Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30304/kmRHGbSad97fdqYo8N2tC670u3w.roa
File:                     kmRHGbSad97fdqYo8N2tC670u3w.roa (raw, json)
Hash identifier:          tfJUdGe2qaa0Lz9dy+CL6t/2FC3eWeRqzUlCY5JtwOw=
Subject key identifier:   92:64:47:19:B4:9A:77:DE:DF:76:A6:28:F0:DD:AD:0B:AE:F4:BB:7C
Certificate issuer:       /CN=6A513AF7BF5D2DD629FD1826885C1002929305CD
Certificate serial:       07
Authority key identifier: 6A:51:3A:F7:BF:5D:2D:D6:29:FD:18:26:88:5C:10:02:92:93:05:CD
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/alE6979dLdYp_RgmiFwQApKTBc0.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30304/kmRHGbSad97fdqYo8N2tC670u3w.roa
Signing time:             Thu 11 May 2023 08:41:34 +0000
ROA not before:           Thu 11 May 2023 08:41:34 +0000
ROA not after:            Fri 10 May 2024 08:19:05 +0000
asID:                     59127
IP address blocks:        2401:7ec0:6000::/36 maxlen: 36

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7 (0x7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6A513AF7BF5D2DD629FD1826885C1002929305CD
        Validity
            Not Before: May 11 08:41:34 2023 GMT
            Not After : May 10 08:19:05 2024 GMT
        Subject: CN=92644719B49A77DEDF76A628F0DDAD0BAEF4BB7C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:af:26:ea:10:59:6c:27:f7:12:11:52:c4:bb:
                    6f:81:ee:56:a8:06:f5:66:09:f2:7e:27:fa:fc:36:
                    3f:dc:d4:c4:7d:9b:c7:2e:d6:bb:88:c2:c3:0a:da:
                    65:fa:e6:02:d4:7a:5e:9f:55:b3:c3:63:2f:eb:ed:
                    e0:f8:25:d0:6a:9f:0e:62:4d:eb:8c:cb:f3:b1:cc:
                    b6:50:27:d1:d2:28:e5:8f:71:19:7e:3e:b2:c3:04:
                    6f:02:66:8a:43:52:0d:29:d6:69:c2:57:26:93:47:
                    7d:fb:cc:d1:d4:11:fa:51:9c:54:13:c0:1a:a1:17:
                    ae:d0:7f:8b:29:f9:e5:c6:28:37:52:28:84:e7:eb:
                    a3:46:3a:da:64:19:df:77:65:87:24:33:25:2e:d8:
                    9a:3c:2f:1c:f6:77:da:13:e9:5b:7f:5b:66:68:d4:
                    ad:6a:ca:27:9b:19:9d:11:5d:27:67:0e:09:82:b2:
                    6a:89:85:3a:b6:da:12:fc:af:52:b9:5f:9e:f5:6c:
                    3e:7b:1d:0d:21:06:05:81:30:a4:b4:92:5c:71:74:
                    d0:20:1f:c1:16:2f:62:33:47:b0:ec:0d:45:93:90:
                    25:5d:c4:24:89:10:ed:88:dc:50:6f:4d:d1:44:0a:
                    2b:3a:3c:79:07:10:3c:4e:09:2c:ac:4a:33:fc:76:
                    da:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:64:47:19:B4:9A:77:DE:DF:76:A6:28:F0:DD:AD:0B:AE:F4:BB:7C
            X509v3 Authority Key Identifier:
                keyid:6A:51:3A:F7:BF:5D:2D:D6:29:FD:18:26:88:5C:10:02:92:93:05:CD

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30304/alE6979dLdYp_RgmiFwQApKTBc0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/alE6979dLdYp_RgmiFwQApKTBc0.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30304/kmRHGbSad97fdqYo8N2tC670u3w.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2401:7ec0:6000::/36

    Signature Algorithm: sha256WithRSAEncryption
         8a:c2:ea:eb:6b:d1:1b:02:66:53:28:01:c9:ad:11:8a:5f:50:
         7c:cf:ff:54:01:86:b1:84:76:3b:1c:67:a9:f8:47:8e:64:06:
         f1:cf:8d:d9:fd:13:0e:88:ab:92:79:7e:42:f4:2c:be:c8:d4:
         0a:97:a4:fa:0a:04:c0:9b:49:6e:88:08:94:5f:5f:d4:c9:a2:
         94:c5:c4:87:bc:8d:f2:0f:4f:d7:79:de:ae:a1:9e:70:44:30:
         9e:be:e4:a0:cb:3a:18:71:bd:62:79:c8:10:68:89:0d:a7:94:
         78:39:9f:26:46:ca:f6:0f:26:e6:26:95:f0:95:07:8d:2b:91:
         3a:58:37:f9:e3:ba:25:72:55:bf:b2:c9:6a:52:c7:83:80:e3:
         f1:50:14:4c:7b:51:bb:ae:35:15:96:99:05:9c:64:97:51:e9:
         ba:7f:97:1d:43:ae:cd:64:86:cd:d7:77:d3:22:6e:05:25:27:
         ef:87:12:43:02:34:f2:02:2c:fb:ef:f4:e9:e7:ab:26:df:90:
         a7:20:b0:83:40:41:56:bf:9b:61:14:94:ac:78:8f:3b:5d:e8:
         4a:65:11:42:fc:6d:e5:e2:66:38:3d:7e:73:54:4c:3a:fa:cf:
         04:7f:65:33:aa:5a:85:e3:ae:0a:eb:93:ef:25:23:62:d1:fd:
         9f:33:84:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:00 2024 by rpki-client on console-ams.rpki-client.org