Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XOyl4wHPvbPELPkEZDGawPpZWtg.roa
File:                     XOyl4wHPvbPELPkEZDGawPpZWtg.roa (raw, json)
Hash identifier:          lL5D4pDt2lh22kpchH8C5J8Wbt9tDbO5IGk7j2GHaFU=
Subject key identifier:   5C:EC:A5:E3:01:CF:BD:B3:C4:2C:F9:04:64:31:9A:C0:FA:59:5A:D8
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       0143
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XOyl4wHPvbPELPkEZDGawPpZWtg.roa
Signing time:             Wed 24 May 2023 16:31:13 +0000
ROA not before:           Wed 24 May 2023 16:31:13 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        1.79.178.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 323 (0x143)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: May 24 16:31:13 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=5CECA5E301CFBDB3C42CF90464319AC0FA595AD8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:4b:f9:48:97:c4:c7:89:b2:41:85:67:09:0e:
                    f0:a6:c1:96:81:fa:8b:75:fe:12:b9:10:18:22:34:
                    08:6a:f1:cb:fd:8a:1b:9a:df:ea:5f:14:af:da:e8:
                    49:a9:61:76:5d:5b:03:60:3e:b4:f6:20:99:88:13:
                    84:5f:ab:52:9e:2c:1d:8c:ba:b4:be:25:b5:1c:68:
                    99:1e:fd:b4:6e:a2:e1:fc:1f:2b:4a:5b:3e:7d:36:
                    00:89:44:03:57:57:ad:04:69:b1:bf:d8:cb:04:33:
                    e7:7f:a0:9b:5a:60:60:df:a7:cc:cc:8f:f7:4b:a2:
                    ae:95:69:61:07:27:31:b8:e0:f1:2f:16:f7:e9:c7:
                    98:98:50:1e:40:59:2f:aa:bf:75:e1:35:92:80:e0:
                    e6:ca:cc:fa:3f:83:1f:d7:c7:cb:88:50:e2:6c:11:
                    1c:83:9e:fb:8c:1c:f6:03:ec:1e:7f:5b:1d:1d:6c:
                    76:d6:85:ad:19:9c:16:88:cc:f5:75:1a:61:e2:35:
                    f0:17:68:31:22:aa:a4:89:3d:86:7d:ef:2b:40:82:
                    a1:5d:96:61:3b:ea:5b:71:61:d5:76:2a:60:93:a2:
                    81:f1:ed:09:e5:ee:57:6f:b3:9a:3c:cc:74:be:e6:
                    01:c3:00:36:47:f0:10:bf:77:07:fe:47:aa:71:a0:
                    a5:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:EC:A5:E3:01:CF:BD:B3:C4:2C:F9:04:64:31:9A:C0:FA:59:5A:D8
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XOyl4wHPvbPELPkEZDGawPpZWtg.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  1.79.178.0/23

    Signature Algorithm: sha256WithRSAEncryption
         92:1e:83:fb:0b:d9:ec:9e:03:55:8c:5e:11:d0:2a:39:f6:8f:
         04:5f:8c:a0:8d:73:8e:0f:ac:8d:ef:0f:2a:00:71:da:21:9c:
         18:ef:a2:c3:c0:59:f2:7f:a3:80:8a:b2:b0:1e:e7:42:bf:85:
         d9:21:a2:de:a7:c6:6b:f5:81:7c:13:32:d4:21:06:69:6f:82:
         06:ae:27:e4:fc:46:af:14:9b:cd:45:f8:7d:36:7b:3b:f1:44:
         b6:82:af:74:dc:63:f7:45:02:7b:0e:e6:72:60:b4:41:f8:5e:
         83:74:13:88:eb:a3:8e:24:67:39:c7:e8:9f:c6:60:19:e9:9b:
         1d:a9:1d:51:f8:e8:b2:df:a8:ad:82:b8:9a:a6:8d:07:f4:a7:
         1e:08:7b:f3:96:0b:be:b8:ec:58:92:94:18:35:80:c7:9f:9a:
         65:34:3e:6c:44:d0:1b:6d:3f:1c:8e:fe:58:69:c5:0a:78:b3:
         c8:8d:13:e9:ab:aa:f1:95:92:d4:3b:fc:60:27:b3:f7:b8:92:
         99:f6:3a:83:e7:c4:f6:65:c1:41:db:20:b6:c8:85:6c:94:6c:
         73:ba:c4:63:8a:94:d5:58:3c:69:b0:67:ae:aa:48:ce:38:c3:
         99:7f:b1:6b:ee:a6:01:0a:51:4c:c0:5b:73:b0:d8:e3:f6:bd:
         56:f5:19:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:51 2024 by rpki-client on console-fra.rpki-client.org