Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/868/qKVJRPCI0L6KD7cAdCCS1GTGgMQ.roa
File:                     qKVJRPCI0L6KD7cAdCCS1GTGgMQ.roa (raw, json)
Hash identifier:          Ant+ecZq/5EY50nE2CLfnV7GlIP/6m/e/XwGAHpxccU=
Subject key identifier:   A8:A5:49:44:F0:88:D0:BE:8A:0F:B7:00:74:20:92:D4:64:C6:80:C4
Certificate issuer:       /CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46
Certificate serial:       1C
Authority key identifier: 8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/qKVJRPCI0L6KD7cAdCCS1GTGgMQ.roa
Signing time:             Mon 01 May 2023 01:29:56 +0000
ROA not before:           Mon 01 May 2023 01:29:56 +0000
ROA not after:            Sun 14 Apr 2024 01:30:02 +0000
asID:                     24271
IP address blocks:        202.177.112.0/20 maxlen: 20

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 28 (0x1c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46
        Validity
            Not Before: May  1 01:29:56 2023 GMT
            Not After : Apr 14 01:30:02 2024 GMT
        Subject: CN=A8A54944F088D0BE8A0FB700742092D464C680C4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:c5:13:03:a2:d0:d8:9d:28:56:ce:28:2f:3d:
                    68:1b:4a:ee:73:96:21:eb:f7:58:d7:a4:23:da:22:
                    f1:73:80:42:45:a3:bc:30:6f:f0:46:e6:81:9d:58:
                    b3:d9:aa:84:b6:d3:18:7b:c3:97:25:96:a6:71:3e:
                    46:b2:ee:e6:89:ca:92:57:28:70:90:f1:c7:db:8f:
                    ea:77:30:af:bc:31:36:ec:09:1f:ab:42:a6:d4:a7:
                    2e:04:e9:69:93:dd:65:cc:ab:1e:a4:9f:c1:8d:a6:
                    84:aa:aa:12:04:95:21:3e:76:80:6d:cd:5d:8f:b8:
                    26:5b:d9:4d:d7:ef:5e:6d:89:e6:18:87:9f:92:67:
                    c7:7c:ac:e8:f2:08:29:b9:c6:39:b2:01:e6:80:58:
                    00:94:4c:bb:29:c3:e9:f7:53:5f:36:7a:4a:78:79:
                    9e:aa:2a:30:52:33:6f:84:4b:4d:3e:4c:cf:18:bf:
                    ee:20:6b:5c:bf:cf:a2:26:81:06:50:eb:cb:4e:77:
                    1d:56:f3:bc:14:84:5d:05:84:24:ca:9b:e6:44:b0:
                    a7:5e:59:68:f8:6b:b1:64:09:f7:f0:b9:b4:de:6c:
                    ac:5f:6a:39:26:00:07:d2:95:12:ac:79:c4:7e:76:
                    07:10:01:96:92:79:9b:41:23:0f:46:60:af:8f:c2:
                    d8:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:A5:49:44:F0:88:D0:BE:8A:0F:B7:00:74:20:92:D4:64:C6:80:C4
            X509v3 Authority Key Identifier:
                keyid:8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/qKVJRPCI0L6KD7cAdCCS1GTGgMQ.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.177.112.0/20

    Signature Algorithm: sha256WithRSAEncryption
         3e:d9:34:0c:0b:7a:3d:45:78:a2:17:e9:ff:4e:8d:d1:f0:93:
         bb:a8:7f:4f:dc:d5:50:52:28:33:3b:7b:eb:27:7a:14:86:65:
         5e:9f:bb:08:f1:30:0e:fa:dd:93:70:5d:01:8f:78:09:6e:ee:
         b7:a4:58:e2:1f:7d:07:8f:d0:ff:89:55:d1:52:f0:e4:ec:a8:
         ed:f6:fb:e8:d0:9e:48:54:57:a8:fe:0d:85:8d:e9:ed:cb:ec:
         7f:3a:84:ee:54:2c:52:b8:39:7f:4f:df:9e:0c:11:fe:ba:cf:
         71:5f:8a:e6:44:0b:fa:15:a1:8d:1d:52:88:ea:fa:c5:89:6e:
         ff:c5:b6:4e:cb:67:4a:9a:70:b9:fd:d7:08:2c:36:62:55:4a:
         65:ad:8e:24:88:42:c8:33:b1:a3:f9:01:e5:69:fd:52:4c:29:
         73:51:d7:bd:16:43:92:c0:8b:8e:0f:41:a8:35:2b:eb:46:36:
         98:ac:ec:b8:61:56:b2:2f:1e:9b:d7:2b:7d:2f:6e:f1:d6:1f:
         54:b3:f8:6c:fb:49:d4:22:05:89:c8:f3:3d:f6:8b:77:70:4a:
         cb:53:41:16:40:27:59:63:07:0d:69:cc:6c:4a:7c:6e:a7:69:
         ee:d9:d0:3b:15:a4:14:b6:49:06:0b:db:da:37:3f:22:13:72:
         63:f5:31:9e
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDA5
NjJFREUwRjVFMjFBN0U4RjlFMUFCMDA2RkY5NDBFMDRFRDQ2MB4XDTIzMDUwMTAx
Mjk1NloXDTI0MDQxNDAxMzAwMlowMzExMC8GA1UEAxMoQThBNTQ5NDRGMDg4RDBC
RThBMEZCNzAwNzQyMDkyRDQ2NEM2ODBDNDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAK3FEwOi0NidKFbOKC89aBtK7nOWIev3WNekI9oi8XOAQkWjvDBv
8EbmgZ1Ys9mqhLbTGHvDlyWWpnE+RrLu5onKklcocJDxx9uP6ncwr7wxNuwJH6tC
ptSnLgTpaZPdZcyrHqSfwY2mhKqqEgSVIT52gG3NXY+4JlvZTdfvXm2J5hiHn5Jn
x3ys6PIIKbnGObIB5oBYAJRMuynD6fdTXzZ6Snh5nqoqMFIzb4RLTT5Mzxi/7iBr
XL/PoiaBBlDry053HVbzvBSEXQWEJMqb5kSwp15ZaPhrsWQJ9/C5tN5srF9qOSYA
B9KVEqx5xH52BxABlpJ5m0EjD0Zgr4/C2J0CAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBSopUlE8IjQvooPtwB0IJLUZMaAxDAfBgNVHSMEGDAWgBSNCWLt4PXiGn6Pnhqw
Bv+UDgTtRjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvODY4L2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0RTdVWS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0
RTdVWS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC84NjgvcUtWSlJQQ0kwTDZLRDdjQWRDQ1MxR1RHZ01RLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBMqxcDANBgkqhkiG9w0BAQsFAAOCAQEAPtk0DAt6PUV4ohfp/06N0fCTu6h/
T9zVUFIoMzt76yd6FIZlXp+7CPEwDvrdk3BdAY94CW7ut6RY4h99B4/Q/4lV0VLw
5Oyo7fb76NCeSFRXqP4NhY3p7cvsfzqE7lQsUrg5f0/fngwR/rrPcV+K5kQL+hWh
jR1SiOr6xYlu/8W2TstnSppwuf3XCCw2YlVKZa2OJIhCyDOxo/kB5Wn9Ukwpc1HX
vRZDksCLjg9BqDUr60Y2mKzsuGFWsi8em9crfS9u8dYfVLP4bPtJ1CIFicjzPfaL
d3BKy1NBFkAnWWMHDWnMbEp8bqdp7tnQOxWkFLZJBgvb2jc/IhNyY/Uxng==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:56 2024 by rpki-client on console-fra.rpki-client.org