Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UwOSjX82N-KVbB98tlvQ3lNVAdU.roa
File:                     UwOSjX82N-KVbB98tlvQ3lNVAdU.roa (raw, json)
Hash identifier:          tOLWAXGGrDcnkjQ6kIQjZWUqrAH6qvvvi/jl3JICyU4=
Subject key identifier:   53:03:92:8D:7F:36:37:E2:95:6C:1F:7C:B6:5B:D0:DE:53:55:01:D5
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       01BA
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UwOSjX82N-KVbB98tlvQ3lNVAdU.roa
Signing time:             Wed 24 May 2023 16:37:10 +0000
ROA not before:           Wed 24 May 2023 16:37:10 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        1.79.12.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 442 (0x1ba)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: May 24 16:37:10 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=5303928D7F3637E2956C1F7CB65BD0DE535501D5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:bb:5c:46:cd:a9:37:71:8c:60:18:4d:6f:58:
                    2e:01:4c:ef:fe:38:0d:20:3b:19:ff:3b:71:fd:03:
                    fc:0f:54:ac:3f:30:c7:3f:eb:51:06:9f:5b:63:a3:
                    7d:9b:54:80:65:2a:19:d5:2a:78:ca:b1:36:a3:a8:
                    f5:b8:83:b5:1e:cc:af:a6:51:c3:b4:d8:5a:29:35:
                    d8:35:05:4f:c7:30:9d:c6:3e:82:5e:74:d8:c9:9a:
                    f6:10:85:00:48:4c:9a:26:28:59:d5:5b:1a:05:09:
                    c7:e9:0b:3a:f6:d0:8e:58:66:ae:dc:72:71:b7:8d:
                    35:61:62:2a:d3:c6:50:8b:66:59:05:6f:4f:55:14:
                    bd:17:6f:78:55:4a:24:0c:0b:aa:cd:a3:f4:d8:33:
                    3d:46:74:9a:83:96:4c:8f:81:84:ba:6a:71:d1:86:
                    1d:35:f2:8d:1d:34:fc:ce:b9:97:72:a1:ac:11:11:
                    83:fc:b3:6c:43:84:30:47:cc:26:95:8d:b0:71:0f:
                    c4:d8:db:a5:c6:0d:ce:93:6c:97:24:db:11:89:14:
                    c4:b4:b2:c1:cc:cc:28:3e:80:bc:e3:06:9f:d2:e2:
                    80:eb:32:a4:b6:8b:f7:13:7e:15:ac:2b:21:69:c4:
                    e6:d4:9e:d0:27:a4:5c:3d:37:c0:d5:ca:34:96:b5:
                    76:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:03:92:8D:7F:36:37:E2:95:6C:1F:7C:B6:5B:D0:DE:53:55:01:D5
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UwOSjX82N-KVbB98tlvQ3lNVAdU.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  1.79.12.0/23

    Signature Algorithm: sha256WithRSAEncryption
         06:2e:e8:0c:16:cb:74:9b:53:24:f5:48:5e:79:9c:62:d9:04:
         05:12:05:51:79:c2:f6:b3:b8:4e:99:9f:16:20:8c:4a:d4:ff:
         1a:f7:34:0a:2b:02:36:62:99:bf:07:9c:3f:50:6b:15:b6:30:
         d2:35:c2:b7:ed:7a:61:b6:51:9f:36:9a:6d:0c:f2:9e:a5:04:
         f6:5d:50:15:72:e0:85:75:d7:f1:16:5c:ae:84:73:93:92:12:
         a0:90:92:9b:90:bb:94:10:d3:c8:7e:3b:f4:ae:ed:61:a8:32:
         21:b1:e8:a7:c1:3d:3c:a2:d0:16:3d:b8:33:c2:20:da:06:be:
         23:5a:0e:a7:24:8f:43:cb:87:33:a2:a1:24:51:8c:26:b6:64:
         6c:44:01:a4:f4:ed:e6:4e:c5:87:9b:61:a7:4f:22:ef:2c:49:
         e3:8b:a2:c8:dc:97:1d:ce:d5:51:55:c6:30:32:eb:c4:07:08:
         40:6a:69:cc:8f:59:90:1e:7e:f6:90:9c:f4:81:e8:d5:17:f4:
         9f:05:a5:6f:92:61:53:c1:09:45:8f:55:ad:8a:42:20:7f:7c:
         af:72:83:6f:d9:c4:68:b0:d2:28:7a:cc:cf:da:78:cb:70:30:
         ea:8e:37:ed:d0:fb:be:af:43:cd:eb:35:48:0f:5a:2c:c0:fd:
         b2:83:97:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org