Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30304/322scu8qY92iwaMI6F-SmK9mnuU.roa
File:                     322scu8qY92iwaMI6F-SmK9mnuU.roa (raw, json)
Hash identifier:          dAT6Y0Gw1si5HqU7Y08HyIBQE7TiwbZLJ3Z42MvnKZ0=
Subject key identifier:   DF:6D:AC:72:EF:2A:63:DD:A2:C1:A3:08:E8:5F:92:98:AF:66:9E:E5
Certificate issuer:       /CN=6A513AF7BF5D2DD629FD1826885C1002929305CD
Certificate serial:       04
Authority key identifier: 6A:51:3A:F7:BF:5D:2D:D6:29:FD:18:26:88:5C:10:02:92:93:05:CD
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/alE6979dLdYp_RgmiFwQApKTBc0.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30304/322scu8qY92iwaMI6F-SmK9mnuU.roa
Signing time:             Thu 11 May 2023 08:29:25 +0000
ROA not before:           Thu 11 May 2023 08:29:25 +0000
ROA not after:            Fri 10 May 2024 08:19:05 +0000
asID:                     59127
IP address blocks:        2401:7ec0:3000::/36 maxlen: 36

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4 (0x4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6A513AF7BF5D2DD629FD1826885C1002929305CD
        Validity
            Not Before: May 11 08:29:25 2023 GMT
            Not After : May 10 08:19:05 2024 GMT
        Subject: CN=DF6DAC72EF2A63DDA2C1A308E85F9298AF669EE5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:35:65:da:97:11:d3:ad:3f:5f:a9:5b:b6:bb:
                    88:fb:49:80:f3:72:28:82:83:fc:0d:e8:c6:85:1d:
                    e5:50:d8:6e:ff:cc:2d:64:cc:41:0c:04:c8:0f:bc:
                    f9:9c:89:7f:c0:17:5a:35:d0:12:05:b4:3e:aa:df:
                    ae:d0:ce:40:b3:e8:66:dd:fd:0f:79:be:71:33:11:
                    3d:bc:73:4f:bb:9b:d0:b4:ca:c3:7e:29:88:86:0a:
                    0b:c5:92:dd:f5:b3:e3:6e:12:73:cc:9f:10:bb:bd:
                    9e:96:51:f5:40:56:cb:b9:57:10:19:6c:b6:e1:81:
                    9c:2b:b4:44:bf:52:1f:0f:ba:0d:c4:06:74:cd:a2:
                    0c:b4:8d:9e:7d:1e:c6:d2:99:df:d3:db:d7:59:90:
                    ec:4b:69:5e:8f:2e:13:44:63:37:db:5e:d4:c5:4d:
                    c5:2f:cb:03:b3:3d:9e:85:9a:f3:82:5a:af:ea:f1:
                    cc:c0:3e:46:fd:b8:e2:2c:29:32:d1:db:88:08:6d:
                    da:59:fc:7b:47:02:71:af:f5:76:91:14:ea:ab:23:
                    03:da:ed:74:17:d1:3e:84:ab:d4:61:0c:6c:1c:b7:
                    90:17:e1:08:1e:7e:bf:35:a5:a1:61:b8:87:48:1d:
                    a8:40:4e:3b:d1:41:1f:ee:7d:62:d8:65:42:40:5c:
                    71:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DF:6D:AC:72:EF:2A:63:DD:A2:C1:A3:08:E8:5F:92:98:AF:66:9E:E5
            X509v3 Authority Key Identifier:
                keyid:6A:51:3A:F7:BF:5D:2D:D6:29:FD:18:26:88:5C:10:02:92:93:05:CD

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30304/alE6979dLdYp_RgmiFwQApKTBc0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/alE6979dLdYp_RgmiFwQApKTBc0.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30304/322scu8qY92iwaMI6F-SmK9mnuU.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2401:7ec0:3000::/36

    Signature Algorithm: sha256WithRSAEncryption
         9a:54:a0:e3:c6:41:43:08:e8:01:a9:22:d1:29:83:db:2a:56:
         85:33:c2:65:96:8d:d7:5a:22:97:6f:6a:47:7f:8c:97:c5:ac:
         56:a9:0c:a9:a4:71:38:de:eb:cf:a5:f0:47:c5:2a:24:f1:7f:
         a8:da:32:18:70:84:fa:49:ce:d3:9f:d1:86:46:0a:45:f3:0c:
         4b:e7:c5:00:24:11:53:74:c8:26:7e:b0:59:3b:9f:31:a7:4c:
         5e:fc:34:e8:e0:57:c3:ad:29:71:5c:a5:65:d1:08:25:ad:7e:
         86:7c:25:47:f7:56:0e:e7:28:41:5a:40:6b:cd:8d:f6:1c:d0:
         99:58:6b:8d:27:23:b0:77:98:58:26:e5:eb:d4:f1:68:0c:49:
         ee:64:1d:c0:54:a5:75:f0:d6:d3:cc:aa:83:9e:6a:50:4e:f3:
         60:72:4f:c4:f5:08:4e:9f:7c:80:f9:2b:45:3a:cd:ab:83:5f:
         4b:7e:fa:d0:fd:30:f5:01:91:a4:36:8c:46:cb:05:3e:86:dd:
         a1:29:44:9c:e4:8f:48:1a:9f:be:26:e4:44:ca:0d:70:c6:8f:
         d1:c7:fe:d9:85:d9:b9:4f:07:f8:90:f1:8f:3d:0c:a5:67:4a:
         b0:2a:09:ce:1f:2c:09:98:93:1b:13:da:f5:f9:77:44:90:ac:
         e9:2a:71:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:00 2024 by rpki-client on console-ams.rpki-client.org