Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/840/4U8WB3Tw7dki0hFPAMi-zZxpT-4.roa
File:                     4U8WB3Tw7dki0hFPAMi-zZxpT-4.roa (raw, json)
Hash identifier:          Dd5FX67P6V3Kqza42wtzRo7JVlPiFmtBmPc+oOfWrZw=
Subject key identifier:   E1:4F:16:07:74:F0:ED:D9:22:D2:11:4F:00:C8:BE:CD:9C:69:4F:EE
Certificate issuer:       /CN=D79B3890C2DA3795148976B954C2024056797554
Certificate serial:       0A
Authority key identifier: D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/4U8WB3Tw7dki0hFPAMi-zZxpT-4.roa
Signing time:             Wed 11 May 2022 02:33:03 +0000
ROA not before:           Wed 11 May 2022 02:33:03 +0000
ROA not after:            Thu 27 Apr 2023 09:52:34 +0000
asID:                     131934
IP address blocks:        221.132.96.0/20 maxlen: 20

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D79B3890C2DA3795148976B954C2024056797554
        Validity
            Not Before: May 11 02:33:03 2022 GMT
            Not After : Apr 27 09:52:34 2023 GMT
        Subject: CN=E14F160774F0EDD922D2114F00C8BECD9C694FEE
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:84:1d:a2:67:b6:9a:d9:d7:af:df:8b:a6:ba:
                    72:ba:a5:a7:15:d8:d3:82:15:e7:e9:f9:0b:cd:1b:
                    37:0b:e0:cc:86:08:84:5e:b4:bf:33:9a:52:2c:5b:
                    88:71:70:7d:8b:07:08:dc:d8:ab:70:6d:4b:b6:56:
                    76:1c:3d:4e:3b:4b:b6:c8:7d:9b:60:82:a0:d3:7f:
                    21:24:f7:6d:2e:78:72:d7:88:4b:ec:c7:09:99:35:
                    95:c5:ff:dc:a4:51:a1:e8:85:2d:f9:c3:60:38:36:
                    98:a3:54:ca:aa:64:68:1a:0f:d3:f1:c0:99:3c:54:
                    fc:26:04:ab:79:b1:5e:e9:96:55:71:33:1d:0e:53:
                    27:16:e1:87:48:82:22:be:e8:8d:d9:85:fa:4e:e0:
                    c9:ae:6d:42:45:e1:55:92:9c:7f:52:73:64:24:3f:
                    f1:0e:39:ba:c0:ab:f3:00:dc:20:35:e7:ec:47:78:
                    08:ab:ef:5e:ac:cb:b4:b8:13:04:a4:98:a5:09:e4:
                    68:62:fc:58:97:c1:9b:82:3a:02:de:2c:50:3e:3c:
                    e6:78:64:d6:55:e1:ae:52:d5:49:da:38:3e:00:50:
                    53:a1:d6:b4:9a:f5:e2:ec:cb:8d:75:6a:c4:76:6b:
                    a8:c5:57:62:1c:90:14:38:cd:81:29:c4:51:df:c3:
                    98:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:4F:16:07:74:F0:ED:D9:22:D2:11:4F:00:C8:BE:CD:9C:69:4F:EE
            X509v3 Authority Key Identifier:
                keyid:D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/4U8WB3Tw7dki0hFPAMi-zZxpT-4.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  221.132.96.0/20

    Signature Algorithm: sha256WithRSAEncryption
         41:34:50:84:1b:ec:18:4f:ce:e3:5e:15:eb:a3:6f:9b:ac:39:
         18:50:ea:9f:b4:d6:d5:90:92:65:35:eb:c1:3f:1a:14:b5:6b:
         3d:90:cf:07:5e:62:3a:52:b1:f2:10:2f:7a:cc:ac:39:0c:64:
         82:84:67:76:fb:88:6f:23:6c:01:ae:1a:49:e4:92:eb:36:1e:
         d8:3a:23:64:1e:1f:48:1a:e4:20:20:7c:b0:dc:36:8e:41:a9:
         4f:71:03:d1:a0:f4:33:07:c4:43:98:ec:f5:53:aa:af:8c:13:
         96:55:b6:12:94:20:e4:b7:94:4e:ba:3a:6c:29:fc:0b:c5:bb:
         51:54:bf:f7:e6:78:e3:79:48:14:03:0f:f9:d7:42:c5:46:63:
         7e:9a:f0:55:d0:87:56:e5:a9:d8:ab:ea:7e:a7:bc:2d:7f:de:
         d9:0e:95:2e:91:35:c5:47:58:c6:32:31:f4:b1:64:6a:81:96:
         9e:62:06:46:82:f1:f9:b3:65:83:76:21:ae:f4:45:cf:ad:70:
         c8:61:07:19:b5:3c:8c:2b:f6:ba:6d:3e:96:dc:2e:21:31:e1:
         34:39:d4:ed:8e:53:80:d8:8f:ea:85:db:52:73:40:45:08:99:
         dc:10:ee:97:09:c2:3f:5c:8c:5a:49:cf:4f:d9:53:89:82:71:
         df:3a:cb:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:56 2024 by rpki-client on console-fra.rpki-client.org