Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/AiGQUeiPmqoBIZamwOMAmBLNll8.roa
File:                     AiGQUeiPmqoBIZamwOMAmBLNll8.roa (raw, json)
Hash identifier:          fll+RRQ/YeMR3+eXOMNyDx1R+OYuQBcnT/guk8HCnIg=
Subject key identifier:   02:21:90:51:E8:8F:9A:AA:01:21:96:A6:C0:E3:00:98:12:CD:96:5F
Certificate issuer:       /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial:       21
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/AiGQUeiPmqoBIZamwOMAmBLNll8.roa
Signing time:             Tue 30 May 2023 16:02:05 +0000
ROA not before:           Tue 30 May 2023 16:02:05 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        240a:6b:800::/40 maxlen: 40

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 33 (0x21)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
        Validity
            Not Before: May 30 16:02:05 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=02219051E88F9AAA012196A6C0E3009812CD965F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:fb:b9:d6:d6:bf:84:ea:35:5b:9b:bb:af:69:
                    41:db:fb:a8:80:d9:a9:41:69:11:52:bf:3d:fc:60:
                    4c:cd:66:9a:65:67:7a:38:60:e7:7d:16:42:ea:ef:
                    4f:ee:99:7f:a6:69:51:b3:7e:e2:1d:ed:4c:9c:60:
                    21:e3:40:9d:69:83:d0:4b:fe:9b:da:02:9b:0e:42:
                    48:34:e6:de:c1:22:5a:7d:e7:80:e1:7a:ab:b8:0b:
                    10:f2:3e:fd:4f:30:e9:88:f2:94:6e:c6:90:3a:9f:
                    9b:6b:17:6c:49:87:fc:60:fe:38:b3:5d:70:99:46:
                    0a:91:98:43:05:c7:3e:54:43:47:35:bc:8a:a1:6c:
                    fb:22:51:a6:65:4b:a1:a0:53:02:6c:bb:7b:08:42:
                    2e:28:ba:0b:af:96:54:f1:7d:d9:9e:98:ab:e1:08:
                    3b:5b:46:b9:e2:df:b0:80:45:27:a5:1d:4a:0f:54:
                    a6:97:b9:05:81:19:68:0c:43:87:65:35:e6:18:d2:
                    f2:a2:d3:e8:09:e5:d2:6a:a7:aa:3d:e7:d3:98:4f:
                    3b:8f:68:87:e1:16:86:2b:da:00:d4:35:13:67:35:
                    0c:3f:7a:61:80:df:7f:ce:89:da:02:16:0b:0f:50:
                    49:7a:21:bc:b9:73:ae:0a:3e:95:db:e6:5f:1a:52:
                    08:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:21:90:51:E8:8F:9A:AA:01:21:96:A6:C0:E3:00:98:12:CD:96:5F
            X509v3 Authority Key Identifier:
                keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/AiGQUeiPmqoBIZamwOMAmBLNll8.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  240a:6b:800::/40

    Signature Algorithm: sha256WithRSAEncryption
         be:98:2e:70:23:7c:ff:87:2a:1c:21:c2:33:f6:81:b8:7c:31:
         0f:ae:bf:92:8c:ee:23:f8:3b:47:eb:db:8d:f2:12:98:d9:a4:
         a6:a3:3e:10:f4:95:48:6f:f7:ac:a9:a0:e0:73:e7:5f:c1:58:
         65:2a:57:5c:3c:44:de:fe:f8:72:d4:37:a0:5b:11:5e:e4:ba:
         b1:e9:8a:38:b4:66:20:51:ad:87:b7:e0:0f:c2:e1:b1:e1:13:
         aa:90:be:0c:bb:67:3f:90:14:b6:ea:89:d0:2d:9a:10:0c:7a:
         b2:cf:74:e8:d1:7a:bb:04:73:f0:64:55:7c:66:25:7c:13:02:
         1e:b1:fd:41:b0:9d:60:c2:52:42:bf:72:87:b5:67:44:15:58:
         ae:3d:e3:7d:ad:d8:e0:da:f3:dc:40:6f:44:0f:2f:6e:2f:c4:
         6c:f0:7d:5b:1b:98:c3:d6:83:27:cd:75:c5:fb:31:09:dc:69:
         16:e8:bd:f0:c6:67:41:68:0c:5a:93:7d:9f:24:66:b5:46:c0:
         1d:45:2c:24:c0:c0:bc:a6:20:c7:14:6d:15:fa:4a:21:0b:88:
         d1:c4:b8:17:45:96:59:dd:ab:8b:34:46:90:44:6b:5c:7d:90:
         a9:67:c9:67:22:22:a1:85:dc:63:36:53:3d:cd:10:ac:9e:7b:
         75:43:f2:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:49 2024 by rpki-client on console-fra.rpki-client.org