Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/LKEkU0urShCXuoiwEV-5aTqyf7Q.roa
File:                     LKEkU0urShCXuoiwEV-5aTqyf7Q.roa (raw, json)
Hash identifier:          XLqn3HR0/uV5eNHSaqpdONt35GCPpE3uI99XGoXT0DU=
Subject key identifier:   2C:A1:24:53:4B:AB:4A:10:97:BA:88:B0:11:5F:B9:69:3A:B2:7F:B4
Certificate issuer:       /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial:       0462
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/LKEkU0urShCXuoiwEV-5aTqyf7Q.roa
Signing time:             Thu 13 Apr 2023 09:57:56 +0000
ROA not before:           Thu 13 Apr 2023 09:57:56 +0000
ROA not after:            Thu 14 Mar 2024 01:30:02 +0000
asID:                     10010
IP address blocks:        219.112.176.0/20 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1122 (0x462)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
        Validity
            Not Before: Apr 13 09:57:56 2023 GMT
            Not After : Mar 14 01:30:02 2024 GMT
        Subject: CN=2CA124534BAB4A1097BA88B0115FB9693AB27FB4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:00:62:0b:ee:9e:6c:b4:e9:85:cd:08:af:9d:
                    ff:8e:9f:9f:a9:db:60:84:50:39:f5:71:dc:f7:78:
                    dc:ec:ca:79:66:31:5c:99:eb:62:2d:f2:82:13:45:
                    35:6f:95:9d:c6:c8:a4:7b:a0:71:9c:05:41:f0:6e:
                    7e:66:40:25:14:56:90:5e:a8:93:36:0a:51:7e:4d:
                    1b:02:ef:e4:d0:7e:b4:10:01:c8:e6:92:1a:82:11:
                    be:c0:ce:f6:25:da:37:51:ed:d7:c9:51:32:ba:99:
                    6d:dc:01:24:1a:2a:07:ed:e6:90:26:96:52:6c:32:
                    03:f8:df:05:e6:7b:3d:6d:cd:c4:d3:14:1a:23:d0:
                    f5:74:17:8a:6b:83:9e:54:4c:ea:d4:03:b3:3b:b8:
                    f6:2d:6f:49:ae:ac:d4:91:ac:b1:04:aa:bc:30:9e:
                    2a:2c:61:e6:fe:d0:61:2c:0b:8d:4f:dd:e0:d9:f1:
                    46:a9:81:9c:55:52:b7:2d:2f:56:eb:14:5e:1f:ef:
                    e0:6f:73:24:c8:aa:8e:28:1e:ca:05:38:4d:d2:b5:
                    09:7c:3e:75:c9:33:29:25:d3:c6:7f:41:be:45:37:
                    24:0d:bf:f0:30:d7:ca:f6:ab:e3:b6:cf:c8:bb:84:
                    5f:54:99:47:4c:f2:8b:71:e2:da:0d:58:6d:ab:ef:
                    cb:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:A1:24:53:4B:AB:4A:10:97:BA:88:B0:11:5F:B9:69:3A:B2:7F:B4
            X509v3 Authority Key Identifier:
                keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/LKEkU0urShCXuoiwEV-5aTqyf7Q.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  219.112.176.0/20

    Signature Algorithm: sha256WithRSAEncryption
         c1:c9:e2:66:7a:5e:67:45:a6:c8:40:90:29:ed:39:3c:16:d7:
         03:43:48:4a:45:d0:70:da:36:0f:2b:cf:1b:e8:9e:4a:60:51:
         a7:6b:91:f0:2c:84:99:89:73:1d:02:b6:2b:c9:4c:7f:b5:77:
         fb:bd:7f:eb:08:b1:ad:25:11:f8:41:fa:f3:9e:2f:8f:b1:4a:
         ba:7d:f2:24:7c:35:0f:c5:a5:74:59:ae:96:12:4a:1b:a3:ad:
         de:ef:d6:90:1f:10:e4:ea:cc:98:83:90:28:8e:d7:33:64:29:
         1d:07:3e:b3:f0:74:0d:96:48:04:d6:fd:d4:22:2b:63:38:7a:
         dd:bc:d1:fe:45:10:4f:d6:a3:5e:f1:aa:f5:5c:25:0a:b8:56:
         02:3c:e3:e9:56:cd:61:0b:5b:45:53:ed:33:91:b5:b7:73:f5:
         c6:45:1d:60:b7:a4:f6:a3:90:94:ea:59:2b:72:c2:41:b3:ab:
         df:b6:73:76:5b:9a:44:05:0d:61:53:01:36:ca:10:c1:c2:19:
         fe:e0:c3:69:7b:d6:dd:00:ce:8b:c6:36:a7:a1:89:2f:b4:44:
         0f:c0:22:32:4b:68:01:9f:e6:6f:24:7c:3a:d4:99:eb:43:2a:
         3a:90:47:f9:c3:d6:aa:3b:53:d3:d0:16:6f:d8:3c:ed:3b:77:
         4e:76:bb:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:54 2024 by rpki-client on console-fra.rpki-client.org