Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/YHcfWkvbjRi7C9Fq7lyBwn0GMd0.roa
File:                     YHcfWkvbjRi7C9Fq7lyBwn0GMd0.roa (raw, json)
Hash identifier:          J7j3AgXZGY0Ks66E3+cwTMyBXjbC+6M/O8r5x/85FfI=
Subject key identifier:   60:77:1F:5A:4B:DB:8D:18:BB:0B:D1:6A:EE:5C:81:C2:7D:06:31:DD
Certificate issuer:       /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Certificate serial:       40
Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/YHcfWkvbjRi7C9Fq7lyBwn0GMd0.roa
Signing time:             Mon 17 Oct 2022 01:33:51 +0000
ROA not before:           Mon 17 Oct 2022 01:33:51 +0000
ROA not after:            Sun 15 Oct 2023 01:30:02 +0000
asID:                     9824
IP address blocks:        61.215.128.0/19 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 64 (0x40)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
        Validity
            Not Before: Oct 17 01:33:51 2022 GMT
            Not After : Oct 15 01:30:02 2023 GMT
        Subject: CN=60771F5A4BDB8D18BB0BD16AEE5C81C27D0631DD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:da:a1:4d:76:df:ce:4b:35:82:19:b5:2a:3b:
                    c5:9c:b9:8a:fb:70:b8:59:25:52:d6:03:e3:4d:ed:
                    b4:82:95:7c:4a:06:99:f3:96:26:65:96:00:3d:f7:
                    a7:1c:80:43:d3:6d:df:45:d1:aa:f5:f5:40:63:30:
                    70:16:de:32:54:ce:82:0a:97:ba:06:00:24:86:78:
                    ff:35:88:9b:d1:2c:c3:e0:ff:a8:2b:49:d2:33:6b:
                    e3:11:15:f2:d2:38:69:28:e2:f7:8a:00:7a:06:05:
                    cd:ea:5c:4c:87:57:9f:68:f3:a5:52:ac:71:90:55:
                    c5:d5:22:96:5a:32:04:1c:c0:66:89:c7:60:21:a2:
                    ac:60:3c:36:30:34:3c:f5:cd:37:87:75:0c:d9:8a:
                    71:05:99:0b:df:f4:3f:37:ee:f9:db:3e:35:73:ac:
                    a8:82:1d:3e:6e:9d:60:3c:a9:c6:dc:6d:2e:3f:ba:
                    e2:ff:47:f2:80:65:82:37:4a:19:0d:17:c7:0d:e7:
                    4c:9b:8d:6a:c5:a7:57:05:ca:35:03:da:e7:8a:aa:
                    76:e4:b8:32:81:5c:9a:f4:30:5f:bf:9b:7c:38:3e:
                    f6:16:78:d4:d6:2f:d6:2e:97:ff:85:c0:5a:9e:4e:
                    23:a4:b8:24:6f:98:b2:a4:48:09:22:da:ea:80:e3:
                    f9:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:77:1F:5A:4B:DB:8D:18:BB:0B:D1:6A:EE:5C:81:C2:7D:06:31:DD
            X509v3 Authority Key Identifier:
                keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/YHcfWkvbjRi7C9Fq7lyBwn0GMd0.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.215.128.0/19

    Signature Algorithm: sha256WithRSAEncryption
         ad:c8:38:01:76:ce:5e:93:8f:e4:3c:cd:46:fa:68:bb:e6:be:
         8e:f4:98:5b:60:bc:18:6f:76:93:6e:f3:25:ee:c9:0e:67:5c:
         2e:5f:e6:af:2c:ef:37:3f:31:4b:ce:d8:cf:50:1c:85:51:cd:
         58:b3:14:33:e9:2f:a9:58:a4:85:79:89:03:6c:db:e1:db:96:
         93:3c:b1:81:58:ba:17:82:f5:d1:7d:d3:d8:c0:a3:9c:89:30:
         13:35:e3:66:02:71:97:e3:55:03:f4:07:76:7d:f2:f8:4d:bf:
         e9:32:80:6b:5d:bc:32:00:44:a3:29:7e:63:97:6d:fe:69:bf:
         3a:9e:00:5c:9b:66:00:67:fe:29:0d:14:13:56:c5:be:e9:5e:
         1b:23:7e:d0:bc:36:e6:3c:fd:8f:b6:c5:25:fb:c6:f8:7f:57:
         e1:ce:84:2d:67:bd:81:7d:71:9a:fb:a0:b2:6c:ad:cc:37:f3:
         49:03:0a:df:77:5d:7e:d6:0e:80:78:82:55:2f:9d:10:6e:3d:
         7c:97:f8:35:ff:12:e9:5e:f2:9e:67:f9:80:01:39:e0:de:ac:
         72:2f:68:b8:98:ec:ac:cd:b7:93:10:48:92:af:c7:bb:1e:50:
         9e:d9:6c:65:97:af:23:d8:b6:19:02:1c:31:aa:99:e3:07:14:
         d4:f6:97:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:55 2024 by rpki-client on console-fra.rpki-client.org