Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/VsHyTpPewB37P_iqrVXda0NeGUI.roa
File:                     VsHyTpPewB37P_iqrVXda0NeGUI.roa (raw, json)
Hash identifier:          GPLOqCHwApZGNLUeomnW0pUesI8xTOrFuaw/5NIbKjs=
Subject key identifier:   56:C1:F2:4E:93:DE:C0:1D:FB:3F:F8:AA:AD:55:DD:6B:43:5E:19:42
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       01D0
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VsHyTpPewB37P_iqrVXda0NeGUI.roa
Signing time:             Wed 24 May 2023 16:40:33 +0000
ROA not before:           Wed 24 May 2023 16:40:33 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        1.78.40.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 464 (0x1d0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: May 24 16:40:33 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=56C1F24E93DEC01DFB3FF8AAAD55DD6B435E1942
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:18:5e:ae:88:28:ea:df:58:cf:0f:e6:f9:74:
                    2e:33:6c:c1:9b:f0:68:23:a7:53:f7:c4:94:cd:f9:
                    a2:3c:0c:e4:81:52:7a:8f:ef:ed:af:69:8c:63:5b:
                    72:96:2d:d2:bb:d3:c8:1e:4c:a0:74:61:92:53:30:
                    20:75:cd:07:49:22:ca:54:49:40:63:89:85:39:0c:
                    29:5e:ea:d1:5c:36:ff:04:c9:61:6d:f1:0c:c8:9f:
                    7b:e9:79:26:66:20:98:37:e7:6f:b0:72:18:02:ee:
                    4e:3d:92:53:ea:33:51:f2:d5:71:d7:75:ae:6a:15:
                    30:2a:61:91:02:4a:9e:7c:31:98:6d:f5:78:65:10:
                    e6:fc:f9:93:47:ed:7f:27:27:47:a1:a5:f9:3b:18:
                    df:d6:62:69:83:e1:44:37:a7:be:b8:5c:7e:46:d6:
                    00:f5:0e:4e:5e:e8:10:bd:0b:3a:12:32:98:31:d0:
                    08:61:8a:a6:fe:6a:41:36:a7:b7:4b:29:f3:2b:8b:
                    fb:c8:58:81:c9:8c:5b:05:b8:cd:bf:63:c8:fb:6e:
                    ca:90:b9:5d:29:b9:2a:34:59:5d:d2:b3:2f:aa:ea:
                    2c:a9:2a:8b:a3:c7:3d:32:f8:85:7d:4a:aa:5c:29:
                    da:3d:8b:f6:56:8a:c2:30:d2:52:d7:1c:dc:91:e5:
                    25:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                56:C1:F2:4E:93:DE:C0:1D:FB:3F:F8:AA:AD:55:DD:6B:43:5E:19:42
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VsHyTpPewB37P_iqrVXda0NeGUI.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  1.78.40.0/22

    Signature Algorithm: sha256WithRSAEncryption
         0c:09:ba:8f:f6:1d:d9:bd:fe:84:d3:12:35:83:5d:89:0b:07:
         f8:b7:7c:86:99:b3:dd:fd:23:5b:07:f1:c8:9d:ae:c6:27:b0:
         e0:33:3f:73:b3:3f:0f:d0:36:3c:5b:f2:0e:e8:49:1f:be:a4:
         38:2b:9f:ce:db:ba:56:e9:f9:84:8f:ad:0b:92:04:35:ed:b6:
         07:9c:a0:68:f0:54:17:65:3c:60:34:0d:9d:bc:e0:5d:6c:dd:
         2d:92:42:7c:ba:b7:08:73:5c:b9:1d:00:d6:00:b5:6a:11:c0:
         ce:3f:43:b6:45:2b:40:62:d5:48:23:e8:03:fe:fb:92:9c:0b:
         6a:5a:e0:77:c8:71:2d:30:e6:ea:1c:30:88:d7:8b:e5:c6:51:
         19:1b:79:8a:0a:2e:46:be:24:c5:de:b9:fd:1e:b8:b7:4a:95:
         61:09:b3:99:13:a1:5e:12:da:e6:7c:d0:0c:8a:fb:96:29:08:
         37:86:02:20:3b:31:56:34:7e:19:69:5c:e7:07:0d:69:ab:62:
         21:1d:44:49:f7:f5:36:88:67:98:ef:b7:08:29:98:c7:63:13:
         43:24:94:e1:9c:26:90:d4:15:4c:fc:91:e4:b4:38:3d:2b:c2:
         e9:2f:15:c8:f6:26:4f:4a:d2:ed:6b:b1:49:0a:e9:8a:ff:14:
         95:76:d6:61
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx
NjQwMzNaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDU2QzFGMjRFOTNERUMw
MURGQjNGRjhBQUFENTVERDZCNDM1RTE5NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDGF6uiCjq31jPD+b5dC4zbMGb8Ggjp1P3xJTN+aI8DOSBUnqP
7+2vaYxjW3KWLdK708geTKB0YZJTMCB1zQdJIspUSUBjiYU5DCle6tFcNv8EyWFt
8QzIn3vpeSZmIJg352+wchgC7k49klPqM1Hy1XHXda5qFTAqYZECSp58MZht9Xhl
EOb8+ZNH7X8nJ0ehpfk7GN/WYmmD4UQ3p764XH5G1gD1Dk5e6BC9CzoSMpgx0Ahh
iqb+akE2p7dLKfMri/vIWIHJjFsFuM2/Y8j7bsqQuV0puSo0WV3Ssy+q6iypKouj
xz0y+IV9SqpcKdo9i/ZWisIw0lLXHNyR5SVzAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUVsHyTpPewB37P/iqrVXda0NeGUIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1ZzSHlUcFBld0IzN1BfaXFyVlhkYTBOZUdVSS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIBTigwDQYJKoZIhvcNAQELBQADggEBAAwJuo/2Hdm9/oTTEjWDXYkLB/i3
fIaZs939I1sH8cidrsYnsOAzP3OzPw/QNjxb8g7oSR++pDgrn87bulbp+YSPrQuS
BDXttgecoGjwVBdlPGA0DZ284F1s3S2SQny6twhzXLkdANYAtWoRwM4/Q7ZFK0Bi
1Ugj6AP++5KcC2pa4HfIcS0w5uocMIjXi+XGURkbeYoKLka+JMXeuf0euLdKlWEJ
s5kToV4S2uZ80AyK+5YpCDeGAiA7MVY0fhlpXOcHDWmrYiEdREn39TaIZ5jvtwgp
mMdjE0MklOGcJpDUFUz8keS0OD0rwukvFcj2Jk9K0u1rsUkK6Yr/FJV21mE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:02 2024 by rpki-client on console-ams.rpki-client.org