Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/YhKhmsJpY1Pn8E7gt3ds36bx-KE.roa
File:                     YhKhmsJpY1Pn8E7gt3ds36bx-KE.roa (raw, json)
Hash identifier:          Qtf+LDM+gSmgIkNkRRnxWxNpvoE9SNRsuTwVuQ8smAs=
Subject key identifier:   62:12:A1:9A:C2:69:63:53:E7:F0:4E:E0:B7:77:6C:DF:A6:F1:F8:A1
Certificate issuer:       /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial:       014D
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/YhKhmsJpY1Pn8E7gt3ds36bx-KE.roa
Signing time:             Tue 30 May 2023 17:32:24 +0000
ROA not before:           Tue 30 May 2023 17:32:24 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        240a:6b:4f00::/40 maxlen: 40

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 333 (0x14d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
        Validity
            Not Before: May 30 17:32:24 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=6212A19AC2696353E7F04EE0B7776CDFA6F1F8A1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:b5:22:d5:c8:5c:6b:bc:2d:4d:29:44:81:a3:
                    2e:07:db:ce:1e:e3:32:11:e3:a4:9d:e7:a3:85:3a:
                    c4:63:18:64:2a:04:ef:a3:61:9b:24:08:fc:65:da:
                    5c:7e:a4:69:06:0c:f7:2e:d4:ea:3b:2b:44:9c:dd:
                    e8:0f:7c:dd:c6:31:ea:e9:2a:82:63:87:8d:50:89:
                    f7:e9:4e:a7:f5:47:41:48:0b:04:e9:a9:de:2b:c4:
                    40:e9:69:29:79:78:85:48:ce:4b:36:8e:a0:81:60:
                    58:74:d5:56:17:68:e1:10:8b:3a:b3:cc:6b:87:ad:
                    2b:12:fd:19:e1:64:ec:96:ef:cb:a4:fd:00:44:34:
                    bd:cd:53:e3:61:3c:93:22:1a:71:ae:24:36:18:a4:
                    27:e6:fe:0b:c2:cd:1e:65:35:ac:9d:60:9f:9c:60:
                    55:28:ae:2f:1c:3a:b9:9a:fa:60:79:51:1e:58:19:
                    2e:96:f3:1e:eb:7f:35:13:ff:93:b0:17:b1:88:cd:
                    41:d1:1d:6a:28:16:a2:24:3c:3e:d0:13:39:fc:52:
                    de:56:80:99:d3:5b:7d:5b:a7:b7:a1:5b:bc:82:5c:
                    5a:1f:a4:82:b1:82:95:37:f4:a4:90:9e:83:4c:16:
                    7b:08:63:84:72:ff:7d:0b:e8:c7:d3:db:dc:6f:5b:
                    3b:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:12:A1:9A:C2:69:63:53:E7:F0:4E:E0:B7:77:6C:DF:A6:F1:F8:A1
            X509v3 Authority Key Identifier:
                keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/YhKhmsJpY1Pn8E7gt3ds36bx-KE.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  240a:6b:4f00::/40

    Signature Algorithm: sha256WithRSAEncryption
         37:cf:73:d9:3c:01:88:62:80:fb:47:da:0e:cf:1d:28:59:16:
         bb:9c:e3:0a:12:6e:64:d4:0f:4f:eb:cd:f8:cd:b7:c4:0c:38:
         14:d8:44:85:89:e4:fc:b7:90:75:1a:b9:8c:25:5d:87:23:d7:
         98:96:36:ea:47:56:d4:81:87:d6:07:e1:47:b6:d9:49:cc:9d:
         81:3b:26:85:8f:86:36:15:05:54:df:c9:d7:1f:f9:ef:4e:0d:
         7d:7e:7f:f8:e1:9a:48:37:e6:f0:9a:4c:57:10:ce:a9:66:8b:
         50:6e:47:22:1d:28:25:e3:78:4a:f2:13:3c:91:5f:cc:69:80:
         d6:da:57:64:1c:66:b4:8c:7a:a1:a5:45:bb:28:3d:c4:cf:18:
         ad:53:5d:5d:a0:45:9a:23:a0:31:e9:e7:cf:37:b9:53:40:0a:
         71:c2:1d:45:a2:79:cd:82:7b:a7:a2:45:cc:2c:92:0a:69:31:
         31:03:a4:e2:77:f8:d9:b1:e6:63:0f:cb:08:42:38:ca:0b:19:
         70:c9:7f:ed:ad:37:16:43:80:f2:e5:4c:9e:1b:36:a8:5f:73:
         c5:39:ff:fd:e1:6f:f1:b7:22:08:07:86:d3:bb:52:32:5d:a3:
         55:c9:20:32:42:2f:97:fe:f5:68:45:02:73:03:ed:71:8c:1d:
         c8:00:a3:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:57 2024 by rpki-client on console-ams.rpki-client.org