Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/462/BFDCsQq50BLEOL4pWtUJEmdoZRk.roa
File:                     BFDCsQq50BLEOL4pWtUJEmdoZRk.roa (raw, json)
Hash identifier:          Ih2qVbYTosDswQ6RP+b1qxTjAcHQbVzosF8n3bCGeKk=
Subject key identifier:   04:50:C2:B1:0A:B9:D0:12:C4:38:BE:29:5A:D5:09:12:67:68:65:19
Certificate issuer:       /CN=43917B23074524E9E6EA8E40FA4A0672C9620318
Certificate serial:       25
Authority key identifier: 43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/BFDCsQq50BLEOL4pWtUJEmdoZRk.roa
Signing time:             Tue 24 May 2022 04:54:25 +0000
ROA not before:           Tue 24 May 2022 04:54:25 +0000
ROA not after:            Mon 15 May 2023 01:30:04 +0000
asID:                     10019
IP address blocks:        219.100.20.0/22 maxlen: 32

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 37 (0x25)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=43917B23074524E9E6EA8E40FA4A0672C9620318
        Validity
            Not Before: May 24 04:54:25 2022 GMT
            Not After : May 15 01:30:04 2023 GMT
        Subject: CN=0450C2B10AB9D012C438BE295AD5091267686519
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:25:b3:9b:38:f7:fd:97:7f:9c:47:da:d7:84:
                    44:f0:c2:66:9f:67:6d:bb:e3:0f:ed:57:bc:1d:c8:
                    13:c5:ee:69:7f:53:eb:0a:04:a9:cd:84:ba:c1:c0:
                    82:2f:b1:95:99:bd:41:6b:53:67:fb:3b:1f:d8:26:
                    a6:8a:bd:b1:2f:a5:99:96:8f:15:b6:5c:76:fb:51:
                    71:8d:49:d8:0e:66:1c:d2:2e:2a:fc:36:4a:ae:db:
                    f2:1d:9f:61:39:e4:03:ce:f2:55:13:14:4a:05:b4:
                    8c:90:c5:89:21:17:6e:c0:b7:59:ff:4b:ce:3d:c6:
                    f0:62:62:6f:dd:e1:c1:bb:9a:1e:3c:40:ad:53:bb:
                    eb:fa:28:10:4b:6c:ca:f7:26:e9:95:54:77:9f:6e:
                    58:cf:26:31:e5:01:e2:a9:bd:39:56:f5:9b:7f:4a:
                    55:a0:03:1d:3c:55:e2:3e:46:69:2d:7c:41:c6:70:
                    97:b7:8d:04:89:85:6e:83:10:e3:aa:b8:d8:76:73:
                    bf:fa:21:a0:00:25:f7:f1:a4:5f:74:8a:b0:dd:fe:
                    45:1f:58:7d:4a:68:67:65:c9:c9:f8:69:57:d7:13:
                    d8:67:de:b8:f1:71:6c:27:a2:c4:d1:15:17:91:ec:
                    54:24:e8:38:5e:06:6b:de:b3:79:0f:b5:ae:89:6d:
                    70:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:50:C2:B1:0A:B9:D0:12:C4:38:BE:29:5A:D5:09:12:67:68:65:19
            X509v3 Authority Key Identifier:
                keyid:43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/BFDCsQq50BLEOL4pWtUJEmdoZRk.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  219.100.20.0/22

    Signature Algorithm: sha256WithRSAEncryption
         90:66:04:85:ec:de:81:eb:4a:97:00:4e:07:b0:2d:9a:59:0c:
         42:1a:f6:d7:bc:c4:a8:09:62:af:1b:23:8d:ed:d0:d5:46:45:
         8c:1d:76:6e:51:20:61:8e:23:76:83:14:65:78:ac:e4:77:a5:
         da:30:91:3d:11:36:3d:4f:9a:d5:d4:72:0d:c5:86:05:0b:89:
         34:63:92:d2:cd:c9:39:a0:94:d6:e8:8c:90:f8:85:ee:61:5b:
         a8:b9:1f:97:e1:79:bc:2e:19:b0:52:f9:3f:f4:95:77:95:3a:
         ad:e1:87:b6:8a:91:cc:56:72:f3:91:05:52:b6:5d:b9:c5:bb:
         9d:57:c7:ba:a5:e4:be:8c:c7:03:68:8b:c5:9e:cb:c6:d5:1e:
         b3:ef:ad:c2:3e:1c:73:af:5d:76:72:f4:05:d2:34:e5:fa:19:
         bc:37:80:1e:8b:46:49:11:11:27:22:6a:c0:1a:fc:c2:57:1b:
         54:44:9f:ad:63:30:31:e1:fe:76:d8:3c:09:c5:da:5f:52:3a:
         55:89:8f:56:14:7f:2b:9c:26:5f:ef:4e:ee:4e:a9:66:a7:14:
         e6:cc:9d:07:84:83:05:7f:b3:c6:25:88:cc:b2:f0:a0:59:c8:
         53:c2:44:91:ad:ee:d7:5a:65:2b:70:df:71:af:c4:b3:a4:9a:
         12:ea:cb:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:54 2024 by rpki-client on console-fra.rpki-client.org