Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/65de5t4hy2YWwW0GIVGnQvkxrco.roa
File:                     65de5t4hy2YWwW0GIVGnQvkxrco.roa (raw, json)
Hash identifier:          1X6u66Y2W9HZ24XwSGO0BPbJ+I6eyeMssYgG40rnIvA=
Subject key identifier:   EB:97:5E:E6:DE:21:CB:66:16:C1:6D:06:21:51:A7:42:F9:31:AD:CA
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       01B0
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/65de5t4hy2YWwW0GIVGnQvkxrco.roa
Signing time:             Wed 24 May 2023 16:37:05 +0000
ROA not before:           Wed 24 May 2023 16:37:05 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        110.163.226.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 432 (0x1b0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: May 24 16:37:05 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=EB975EE6DE21CB6616C16D062151A742F931ADCA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f5:47:56:87:41:27:59:6b:25:67:1f:5f:d3:d4:
                    98:32:5c:b3:14:55:a5:ba:99:3b:60:48:ab:a4:98:
                    e6:83:2e:c2:05:f6:c5:6e:d1:1e:96:22:60:e9:e1:
                    87:0b:bc:8c:4a:5f:76:e5:1b:2c:35:50:08:c3:42:
                    82:c7:73:ea:26:f4:8b:18:7c:5a:5e:b3:30:7b:97:
                    d6:fe:c4:0f:e5:f6:99:83:a0:79:e7:c2:1f:83:59:
                    5d:f6:9e:64:5f:ad:c6:c4:55:b9:31:52:2a:a8:bb:
                    1d:c4:74:45:00:04:9b:8c:e6:3a:c8:9e:31:21:aa:
                    ab:e7:a9:6a:ec:34:99:99:de:16:29:5d:27:de:71:
                    fc:b3:d0:60:23:18:cf:b8:0b:cb:ee:ab:bc:70:6f:
                    fd:6f:98:28:af:17:9e:57:d0:f4:2c:5e:41:0a:e9:
                    09:71:fe:6b:52:91:be:f0:ca:ed:99:74:76:42:a0:
                    3d:a6:bd:37:e9:e9:29:dc:db:ff:04:52:2c:59:24:
                    88:7e:2c:97:9e:3b:e0:e9:73:2b:f8:d5:4e:8b:56:
                    06:66:ba:9f:dc:08:6b:98:08:40:da:04:2a:e9:54:
                    53:59:20:4a:be:ca:6f:1d:03:05:29:2b:e9:fc:15:
                    ae:a0:4d:9c:a6:2a:d0:7a:d9:a0:79:42:57:77:be:
                    12:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:97:5E:E6:DE:21:CB:66:16:C1:6D:06:21:51:A7:42:F9:31:AD:CA
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/65de5t4hy2YWwW0GIVGnQvkxrco.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  110.163.226.0/23

    Signature Algorithm: sha256WithRSAEncryption
         4f:ff:66:43:c5:05:1d:ee:2f:25:6c:81:fa:4c:bd:63:4d:c5:
         7d:e5:42:1a:00:9f:f8:4c:ad:43:34:45:de:31:46:26:98:d3:
         8a:c3:5a:c9:d6:e6:9a:c2:20:1b:1e:6d:7e:c5:c6:08:e3:74:
         34:46:69:64:6d:c8:19:7b:f8:f1:0c:cc:b5:a1:1f:04:e0:ee:
         d5:da:2a:13:cd:d9:59:52:2d:85:43:e8:9e:88:80:bf:0b:24:
         1b:4e:63:10:4f:26:c3:66:d6:aa:b7:a2:a3:1c:4e:83:7c:d7:
         42:2b:9a:b1:f0:b5:ba:70:af:4d:4c:6e:81:00:ee:1e:b7:a1:
         79:b3:46:7a:9b:46:e6:4c:26:b0:9d:4d:dd:e4:85:8e:29:a8:
         2d:e7:6d:98:46:d7:da:f7:28:2c:b3:85:67:ed:35:9c:a8:40:
         5d:e1:29:89:15:bf:ea:e3:db:48:23:f6:c8:c4:72:4d:73:af:
         1f:0b:f7:ff:52:75:f9:8d:dd:e9:ad:50:15:bd:bb:c6:bb:d5:
         df:17:5f:d7:9a:be:b3:b3:a7:bd:e8:33:33:6f:5d:50:81:0a:
         31:aa:fb:b1:3c:8d:4b:8b:af:2a:1d:f7:75:94:34:2a:a4:98:
         16:90:47:06:94:f8:8f:4c:2d:6b:61:80:09:9e:99:e6:c4:ef:
         01:df:77:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org