:
         fa:5b:74:f8:85:dc:17:b1:0b:79:e6:f3:80:f6:29:61:d0:f9:
         8a:31:9e:40:c2:7f:39:3c:0b:5c:86:d9:66:a7:42:1e:c8:09:
         6b:c8:3e:15:1c:c8:e4:c1:b3:76:25:fb:e6:c7:cd:54:75:b4:
         07:98:fb:70:6a:9b:b2:37:7b:da:cb:1a:29:3a:e6:d7:3a:68:
         e3:ad:9f:ab:56:61:d0:b7:9b:43:5b:f1:11:71:ac:4c:fc:7f:
         77:bd:9e:f9:2c:6a:80:7f:5f:53:47:d8:80:13:2b:7f:cc:df:
         30:a9:7c:3c:5f:1b:a7:e1:7f:9e:36:5b:49:b7:5e:bb:8f:44:
         38:89:4b:70:d7:bd:c8:ed:94:a7:49:66:7c:1b:d9:00:de:87:
         71:06:c2:91:ae:1a:91:8b:f3:e1:e9:6c:c5:31:f8:1a:fe:e5:
         e0:52:66:37:8b:73:1a:83:90:70:32:e3:0d:02:cc:3b:9b:39:
         7a:22:73:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:49 2024 by rpki-client on console-fra.rpki-client.org