Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sqNHA61GJbfa_JWAZHlFiq2SNZU.roa
File:                     sqNHA61GJbfa_JWAZHlFiq2SNZU.roa (raw, json)
Hash identifier:          NtPeO6Dd7ppyFdbIl9AhWIVGMWIIfuUaSuXhrDWxQ1Y=
Subject key identifier:   B2:A3:47:03:AD:46:25:B7:DA:FC:95:80:64:79:45:8A:AD:92:35:95
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       0341
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sqNHA61GJbfa_JWAZHlFiq2SNZU.roa
Signing time:             Thu 01 Jun 2023 16:10:43 +0000
ROA not before:           Thu 01 Jun 2023 16:10:43 +0000
ROA not after:            Tue 14 May 2024 01:30:02 +0000
asID:                     9605
IP address blocks:        49.96.20.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 833 (0x341)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: Jun  1 16:10:43 2023 GMT
            Not After : May 14 01:30:02 2024 GMT
        Subject: CN=B2A34703AD4625B7DAFC95806479458AAD923595
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:f2:84:59:88:6d:15:82:32:84:d5:27:16:3d:
                    f1:ba:88:d6:b5:4c:37:89:5b:b2:f9:f2:e9:ff:16:
                    6a:32:88:b2:52:8c:84:d8:5a:30:0d:35:e3:03:90:
                    df:07:a7:66:3a:cd:f2:bf:ac:47:8f:db:f6:ea:f0:
                    68:ec:9d:25:33:44:1a:69:db:27:ea:fd:78:02:fe:
                    e5:79:9b:7a:13:5b:d9:d9:e6:85:58:7c:9d:67:ac:
                    bb:03:b4:4e:7e:ea:8c:dc:42:b8:53:25:3a:dc:db:
                    80:35:9e:c1:8a:4d:22:24:63:9d:8d:65:61:ec:e5:
                    c3:41:b3:ee:cc:ee:7e:d3:00:a2:73:21:fc:dd:b7:
                    5e:c3:1b:a2:6c:41:35:e2:61:c0:40:a5:d0:3c:b6:
                    bd:ea:c1:0f:ec:f6:a8:42:4e:7b:27:bd:97:a4:b9:
                    62:04:bd:b5:4e:72:e4:f3:56:5e:88:08:89:a7:bb:
                    c8:9d:a6:74:8b:66:7f:fc:30:63:6f:ec:95:c9:0c:
                    69:a7:23:0e:e5:2b:af:b4:c4:56:45:71:dd:a5:f1:
                    65:42:99:83:ba:5d:7d:9f:b4:ec:d7:c0:6c:18:f5:
                    81:b6:23:c5:48:6b:b6:65:50:a3:dc:2b:54:32:3d:
                    1b:07:f9:cf:93:20:29:82:8d:74:3a:ed:e5:30:bd:
                    29:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:A3:47:03:AD:46:25:B7:DA:FC:95:80:64:79:45:8A:AD:92:35:95
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sqNHA61GJbfa_JWAZHlFiq2SNZU.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.96.20.0/22

    Signature Algorithm: sha256WithRSAEncryption
         be:ef:71:08:db:22:f5:bd:fb:bc:b3:ba:3e:66:fb:41:d3:6f:
         fe:95:1f:5f:52:5e:d5:1e:57:cf:0f:cc:f6:8b:00:0b:ab:a3:
         1f:f4:59:79:e8:2b:2b:a0:54:59:88:3e:d2:24:78:31:a3:a4:
         eb:90:fa:dc:5b:86:ea:3b:4e:42:97:3b:02:72:91:4e:48:6b:
         07:42:9a:08:78:6b:d0:ac:0b:89:42:b4:ca:90:f8:ae:f8:53:
         a2:4c:66:76:1b:6d:5e:9c:ec:d8:fe:89:ef:e4:d5:0b:5b:89:
         1b:62:b5:1a:22:2f:c3:70:61:26:f7:aa:fd:d0:66:6c:41:06:
         1b:2c:d5:78:b6:79:05:21:b3:7f:f2:af:e3:ae:c1:00:c3:6d:
         48:3d:6d:b3:9e:71:3b:39:65:22:d8:e8:f3:5d:12:3a:22:c3:
         96:ac:63:6f:f6:2f:26:e4:70:24:06:aa:ac:17:5e:ea:0a:13:
         b6:50:77:8f:a6:04:9d:2d:5b:c4:be:22:8a:66:10:b6:5d:fa:
         8e:49:52:69:40:ee:ff:f9:8c:4b:94:6b:5a:56:1d:22:0e:41:
         15:05:8b:60:26:db:e5:5f:6a:f9:5d:96:de:f8:fe:94:af:3c:
         2c:cc:54:87:23:68:85:52:cf:b3:68:e0:a2:9b:e9:c8:44:84:
         6f:c9:e4:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:03 2024 by rpki-client on console-ams.rpki-client.org