Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/kXhFyWJV9BbPuPyejMNLTS2Atz4.roa
File:                     kXhFyWJV9BbPuPyejMNLTS2Atz4.roa (raw, json)
Hash identifier:          iOZ3ncBSWNb9Hhgri1b4fhVvaI/jWr9aO6nzG7M4da0=
Subject key identifier:   91:78:45:C9:62:55:F4:16:CF:B8:FC:9E:8C:C3:4B:4D:2D:80:B7:3E
Certificate issuer:       /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial:       30
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/kXhFyWJV9BbPuPyejMNLTS2Atz4.roa
Signing time:             Tue 30 May 2023 16:02:09 +0000
ROA not before:           Tue 30 May 2023 16:02:09 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        240a:61:1c00::/40 maxlen: 40

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 48 (0x30)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
        Validity
            Not Before: May 30 16:02:09 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=917845C96255F416CFB8FC9E8CC34B4D2D80B73E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:11:3b:84:44:29:42:53:ae:b3:1e:85:70:f1:
                    77:3e:ba:f4:88:bd:0c:57:3c:94:90:18:93:46:2a:
                    d9:8f:11:6c:ab:20:e2:3e:0d:fc:fc:b0:ef:14:b7:
                    cf:96:7a:95:1a:1e:6b:fe:7c:79:df:9f:8f:a4:7c:
                    8d:7a:49:82:9e:3c:45:26:9f:40:16:ce:99:23:ee:
                    72:fa:1a:f7:d6:12:b4:98:b4:94:85:2d:a9:55:7b:
                    17:5f:58:aa:d2:96:4b:44:a2:d0:c9:a5:d9:d8:0c:
                    bc:be:29:f6:17:e4:e3:26:ae:f3:94:1c:e6:e2:ed:
                    20:0f:55:6e:a1:e8:31:1d:a2:a6:82:35:da:45:37:
                    35:91:ab:44:8a:a0:80:23:0d:d7:51:d2:d3:fd:b7:
                    2a:c1:2a:7c:9b:14:7c:75:22:24:27:9c:56:8a:ea:
                    8a:99:e2:58:4c:38:27:b9:d0:2c:1d:7f:77:43:d8:
                    a4:08:c2:b5:02:86:66:0f:1d:7e:42:bf:ba:3d:93:
                    6d:75:4c:98:8e:43:1b:ff:98:02:24:f0:9d:c9:52:
                    e9:66:63:82:a6:d9:94:d4:3b:45:41:d6:bb:e6:fc:
                    3f:c9:f0:e7:b3:a3:2b:29:38:a3:14:18:f4:cf:c7:
                    42:bd:0b:1b:ef:e5:46:94:b2:73:ba:97:60:36:25:
                    7a:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:78:45:C9:62:55:F4:16:CF:B8:FC:9E:8C:C3:4B:4D:2D:80:B7:3E
            X509v3 Authority Key Identifier:
                keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/kXhFyWJV9BbPuPyejMNLTS2Atz4.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  240a:61:1c00::/40

    Signature Algorithm: sha256WithRSAEncryption
         25:6f:a2:70:f4:2b:d7:e9:e2:ae:1d:4c:51:c6:a0:c2:a8:7d:
         e1:54:5b:32:2b:af:dc:49:1d:58:62:37:04:cd:e0:60:88:00:
         60:23:6b:3b:98:34:cd:99:62:a2:48:21:15:a9:74:40:28:38:
         a1:d6:99:60:bb:92:ad:a7:75:51:37:1d:dd:6f:23:a9:3d:45:
         5d:fe:f2:70:98:43:f9:87:11:28:4a:56:e0:7c:ea:ce:e7:3d:
         0f:b3:34:42:16:de:a7:10:c4:47:b9:7a:3b:83:91:cb:33:b5:
         81:d0:b4:d8:3c:06:30:c5:23:42:93:e7:c1:da:d0:bf:7c:24:
         c1:5c:9a:34:72:5b:48:c2:97:1c:1f:96:e1:c6:3f:0c:81:b0:
         c3:1d:47:ec:24:02:6f:28:5a:f8:0d:df:c9:94:67:21:83:39:
         f5:2f:ad:ad:b5:cb:76:f7:d0:58:a6:05:f5:6c:dc:5d:e4:bf:
         77:fc:55:f7:d4:01:e6:d2:7c:68:91:d0:17:91:ef:2e:df:06:
         f5:0a:1d:3c:b3:1e:9a:d6:ef:25:86:21:79:03:82:88:6b:22:
         b9:8e:ae:d2:e9:9d:63:3d:03:93:3c:79:82:3b:75:e6:31:a8:
         31:5f:5d:a6:a8:9d:c9:97:2c:c2:61:9a:02:5b:48:c7:a8:d4:
         29:f5:8d:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:50 2024 by rpki-client on console-fra.rpki-client.org