Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Cr3TsI706UbV7wlny4Yv-mhgD5w.roa
File:                     Cr3TsI706UbV7wlny4Yv-mhgD5w.roa (raw, json)
Hash identifier:          LBdqTBGRejOULYYjGLax/1UTFEmwwwoYSH/lsvbEEak=
Subject key identifier:   0A:BD:D3:B0:8E:F4:E9:46:D5:EF:09:67:CB:86:2F:FA:68:60:0F:9C
Certificate issuer:       /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial:       022D
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Cr3TsI706UbV7wlny4Yv-mhgD5w.roa
Signing time:             Tue 30 May 2023 17:42:24 +0000
ROA not before:           Tue 30 May 2023 17:42:24 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        240a:6b:c900::/40 maxlen: 40

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 557 (0x22d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
        Validity
            Not Before: May 30 17:42:24 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=0ABDD3B08EF4E946D5EF0967CB862FFA68600F9C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:36:05:bd:09:a7:c9:e7:41:d8:b2:4a:64:bd:
                    d2:eb:57:03:94:c7:b3:b6:32:f7:79:64:e7:b3:f5:
                    7b:f0:5b:f0:cb:48:27:36:43:cb:58:b7:be:29:3f:
                    88:3e:a5:36:8e:b4:9a:21:8a:14:5d:5a:26:9a:cf:
                    d5:17:d7:4c:c9:e8:84:f5:bf:48:bd:94:48:14:0a:
                    6a:87:5b:8a:2d:d1:d3:b5:34:b4:7b:44:be:ad:92:
                    c8:93:b0:42:1f:ef:c4:fd:f3:60:67:fa:4f:03:06:
                    3f:af:bb:ae:d3:26:29:f3:08:9c:de:a6:97:53:6b:
                    82:8d:e5:5a:59:0f:43:a3:c3:b4:c4:b5:7d:75:89:
                    04:80:1a:0e:08:c8:d1:b3:1d:4c:ce:1b:89:e5:63:
                    0c:29:35:56:d2:89:7f:25:41:28:50:17:06:56:d3:
                    cb:9a:9b:9f:01:b9:32:d5:d1:db:62:43:3a:6c:aa:
                    05:d1:93:58:ec:0b:70:6e:89:b5:e2:db:e5:c6:e6:
                    91:09:83:c5:23:4d:8a:01:33:1f:b3:8f:98:a9:cc:
                    06:67:2a:51:de:f1:4f:6e:52:a5:2d:3c:84:84:ea:
                    48:fe:a0:7d:90:2c:ee:32:12:14:fd:58:c9:e7:b5:
                    99:e6:60:7d:6c:60:91:02:27:2e:33:95:c7:70:a0:
                    d2:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:BD:D3:B0:8E:F4:E9:46:D5:EF:09:67:CB:86:2F:FA:68:60:0F:9C
            X509v3 Authority Key Identifier:
                keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Cr3TsI706UbV7wlny4Yv-mhgD5w.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  240a:6b:c900::/40

    Signature Algorithm: sha256WithRSAEncryption
         6d:b5:08:c6:d6:48:1d:2d:e8:b5:e5:f9:5d:13:20:94:e9:36:
         ad:c1:2c:68:0d:02:08:fe:73:90:93:c4:89:c1:dd:34:9f:c1:
         0e:99:1e:06:db:e5:89:37:34:ae:3a:fa:9a:7c:c6:ad:2c:4f:
         5f:8d:f1:64:fe:91:01:de:e0:39:b3:61:c3:d9:45:1a:43:87:
         b0:2d:36:4d:e7:67:1d:e9:70:5a:0d:15:71:9b:bd:c5:84:6b:
         3f:48:47:7c:5a:60:f2:02:14:b6:84:bf:84:35:53:a5:e1:36:
         72:88:70:2a:df:ab:8b:4d:d1:2d:fa:38:21:95:c1:58:4d:cf:
         3c:bc:f2:de:7b:a5:8d:02:10:e9:d6:6b:23:68:dd:92:1b:cb:
         6e:05:9b:72:9f:b2:f8:f5:cd:a2:da:8d:34:94:c2:30:e5:af:
         37:04:95:08:84:44:57:23:3e:3f:17:76:dc:ea:be:e3:9c:88:
         e0:da:39:04:83:be:11:70:4c:2e:69:27:67:ea:54:ef:78:d5:
         e8:87:21:e7:f7:bb:26:82:a9:23:1d:77:16:04:95:0a:e3:b1:
         8d:2b:1a:d7:83:01:21:6d:16:39:c1:31:c0:8e:f6:7c:e7:13:
         05:d1:ed:ee:d7:3b:d6:e6:81:28:e7:82:e5:67:ac:e5:64:16:
         ef:88:d0:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:49 2024 by rpki-client on console-fra.rpki-client.org