Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/hDJty9E41Vu3PiaCZeOsWvxceV4.roa
File:                     hDJty9E41Vu3PiaCZeOsWvxceV4.roa (raw, json)
Hash identifier:          raERE9rRuoB3uabb117kqUyjypYjJVkmLIindOK5Z8Y=
Subject key identifier:   84:32:6D:CB:D1:38:D5:5B:B7:3E:26:82:65:E3:AC:5A:FC:5C:79:5E
Certificate issuer:       /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial:       01C9
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/hDJty9E41Vu3PiaCZeOsWvxceV4.roa
Signing time:             Tue 30 May 2023 17:38:21 +0000
ROA not before:           Tue 30 May 2023 17:38:21 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        240a:6b:5d00::/40 maxlen: 40

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 457 (0x1c9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
        Validity
            Not Before: May 30 17:38:21 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=84326DCBD138D55BB73E268265E3AC5AFC5C795E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:22:ed:42:55:4d:6b:48:1e:d8:e6:90:c4:8b:
                    ce:18:91:52:18:40:33:18:fa:75:1a:78:fd:7c:55:
                    b9:68:12:9e:1a:ec:e6:17:a5:31:47:22:e8:35:22:
                    25:bd:e9:32:09:15:e4:09:f1:84:9c:1b:cf:ea:29:
                    61:94:d9:12:5a:5d:cb:4e:b6:9b:3f:73:67:74:0f:
                    c9:71:ae:f5:b4:b1:dc:1c:1d:e7:22:40:8d:d9:54:
                    6e:7a:50:58:e1:3f:5d:9c:38:76:52:88:95:76:b3:
                    ed:4d:bd:5e:5e:39:3b:5f:4e:96:f3:cf:8c:63:8c:
                    ae:7c:d0:62:aa:8a:4b:78:be:ee:6e:39:17:60:06:
                    f6:b5:3d:61:56:d1:27:b4:62:10:34:24:b7:40:12:
                    4e:76:3c:00:2f:48:06:2a:c0:2a:21:4c:c2:94:89:
                    75:6a:7f:da:39:74:76:32:4c:ed:87:a4:7e:82:1d:
                    0b:56:5d:ea:05:b4:e2:da:46:51:6f:90:52:33:0d:
                    5d:a2:42:fd:fe:53:8d:ae:ea:2c:23:c9:8b:75:75:
                    74:b3:22:75:f3:a2:89:a7:d9:89:83:04:f1:86:6d:
                    28:9c:d8:5b:6b:cc:3a:2e:13:5b:ee:c9:be:bb:71:
                    21:2f:92:44:42:26:64:c7:02:26:ac:aa:bd:7f:7d:
                    e7:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                84:32:6D:CB:D1:38:D5:5B:B7:3E:26:82:65:E3:AC:5A:FC:5C:79:5E
            X509v3 Authority Key Identifier:
                keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/hDJty9E41Vu3PiaCZeOsWvxceV4.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  240a:6b:5d00::/40

    Signature Algorithm: sha256WithRSAEncryption
         31:b7:10:27:e7:24:d1:2e:8a:ad:03:82:50:92:6f:fa:1a:06:
         69:3b:fc:83:bf:80:53:cc:70:7b:b2:00:a1:f7:ad:14:2c:27:
         2a:9f:99:64:f2:f9:1d:8c:c2:3a:6f:b2:df:cb:96:7e:2e:5b:
         19:81:c4:ab:4d:a3:fe:16:fb:bc:65:58:d6:8a:60:23:9f:d3:
         17:01:69:16:b8:f6:eb:1f:43:c9:39:23:db:3c:dd:43:84:05:
         a1:ec:8a:ae:c7:38:f0:80:10:99:bd:55:b0:cc:61:66:b2:89:
         3c:c5:88:53:c5:6f:86:50:e8:e3:82:57:9b:13:72:e3:8c:52:
         cf:2a:d5:70:c3:45:e8:d7:13:e3:72:19:8e:d1:70:4d:46:9f:
         48:cf:99:fd:42:7e:0b:1c:ae:ef:e1:ac:12:3c:1c:40:14:d7:
         ce:e9:af:b4:52:ac:59:d3:4f:ae:9e:ad:a7:8a:32:a4:fa:cd:
         9c:7a:51:c1:a6:a9:b3:c4:77:bf:9a:f4:85:36:d6:ee:7f:5e:
         c3:e3:1c:c5:9d:5f:d6:66:eb:86:13:5c:98:79:fc:1f:cd:b0:
         57:39:60:3a:f7:c3:84:31:38:77:3f:de:64:e5:06:85:41:57:
         21:e0:16:14:0e:dc:32:09:60:ff:6c:f6:1a:be:1e:d7:d8:4d:
         73:cb:47:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:58 2024 by rpki-client on console-ams.rpki-client.org