Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/H7U2x4prZ7odyIy2ZnWt9svSuhE.roa
File:                     H7U2x4prZ7odyIy2ZnWt9svSuhE.roa (raw, json)
Hash identifier:          DqSAGkpct3jZ2l24dSKpcVc0wF0M03gH0j+PAuYN/4Y=
Subject key identifier:   1F:B5:36:C7:8A:6B:67:BA:1D:C8:8C:B6:66:75:AD:F6:CB:D2:BA:11
Certificate issuer:       /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial:       14
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/H7U2x4prZ7odyIy2ZnWt9svSuhE.roa
Signing time:             Tue 21 Mar 2023 17:11:48 +0000
ROA not before:           Tue 21 Mar 2023 17:11:48 +0000
ROA not after:            Thu 14 Mar 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        240a:2:d90::/44 maxlen: 44

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 20 (0x14)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
        Validity
            Not Before: Mar 21 17:11:48 2023 GMT
            Not After : Mar 14 01:30:02 2024 GMT
        Subject: CN=1FB536C78A6B67BA1DC88CB66675ADF6CBD2BA11
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:2a:2a:c1:86:40:d8:3a:63:6d:3a:4d:4b:81:
                    36:0e:24:18:c4:be:75:cc:e3:a6:66:ab:68:9b:6d:
                    c1:d8:81:67:e9:5b:f9:f9:a0:76:b4:af:fd:98:fe:
                    f8:99:58:7a:a0:14:9c:2e:d3:bc:fc:af:1b:33:14:
                    6c:7f:d0:bc:d1:48:28:65:d6:74:ad:4a:77:79:0a:
                    bb:61:da:e7:fe:59:af:c3:9f:f3:5a:62:d4:0f:09:
                    78:46:05:38:ab:17:b0:a3:97:6e:d1:26:cf:9d:3c:
                    5b:e9:40:cc:d4:39:22:8c:af:e9:04:5f:75:bc:63:
                    86:50:db:68:20:22:a9:d2:53:d5:51:a2:8c:1e:45:
                    ab:77:4f:5b:8f:89:93:f9:6d:72:1e:4b:fc:9c:d5:
                    3f:79:57:96:77:62:f5:48:73:0a:40:81:65:3f:b8:
                    8b:26:17:e5:24:ff:7c:72:24:54:e4:5e:0b:c2:84:
                    d4:46:a5:65:5e:f7:ba:6c:b0:75:0d:ad:2a:51:56:
                    83:53:3b:25:fc:7d:b5:96:af:0c:a6:21:56:26:5d:
                    88:23:8b:0c:eb:23:d0:e1:d8:c2:00:ca:ad:7b:db:
                    97:29:23:72:cf:48:96:92:8f:28:c3:d6:59:1c:c5:
                    3b:73:10:9f:10:6d:46:92:e1:5d:ea:79:41:28:54:
                    89:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:B5:36:C7:8A:6B:67:BA:1D:C8:8C:B6:66:75:AD:F6:CB:D2:BA:11
            X509v3 Authority Key Identifier:
                keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/H7U2x4prZ7odyIy2ZnWt9svSuhE.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  240a:2:d90::/44

    Signature Algorithm: sha256WithRSAEncryption
         34:df:a1:75:99:11:a4:ea:d9:f6:c9:cb:11:4e:8a:70:f7:a5:
         a7:dd:d8:61:a4:62:23:98:d2:c8:d3:76:1b:eb:f0:20:30:37:
         6f:d7:b4:18:82:41:d9:69:ba:7a:88:8a:6c:ce:2e:76:b3:58:
         6e:d8:36:96:75:37:e7:eb:38:b4:0d:68:96:64:88:56:65:b8:
         fc:d2:11:bd:02:c9:c3:d7:d0:95:ec:51:ba:89:bf:de:63:87:
         1b:22:63:d3:d1:e5:64:e4:42:50:fb:0e:60:75:d5:39:e7:8b:
         3d:3f:fb:30:05:83:f7:a7:f6:8e:49:4c:cf:02:78:7e:b3:ce:
         fe:7a:32:25:22:74:b2:38:00:a8:38:13:fa:06:84:15:50:d7:
         ea:dd:82:24:d0:cb:c3:1c:10:3e:36:71:db:df:2f:d4:03:9b:
         9f:47:0c:bd:ad:14:0d:33:16:88:f6:60:eb:c5:31:48:e4:e2:
         ec:47:68:fb:a3:78:12:7d:b1:9a:f6:aa:5e:de:9a:59:a3:a2:
         6f:eb:60:5a:8f:31:61:60:a9:c2:0d:38:97:64:08:5e:a8:4d:
         7e:1b:f3:80:df:a3:9d:6a:e4:cc:69:2c:88:bf:0c:c0:f5:c6:
         60:1a:6c:33:8d:44:59:62:47:c3:f6:98:da:96:b2:cd:e2:0b:
         75:86:9a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:49 2024 by rpki-client on console-fra.rpki-client.org