Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/N0Rdn5HVzP-sDKCxVGi3iXAqFKI.roa
File:                     N0Rdn5HVzP-sDKCxVGi3iXAqFKI.roa (raw, json)
Hash identifier:          Bku0941rwui77N4K0gRd03HOYl+7OMatrtTkrzO9mUY=
Subject key identifier:   37:44:5D:9F:91:D5:CC:FF:AC:0C:A0:B1:54:68:B7:89:70:2A:14:A2
Certificate issuer:       /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial:       0216
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/N0Rdn5HVzP-sDKCxVGi3iXAqFKI.roa
Signing time:             Tue 30 May 2023 17:40:29 +0000
ROA not before:           Tue 30 May 2023 17:40:29 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        240a:6b:c600::/40 maxlen: 40

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 534 (0x216)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
        Validity
            Not Before: May 30 17:40:29 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=37445D9F91D5CCFFAC0CA0B15468B789702A14A2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:df:93:a3:98:d4:c7:8b:4d:15:34:75:9c:27:
                    38:5f:d0:b1:8b:3f:e5:20:73:94:ee:26:94:51:3f:
                    67:c5:6d:b2:63:0d:d1:26:ab:d1:8b:de:79:b2:48:
                    4b:c1:be:fd:ae:46:3e:fb:ab:48:91:a9:6e:7b:20:
                    38:d0:23:9e:da:44:c1:8d:6f:1d:21:3a:9e:52:c2:
                    d0:32:32:df:fc:52:43:ab:07:06:ab:60:92:a1:18:
                    1b:81:ba:9c:ad:ef:78:d9:23:5e:55:86:1d:be:2c:
                    6f:fc:32:15:6b:85:eb:b9:37:0b:06:78:78:73:6c:
                    ad:82:f1:04:a5:6b:00:ed:f7:75:fd:4c:f6:7e:d0:
                    b5:b5:cf:b7:95:64:27:46:8b:94:03:8d:f1:e1:6e:
                    7b:3a:02:1c:cb:9e:ce:43:fe:2c:80:b4:45:be:d8:
                    85:0a:75:37:3b:4a:35:b1:13:2f:b9:b8:05:d2:14:
                    37:3c:a1:80:43:85:86:da:03:2c:de:37:ff:70:f4:
                    e9:c2:93:6a:07:d8:96:27:e1:e1:2a:97:45:86:ae:
                    52:80:45:15:98:61:b1:43:dc:6a:c0:5c:ec:fe:a5:
                    5a:38:b7:09:ae:10:d4:f4:ef:52:7e:ad:ec:ab:39:
                    88:d2:20:ba:20:94:bf:62:af:aa:dc:27:43:12:f5:
                    47:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:44:5D:9F:91:D5:CC:FF:AC:0C:A0:B1:54:68:B7:89:70:2A:14:A2
            X509v3 Authority Key Identifier:
                keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/N0Rdn5HVzP-sDKCxVGi3iXAqFKI.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  240a:6b:c600::/40

    Signature Algorithm: sha256WithRSAEncryption
         b5:3c:b8:9d:71:5f:4e:2d:6c:99:17:8d:ad:77:4f:b3:6f:24:
         39:c7:de:9f:4d:31:2b:6b:dd:71:35:f4:51:4d:a0:68:0f:81:
         83:05:c6:d7:78:bb:82:93:42:02:ee:64:02:e2:21:6c:ad:6b:
         ce:40:a2:1b:af:58:bd:d2:2c:05:c5:e3:5b:64:a1:84:91:33:
         e9:11:48:98:9f:af:02:f8:1c:ac:22:eb:ff:36:41:cb:26:0b:
         5f:70:92:a6:62:09:10:31:a0:3c:5b:51:bd:b2:8c:bc:81:f0:
         a1:d0:24:77:24:a0:38:c1:ca:6b:04:e1:e1:78:c9:da:30:78:
         55:42:4a:e5:44:22:48:cf:60:77:05:15:40:8f:3a:dd:d8:91:
         c8:fe:bc:15:43:ad:6e:8b:4e:2c:ab:9a:bb:d2:84:0d:e0:ca:
         a0:5f:0d:69:2f:92:3f:38:ca:af:ad:e3:19:0e:95:5b:6f:85:
         ca:94:af:0c:c4:c6:e3:3e:3a:ee:29:42:a0:f2:cf:b3:3e:62:
         7f:21:a5:92:b8:f3:ce:9e:66:2f:a2:09:b2:5c:ab:cc:a0:e1:
         e3:3f:36:71:e0:a7:91:d1:32:41:e1:4b:05:d8:dd:c0:2f:c5:
         b8:fe:1d:88:fd:41:3d:95:c5:39:6d:27:29:49:49:da:e1:e2:
         fc:cd:67:47
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy
NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yMzA1MzAx
NzQwMjlaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDM3NDQ1RDlGOTFENUND
RkZBQzBDQTBCMTU0NjhCNzg5NzAyQTE0QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDH35OjmNTHi00VNHWcJzhf0LGLP+Ugc5TuJpRRP2fFbbJjDdEm
q9GL3nmySEvBvv2uRj77q0iRqW57IDjQI57aRMGNbx0hOp5SwtAyMt/8UkOrBwar
YJKhGBuBupyt73jZI15Vhh2+LG/8MhVrheu5NwsGeHhzbK2C8QSlawDt93X9TPZ+
0LW1z7eVZCdGi5QDjfHhbns6AhzLns5D/iyAtEW+2IUKdTc7SjWxEy+5uAXSFDc8
oYBDhYbaAyzeN/9w9OnCk2oH2JYn4eEql0WGrlKARRWYYbFD3GrAXOz+pVo4twmu
ENT071J+reyrOYjSILoglL9ir6rcJ0MS9UdZAgMBAAGjggIqMIICJjAdBgNVHQ4E
FgQUN0Rdn5HVzP+sDKCxVGi3iXAqFKIwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7
BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g
W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI
KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y
eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt
WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj
BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw
L0E5MUE3MzgxMDAwMC8zMDEyOS9OMFJkbjVIVnpQLXNES0N4VkdpM2lYQXFGS0ku
cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu
anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO
BAIAAjAIAwYAJAoAa8YwDQYJKoZIhvcNAQELBQADggEBALU8uJ1xX04tbJkXja13
T7NvJDnH3p9NMStr3XE19FFNoGgPgYMFxtd4u4KTQgLuZALiIWyta85AohuvWL3S
LAXF41tkoYSRM+kRSJifrwL4HKwi6/82QcsmC19wkqZiCRAxoDxbUb2yjLyB8KHQ
JHckoDjBymsE4eF4ydoweFVCSuVEIkjPYHcFFUCPOt3Ykcj+vBVDrW6LTiyrmrvS
hA3gyqBfDWkvkj84yq+t4xkOlVtvhcqUrwzExuM+Ou4pQqDyz7M+Yn8hpZK4886e
Zi+iCbJcq8yg4eM/NnHgp5HRMkHhSwXY3cAvxbj+HYj9QT2VxTltJylJSdrh4vzN
Z0c=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:57 2024 by rpki-client on console-ams.rpki-client.org