Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30413/WImRDsyKrgTy-THZWpP3f4FVY5Y.roa
File:                     WImRDsyKrgTy-THZWpP3f4FVY5Y.roa (raw, json)
Hash identifier:          9e2sUUtOTfipBS49h8u3Ezslnbq5ZQZM+Bwngk3tiTk=
Subject key identifier:   58:89:91:0E:CC:8A:AE:04:F2:F9:31:D9:5A:93:F7:7F:81:55:63:96
Certificate issuer:       /CN=6A137C41EFB32248F58A4EAB898F5DE0F2A3BAD3
Certificate serial:       02
Authority key identifier: 6A:13:7C:41:EF:B3:22:48:F5:8A:4E:AB:89:8F:5D:E0:F2:A3:BA:D3
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ahN8Qe-zIkj1ik6riY9d4PKjutM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30413/WImRDsyKrgTy-THZWpP3f4FVY5Y.roa
Signing time:             Sat 24 Dec 2022 10:52:10 +0000
ROA not before:           Sat 24 Dec 2022 10:52:10 +0000
ROA not after:            Sun 24 Dec 2023 10:45:49 +0000
asID:                     63797
IP address blocks:        2400:c7e0::/32 maxlen: 48

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6A137C41EFB32248F58A4EAB898F5DE0F2A3BAD3
        Validity
            Not Before: Dec 24 10:52:10 2022 GMT
            Not After : Dec 24 10:45:49 2023 GMT
        Subject: CN=5889910ECC8AAE04F2F931D95A93F77F81556396
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:ce:d8:70:b9:ea:94:c8:f4:a2:18:8c:ed:a1:
                    06:33:75:85:3e:88:1d:3b:aa:dc:ee:20:29:56:a4:
                    64:32:0a:63:04:25:5b:c2:39:7e:1d:34:f0:39:62:
                    80:73:79:1c:55:dc:11:4c:7c:9b:d5:46:77:c3:6c:
                    32:4a:26:ae:47:52:f9:e9:5d:1a:64:24:00:01:54:
                    64:06:c8:e8:77:fd:d9:5d:e0:b8:f4:80:4b:68:7b:
                    5f:f5:5a:2b:9d:cf:eb:2a:73:7f:17:6e:9a:95:06:
                    2d:32:69:d7:be:76:e1:d1:a8:71:89:03:67:94:17:
                    15:80:4e:2f:64:5d:a1:d0:de:ee:b9:0b:c9:b9:9e:
                    23:e3:08:6d:68:93:12:7b:d5:20:e3:d6:9e:2b:9b:
                    58:24:31:77:5c:12:bb:34:92:73:3d:48:5a:56:c5:
                    5b:1a:25:ff:8a:1d:a6:7a:b5:58:29:ae:3a:4f:ef:
                    ee:31:00:45:ab:c7:af:3e:f0:35:f6:04:99:b1:6f:
                    7a:64:76:a5:06:cc:1e:86:39:24:06:50:e2:5e:fa:
                    a1:08:32:da:2e:70:ae:fc:3d:dc:c2:17:3c:ed:bf:
                    09:75:90:b1:18:6f:08:36:1c:c8:f6:49:54:2d:bc:
                    75:c5:c4:b5:03:a4:23:1b:41:7c:7a:1d:7a:70:dd:
                    cd:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                58:89:91:0E:CC:8A:AE:04:F2:F9:31:D9:5A:93:F7:7F:81:55:63:96
            X509v3 Authority Key Identifier:
                keyid:6A:13:7C:41:EF:B3:22:48:F5:8A:4E:AB:89:8F:5D:E0:F2:A3:BA:D3

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30413/ahN8Qe-zIkj1ik6riY9d4PKjutM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ahN8Qe-zIkj1ik6riY9d4PKjutM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30413/WImRDsyKrgTy-THZWpP3f4FVY5Y.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2400:c7e0::/32

