Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/440/HVSZQq6nRyIFcgU8m69brxD4MI8.roa
File:                     HVSZQq6nRyIFcgU8m69brxD4MI8.roa (raw, json)
Hash identifier:          nc4ktE8iF6LrHBFYNMwGUdmd1CNU0YUw218SrXJqLs0=
Subject key identifier:   1D:54:99:42:AE:A7:47:22:05:72:05:3C:9B:AF:5B:AF:10:F8:30:8F
Certificate issuer:       /CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF
Certificate serial:       2F
Authority key identifier: E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/HVSZQq6nRyIFcgU8m69brxD4MI8.roa
Signing time:             Wed 01 Feb 2023 01:30:28 +0000
ROA not before:           Wed 01 Feb 2023 01:30:28 +0000
ROA not after:            Mon 15 Jan 2024 01:30:02 +0000
asID:                     17676
IP address blocks:        218.45.208.0/20 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 47 (0x2f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF
        Validity
            Not Before: Feb  1 01:30:28 2023 GMT
            Not After : Jan 15 01:30:02 2024 GMT
        Subject: CN=1D549942AEA747220572053C9BAF5BAF10F8308F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:db:79:20:82:4d:db:14:d1:2b:80:9b:b0:5f:
                    00:92:3a:06:c3:1e:01:a0:e7:64:f5:f0:98:60:10:
                    3f:9c:cf:79:61:9b:9d:2c:8b:1a:34:28:81:9a:8f:
                    7f:14:02:37:93:93:3a:8d:45:0e:bf:4f:72:12:73:
                    27:88:e2:2c:59:b4:0c:3b:fa:da:f8:c8:82:9f:36:
                    16:6b:9b:64:88:89:90:51:44:98:04:cc:6f:69:0a:
                    8a:8c:a8:e0:21:f3:dd:86:ae:42:76:38:5e:82:a1:
                    b7:a4:63:61:c9:b4:16:11:43:3b:3e:e5:9b:5a:6d:
                    f1:db:11:67:42:a0:1e:8c:b2:13:47:f6:b0:b3:20:
                    c8:04:16:02:ad:17:74:ae:9d:ce:2f:dd:4a:93:e0:
                    31:81:32:18:6b:3d:33:01:65:d3:a5:9e:91:4f:f3:
                    46:2d:a8:42:4d:02:20:86:2e:04:65:0d:a8:5f:83:
                    d4:92:a0:0d:ee:ed:0d:37:0c:fc:5f:c1:e9:6d:70:
                    6c:3c:74:6b:89:16:4d:0d:32:46:09:3f:c9:8e:15:
                    3c:5f:62:07:a5:b8:e4:ed:84:1d:66:3b:71:c0:2a:
                    95:7a:5c:4c:4f:1d:aa:09:e7:e5:f7:16:e7:34:53:
                    91:0d:e5:50:a2:1a:ef:9d:9f:35:27:ac:f0:cc:c6:
                    c7:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:54:99:42:AE:A7:47:22:05:72:05:3C:9B:AF:5B:AF:10:F8:30:8F
            X509v3 Authority Key Identifier:
                keyid:E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/HVSZQq6nRyIFcgU8m69brxD4MI8.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  218.45.208.0/20

    Signature Algorithm: sha256WithRSAEncryption
         1e:eb:22:fe:ad:1f:4d:0f:20:c6:4e:a9:c8:3b:32:db:0c:6f:
         d3:24:2c:fd:70:d6:45:da:9e:68:a8:c8:e9:54:4d:6f:6f:0d:
         d2:98:15:05:17:7f:87:78:b3:d8:45:97:0e:24:f5:27:9f:2d:
         cc:fb:fe:e4:ba:7c:0e:63:a8:73:d4:3e:d8:c2:fc:69:08:ff:
         02:a9:8b:e8:5b:9d:33:df:c4:34:b7:61:bb:04:59:4b:4e:a6:
         14:14:53:ae:d3:50:29:e7:1e:52:e5:16:b2:66:bd:86:13:8a:
         88:3a:e1:ed:e9:30:c3:a5:6e:b5:90:28:13:6e:4b:dd:3b:e2:
         82:a6:67:a7:c5:44:1f:7e:ea:c0:f3:e5:e1:b7:5c:14:42:4b:
         3b:48:c8:99:ba:27:63:88:79:60:7f:01:b1:67:e5:ac:59:15:
         de:4e:f8:c2:41:29:fa:eb:be:2d:48:fc:4d:e2:f2:58:75:fe:
         e0:06:b7:6f:76:a7:ab:32:bf:53:f6:1b:f1:9e:2d:ab:f1:ce:
         33:98:75:df:0d:11:19:ed:ee:11:e4:96:c8:22:09:ee:2f:a7:
         60:16:0d:7a:96:8c:c0:4d:bd:9f:63:61:e9:b6:c3:eb:fd:20:
         65:72:4a:5a:a4:2b:22:11:7f:0d:14:a6:56:9d:a1:4f:6f:79:
         0e:6e:91:19
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNjIz
MzhERTMzMkM2RjRCOUUyNTk2RUU1REMzNzlBMjVFRkU1OENGMB4XDTIzMDIwMTAx
MzAyOFoXDTI0MDExNTAxMzAwMlowMzExMC8GA1UEAxMoMUQ1NDk5NDJBRUE3NDcy
MjA1NzIwNTNDOUJBRjVCQUYxMEY4MzA4RjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALDbeSCCTdsU0SuAm7BfAJI6BsMeAaDnZPXwmGAQP5zPeWGbnSyL
GjQogZqPfxQCN5OTOo1FDr9PchJzJ4jiLFm0DDv62vjIgp82FmubZIiJkFFEmATM
b2kKioyo4CHz3YauQnY4XoKht6RjYcm0FhFDOz7lm1pt8dsRZ0KgHoyyE0f2sLMg
yAQWAq0XdK6dzi/dSpPgMYEyGGs9MwFl06WekU/zRi2oQk0CIIYuBGUNqF+D1JKg
De7tDTcM/F/B6W1wbDx0a4kWTQ0yRgk/yY4VPF9iB6W45O2EHWY7ccAqlXpcTE8d
qgnn5fcW5zRTkQ3lUKIa752fNSes8MzGx/0CAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBQdVJlCrqdHIgVyBTybr1uvEPgwjzAfBgNVHSMEGDAWgBTmIzjeMyxvS54llu5d
w3miXv5YzzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvNDQwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3LVdNOC5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3
LVdNOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC80NDAvSFZTWlFxNm5SeUlGY2dVOG02OWJyeEQ0TUk4LnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBNot0DANBgkqhkiG9w0BAQsFAAOCAQEAHusi/q0fTQ8gxk6pyDsy2wxv0yQs
/XDWRdqeaKjI6VRNb28N0pgVBRd/h3iz2EWXDiT1J58tzPv+5Lp8DmOoc9Q+2ML8
aQj/AqmL6FudM9/ENLdhuwRZS06mFBRTrtNQKeceUuUWsma9hhOKiDrh7ekww6Vu
tZAoE25L3TvigqZnp8VEH37qwPPl4bdcFEJLO0jImbonY4h5YH8BsWflrFkV3k74
wkEp+uu+LUj8TeLyWHX+4Aa3b3anqzK/U/Yb8Z4tq/HOM5h13w0RGe3uEeSWyCIJ
7i+nYBYNepaMwE29n2Nh6bbD6/0gZXJKWqQrIhF/DRSmVp2hT295Dm6RGQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:54 2024 by rpki-client on console-fra.rpki-client.org