Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/IDh-Q9np_xF670BZaES3WE3gUNY.roa
File:                     IDh-Q9np_xF670BZaES3WE3gUNY.roa (raw, json)
Hash identifier:          WWw9euV28zTqkpABTJ5AVEji/TNqI2AJhV3DByQBnwA=
Subject key identifier:   20:38:7E:43:D9:E9:FF:11:7A:EF:40:59:68:44:B7:58:4D:E0:50:D6
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       0427
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IDh-Q9np_xF670BZaES3WE3gUNY.roa
Signing time:             Tue 06 Jun 2023 16:09:08 +0000
ROA not before:           Tue 06 Jun 2023 16:09:08 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        49.106.216.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1063 (0x427)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: Jun  6 16:09:08 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=20387E43D9E9FF117AEF40596844B7584DE050D6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f2:d7:db:58:6e:95:34:6f:da:c6:e0:c3:df:8b:
                    0a:67:e2:f7:b3:72:4a:30:b4:40:09:6b:e6:b3:ac:
                    34:fd:51:e7:3a:92:d4:44:fc:26:73:6c:f1:a6:bf:
                    ed:a5:23:76:e2:0c:74:27:df:6f:f6:99:e9:da:34:
                    f5:79:9b:34:27:e3:e6:6c:94:b3:c6:f7:6e:6e:d3:
                    f9:72:8b:95:ea:04:19:11:65:5f:0e:0e:5b:d6:6d:
                    6d:36:82:6a:a0:21:28:e6:af:81:3c:78:48:30:1a:
                    4b:45:ae:6f:11:b4:ac:2f:e9:5a:2a:da:7e:0c:cc:
                    98:5c:19:00:82:b2:29:65:cf:d4:4c:a2:60:4c:c5:
                    46:8e:d6:27:63:86:25:8e:09:59:93:4b:1f:f5:c3:
                    24:3f:4d:82:96:5a:67:19:21:dd:49:79:22:77:72:
                    06:86:a9:e3:44:29:92:42:10:6b:f7:41:08:e5:72:
                    64:4c:4e:2d:f0:ea:48:37:f5:25:13:a5:e4:9c:19:
                    cc:a7:c1:b3:5e:29:2f:40:f7:e8:c8:2d:cf:02:b2:
                    52:27:ae:4f:42:67:c1:88:04:84:68:b1:f5:23:f0:
                    db:78:6a:37:c1:1b:0d:2f:85:d6:8a:d6:92:d0:92:
                    51:25:90:fb:d5:0a:9b:24:0f:a8:bc:d9:be:72:7f:
                    4c:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                20:38:7E:43:D9:E9:FF:11:7A:EF:40:59:68:44:B7:58:4D:E0:50:D6
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IDh-Q9np_xF670BZaES3WE3gUNY.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.106.216.0/23

    Signature Algorithm: sha256WithRSAEncryption
         55:19:ee:a6:77:06:ef:94:5d:e9:5f:54:d6:96:a4:15:31:8f:
         51:cc:16:0a:77:9c:c6:20:4e:14:61:eb:67:74:a6:84:a2:4f:
         63:9f:d3:3a:c3:0b:f4:5a:40:83:bb:ba:56:64:b0:1d:38:93:
         7d:2c:88:39:c4:0d:be:78:23:3d:87:ed:e1:55:7b:4f:b3:22:
         7a:af:86:90:8b:44:53:c4:4c:f1:e5:e1:ab:7b:d6:fb:e2:1d:
         5a:3a:58:27:e0:a1:a3:19:01:22:fd:45:e5:d8:01:35:b4:8f:
         8c:09:46:79:da:ae:cc:25:a2:4f:23:26:c2:bb:3b:1e:96:6a:
         8b:08:17:1f:3e:f0:86:04:ff:88:5e:11:88:97:48:87:4f:69:
         ea:8f:4d:1d:2a:3e:b6:a7:1e:f3:7e:80:1d:56:5a:cd:b0:17:
         cb:6a:b8:6f:9c:2d:0d:83:4a:b0:af:37:b5:7e:79:1e:4c:64:
         ec:34:14:d3:89:5a:c4:d3:35:a7:09:24:ab:bd:b8:0b:11:52:
         40:8f:3b:39:b6:4c:cf:22:e9:5b:9f:4a:cc:01:b6:cb:11:cb:
         70:d1:51:58:cf:93:67:51:68:8e:a8:63:11:50:67:ee:6e:fc:
         43:ec:45:c5:0f:7e:21:96:f2:75:f1:11:a1:74:24:4e:32:5f:
         81:48:34:8d
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBCcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDYx
NjA5MDhaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDIwMzg3RTQzRDlFOUZG
MTE3QUVGNDA1OTY4NDRCNzU4NERFMDUwRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDy19tYbpU0b9rG4MPfiwpn4vezckowtEAJa+azrDT9Uec6ktRE
/CZzbPGmv+2lI3biDHQn32/2menaNPV5mzQn4+ZslLPG925u0/lyi5XqBBkRZV8O
DlvWbW02gmqgISjmr4E8eEgwGktFrm8RtKwv6Voq2n4MzJhcGQCCsillz9RMomBM
xUaO1idjhiWOCVmTSx/1wyQ/TYKWWmcZId1JeSJ3cgaGqeNEKZJCEGv3QQjlcmRM
Ti3w6kg39SUTpeScGcynwbNeKS9A9+jILc8CslInrk9CZ8GIBIRosfUj8Nt4ajfB
Gw0vhdaK1pLQklElkPvVCpskD6i82b5yf0zPAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUIDh+Q9np/xF670BZaES3WE3gUNYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L0lEaC1ROW5wX3hGNjcwQlphRVMzV0UzZ1VOWS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAExatgwDQYJKoZIhvcNAQELBQADggEBAFUZ7qZ3Bu+UXelfVNaWpBUxj1HM
Fgp3nMYgThRh62d0poSiT2Of0zrDC/RaQIO7ulZksB04k30siDnEDb54Iz2H7eFV
e0+zInqvhpCLRFPETPHl4at71vviHVo6WCfgoaMZASL9ReXYATW0j4wJRnnarswl
ok8jJsK7Ox6WaosIFx8+8IYE/4heEYiXSIdPaeqPTR0qPranHvN+gB1WWs2wF8tq
uG+cLQ2DSrCvN7V+eR5MZOw0FNOJWsTTNacJJKu9uAsRUkCPOzm2TM8i6VufSswB
tssRy3DRUVjPk2dRaI6oYxFQZ+5u/EPsRcUPfiGW8nXxEaF0JE4yX4FINI0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:01 2024 by rpki-client on console-ams.rpki-client.org