    Signature Algorithm: sha256WithRSAEncryption
         27:36:47:28:ae:13:43:69:86:c5:ee:3f:f5:aa:c5:11:f8:e5:
         db:bb:66:1f:67:42:35:2b:b3:32:16:d1:00:10:8a:dd:87:13:
         28:2b:f0:00:b3:48:78:13:c4:f3:f8:f3:63:b3:83:d6:f2:c2:
         d9:ff:36:65:fe:00:e8:41:ef:3d:af:2a:ed:87:5c:3a:40:52:
         bb:dd:48:80:40:01:98:b9:76:00:16:0d:aa:d0:d2:8b:cb:6e:
         0d:c2:47:a9:a7:a5:1f:db:08:39:22:e6:8a:75:db:82:85:32:
         23:ae:21:c5:12:0b:60:be:e6:76:ab:93:26:8f:6b:9d:e3:be:
         8b:76:1b:85:26:08:f4:a6:f5:15:73:15:c1:29:58:d3:c5:5e:
         32:17:f7:31:29:78:3a:70:9d:9a:d8:0f:1b:a1:5d:8a:3c:76:
         13:25:e9:4a:c3:4e:ff:f7:c2:93:a6:d6:ef:d2:45:ef:f7:83:
         9a:e5:79:57:83:87:d3:96:3f:3d:13:40:af:b5:46:2e:f7:01:
         5f:24:ef:01:ac:c2:58:1f:f6:e3:c5:c1:18:8a:56:39:a4:4a:
         29:db:d1:7d:1f:ed:8a:3c:7f:c2:2e:83:65:0c:b5:bb:19:7f:
         df:d9:ea:8c:a8:02:62:0e:73:9f:f0:a3:a9:7c:90:16:28:94:
         e7:36:86:ea
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2QTEz
N0M0MUVGQjMyMjQ4RjU4QTRFQUI4OThGNURFMEYyQTNCQUQzMB4XDTIyMTIyNDEw
NTIxMFoXDTIzMTIyNDEwNDU0OVowMzExMC8GA1UEAxMoNTg4OTkxMEVDQzhBQUUw
NEYyRjkzMUQ5NUE5M0Y3N0Y4MTU1NjM5NjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMjO2HC56pTI9KIYjO2hBjN1hT6IHTuq3O4gKVakZDIKYwQlW8I5
fh008DligHN5HFXcEUx8m9VGd8NsMkomrkdS+eldGmQkAAFUZAbI6Hf92V3guPSA
S2h7X/VaK53P6ypzfxdumpUGLTJp17524dGocYkDZ5QXFYBOL2RdodDe7rkLybme
I+MIbWiTEnvVIOPWniubWCQxd1wSuzSScz1IWlbFWxol/4odpnq1WCmuOk/v7jEA
RavHrz7wNfYEmbFvemR2pQbMHoY5JAZQ4l76oQgy2i5wrvw93MIXPO2/CXWQsRhv
CDYcyPZJVC28dcXEtQOkIxtBfHodenDdzakCAwEAAaOCAikwggIlMB0GA1UdDgQW
BBRYiZEOzIquBPL5Mdlak/d/gVVjljAfBgNVHSMEGDAWgBRqE3xB77MiSPWKTquJ
j13g8qO60zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzA0MTMvYWhOOFFlLXpJa2oxaWs2cmlZOWQ0UEtqdXRNLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYWhOOFFlLXpJa2oxaWs2cmlZOWQ0
UEtqdXRNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzMwNDEzL1dJbVJEc3lLcmdUeS1USFpXcFAzZjRGVlk1WS5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E
AgACMAcDBQAkAMfgMA0GCSqGSIb3DQEBCwUAA4IBAQAnNkcorhNDaYbF7j/1qsUR
+OXbu2YfZ0I1K7MyFtEAEIrdhxMoK/AAs0h4E8Tz+PNjs4PW8sLZ/zZl/gDoQe89
ryrth1w6QFK73UiAQAGYuXYAFg2q0NKLy24Nwkepp6Uf2wg5IuaKdduChTIjriHF
EgtgvuZ2q5Mmj2ud476LdhuFJgj0pvUVcxXBKVjTxV4yF/cxKXg6cJ2a2A8boV2K
PHYTJelKw07/98KTptbv0kXv94Oa5XlXg4fTlj89E0CvtUYu9wFfJO8BrMJYH/bj
xcEYilY5pEop29F9H+2KPH/CLoNlDLW7GX/f2eqMqAJiDnOf8KOpfJAWKJTnNobq
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:50 2024 by rpki-client on console-fra.rpki-client.org