Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/VLvGYw4J_7tDauIZZErP0nIqc8g.roa
File:                     VLvGYw4J_7tDauIZZErP0nIqc8g.roa (raw, json)
Hash identifier:          goCqNYXNkIwgX1y5KL9/FtggHQtGO+GVWsSOKgifXGA=
Subject key identifier:   54:BB:C6:63:0E:09:FF:BB:43:6A:E2:19:64:4A:CF:D2:72:2A:73:C8
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       0267
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VLvGYw4J_7tDauIZZErP0nIqc8g.roa
Signing time:             Tue 30 May 2023 16:34:15 +0000
ROA not before:           Tue 30 May 2023 16:34:15 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        110.158.128.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 615 (0x267)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: May 30 16:34:15 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=54BBC6630E09FFBB436AE219644ACFD2722A73C8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:71:2d:0a:74:80:cf:ec:6b:8e:7f:e7:c3:37:
                    23:e6:f0:72:6e:88:14:9d:58:54:1c:bf:80:bd:ae:
                    55:e0:5f:ac:d2:7b:80:47:ff:cd:5c:7a:37:42:43:
                    fc:4f:21:30:2d:10:69:2d:db:5d:15:2f:40:8c:7c:
                    d8:3f:a9:bc:fc:07:41:67:0c:ea:a0:25:e2:d3:cc:
                    85:fc:de:43:b3:c7:91:58:0a:4b:9a:de:7a:f4:f5:
                    72:96:4f:1c:9e:3e:f6:b3:66:52:cb:54:03:08:85:
                    ab:60:94:2f:02:8a:a8:7f:27:51:c7:65:5c:d7:ce:
                    05:14:40:54:26:b5:89:cf:5f:4a:06:52:80:b8:15:
                    3f:d6:3a:98:b7:a8:bb:d1:0e:a3:06:53:4f:20:87:
                    b4:03:63:9a:f0:05:5c:73:ca:0c:8b:52:c4:05:39:
                    1d:01:29:9c:a2:85:78:f5:69:cc:15:be:f5:0b:18:
                    b4:ce:7d:09:8d:84:3a:b5:85:ec:8f:a7:87:a6:80:
                    15:40:e6:23:9b:c6:46:39:e1:06:ab:03:84:2d:95:
                    78:0d:08:90:c3:b2:8f:3f:ed:4d:01:8a:8e:81:29:
                    b4:14:a5:f4:16:8b:cc:ab:8e:52:77:05:2d:a4:69:
                    4c:d7:2d:cc:47:f4:f3:9a:62:c6:17:fa:28:c1:91:
                    bc:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                54:BB:C6:63:0E:09:FF:BB:43:6A:E2:19:64:4A:CF:D2:72:2A:73:C8
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VLvGYw4J_7tDauIZZErP0nIqc8g.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  110.158.128.0/23

    Signature Algorithm: sha256WithRSAEncryption
         33:ac:cf:c3:24:6e:ca:c1:a6:f5:2d:47:34:52:e4:f2:77:9e:
         ec:75:c6:02:c6:75:c3:c0:c1:97:45:a5:6b:41:bf:b7:27:ad:
         52:32:c1:52:30:f4:5b:8e:06:06:e6:d9:4b:8b:b3:5e:cd:31:
         ed:d6:9d:79:b3:c9:5a:41:36:3e:48:32:fa:ce:b1:10:96:c4:
         29:4f:10:5b:4e:7d:c0:71:0b:ef:ab:3f:d0:8a:24:79:b2:56:
         a7:8e:8e:cf:62:65:3e:f9:31:1d:93:62:8a:58:f1:5a:28:63:
         37:03:48:b5:95:e5:de:49:20:33:6f:9c:c7:8b:41:c7:ae:28:
         c3:97:8e:4e:f4:90:2b:dc:98:05:83:5f:de:03:2c:2a:f3:21:
         9c:4d:0a:d0:37:9c:cf:7b:e7:27:69:c4:ad:59:38:b4:92:0a:
         53:01:33:49:6e:c7:3d:fe:3d:e7:e6:da:6b:20:7e:61:9b:cc:
         9b:17:39:4f:18:4f:c3:7f:ae:c6:27:1b:41:77:06:1b:39:cb:
         7c:65:04:af:3c:a3:92:d9:cc:38:7f:32:a4:64:58:00:69:f1:
         fb:d9:ae:51:67:7d:75:b4:84:a7:df:c2:e9:ee:94:99:c3:90:
         32:3a:3c:c3:24:02:37:18:d3:0c:fe:a1:8c:ab:07:f2:c2:88:
         48:e4:1e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org