Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/731/avMUkLd5a4aFkenMGhbllXWoS74.roa
File:                     avMUkLd5a4aFkenMGhbllXWoS74.roa (raw, json)
Hash identifier:          +8T+aZztIHSLXF6fbZqcoGjLKdWwRkwc2ZdAYMZqSUM=
Subject key identifier:   6A:F3:14:90:B7:79:6B:86:85:91:E9:CC:1A:16:E5:95:75:A8:4B:BE
Certificate issuer:       /CN=91ACA44275EC0572BC6921502B241C14D44A9AA1
Certificate serial:       20
Authority key identifier: 91:AC:A4:42:75:EC:05:72:BC:69:21:50:2B:24:1C:14:D4:4A:9A:A1
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kaykQnXsBXK8aSFQKyQcFNRKmqE.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/avMUkLd5a4aFkenMGhbllXWoS74.roa
Signing time:             Wed 11 May 2022 01:40:33 +0000
ROA not before:           Wed 11 May 2022 01:40:33 +0000
ROA not after:            Thu 27 Apr 2023 09:52:34 +0000
asID:                     18260
IP address blocks:        101.2.128.0/19 maxlen: 32

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 32 (0x20)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=91ACA44275EC0572BC6921502B241C14D44A9AA1
        Validity
            Not Before: May 11 01:40:33 2022 GMT
            Not After : Apr 27 09:52:34 2023 GMT
        Subject: CN=6AF31490B7796B868591E9CC1A16E59575A84BBE
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:c8:0d:1d:2b:fb:f0:56:d1:2b:a5:c5:ff:a9:
                    1c:a6:16:84:11:05:63:6e:05:50:f6:4f:82:a8:41:
                    c9:53:24:fe:cc:79:30:f4:0a:2c:f3:ab:6c:d6:ba:
                    a0:12:fa:66:cb:b4:ef:60:2b:cf:61:a3:ca:e8:69:
                    e2:d9:30:1b:42:98:fc:a1:b5:f9:c5:15:74:10:0d:
                    82:a2:8a:bf:09:09:07:08:10:99:c1:5f:7b:c9:a2:
                    e0:68:f7:23:f2:14:c4:9e:72:0d:ce:d3:e1:9c:45:
                    e5:3d:cb:07:a3:a0:a7:b8:ae:39:d3:db:a4:3e:00:
                    dc:17:d7:e5:81:54:cb:16:e0:5b:b2:9a:c5:f3:0d:
                    bd:17:65:74:44:bb:5b:d2:64:bb:62:53:07:bc:46:
                    21:3e:05:f6:86:77:2b:ee:45:b8:b3:eb:3b:db:2d:
                    53:1a:03:12:20:37:08:4d:c1:b5:24:07:ee:f3:ea:
                    1d:1a:d8:d8:df:9d:e6:54:06:d5:32:21:88:0d:5b:
                    93:7a:5c:54:98:c1:d9:79:1c:e3:98:4b:12:a4:4d:
                    a4:16:90:16:6e:8a:c1:28:04:2d:88:fa:91:43:51:
                    5a:5d:3b:34:c6:59:01:3d:4c:c1:7c:f4:58:07:57:
                    3d:17:95:de:50:ac:0f:1f:4e:b3:f5:f2:42:c6:b3:
                    b6:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:F3:14:90:B7:79:6B:86:85:91:E9:CC:1A:16:E5:95:75:A8:4B:BE
            X509v3 Authority Key Identifier:
                keyid:91:AC:A4:42:75:EC:05:72:BC:69:21:50:2B:24:1C:14:D4:4A:9A:A1

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/kaykQnXsBXK8aSFQKyQcFNRKmqE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kaykQnXsBXK8aSFQKyQcFNRKmqE.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/avMUkLd5a4aFkenMGhbllXWoS74.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  101.2.128.0/19

    Signature Algorithm: sha256WithRSAEncryption
         00:32:35:76:9b:0a:62:0d:98:c0:13:6e:81:4b:7e:e5:70:88:
         dd:67:dd:57:38:26:ed:6d:c8:12:19:6e:2a:ef:15:9c:5b:79:
         02:c3:f0:3b:52:98:5c:7d:f0:a3:b8:43:61:27:0d:f4:ac:94:
         51:cf:5a:2e:aa:6f:d2:33:a4:ff:40:e5:9c:0f:22:dd:ba:94:
         8f:4a:c7:90:ba:21:3f:9f:6f:4c:21:ba:31:d5:65:48:23:8f:
         19:38:bc:2a:51:18:05:d3:d8:34:aa:da:6d:94:3e:b4:aa:9a:
         0b:c3:22:06:79:80:24:ac:00:25:76:7d:f7:69:2f:63:55:9c:
         5b:63:66:ed:19:f3:ee:e5:b2:83:44:c3:9a:0d:dc:2e:23:12:
         da:1e:0e:3f:44:10:18:57:e3:1e:b3:99:f1:38:9f:07:8e:82:
         ea:96:e3:8d:41:1d:02:ed:49:e6:c0:6b:09:12:94:b5:29:09:
         a9:b6:66:1f:b8:ac:35:79:49:40:cc:62:65:86:da:5e:2a:b4:
         30:00:c3:b8:e1:01:87:5f:18:a9:e0:95:c4:79:39:71:15:1a:
         80:fd:0b:84:37:99:ba:49:64:25:27:17:da:e4:45:65:3d:4e:
         69:e5:45:4b:e5:45:f5:01:39:10:3c:28:a1:50:b8:65:e9:50:
         11:2e:10:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:14 2024 by rpki-client on console-ams.rpki-client.org