Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/868/vSB9iXJG6ZFAFZI8Gscy_9qZl0o.roa
File:                     vSB9iXJG6ZFAFZI8Gscy_9qZl0o.roa (raw, json)
Hash identifier:          7K74lCeev7+ZNCjlNaExJG1BQaVhUmXQrNHd3TcHca0=
Subject key identifier:   BD:20:7D:89:72:46:E9:91:40:15:92:3C:1A:C7:32:FF:DA:99:97:4A
Certificate issuer:       /CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46
Certificate serial:       19
Authority key identifier: 8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/vSB9iXJG6ZFAFZI8Gscy_9qZl0o.roa
Signing time:             Mon 01 May 2023 01:29:55 +0000
ROA not before:           Mon 01 May 2023 01:29:55 +0000
ROA not after:            Sun 14 Apr 2024 01:30:02 +0000
asID:                     24271
IP address blocks:        202.177.64.0/18 maxlen: 20

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 25 (0x19)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46
        Validity
            Not Before: May  1 01:29:55 2023 GMT
            Not After : Apr 14 01:30:02 2024 GMT
        Subject: CN=BD207D897246E9914015923C1AC732FFDA99974A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:01:e8:93:88:fd:f5:86:51:90:91:67:8b:29:
                    3f:6e:c4:7f:82:1c:5a:11:c6:9e:39:49:02:a3:c1:
                    cd:8d:3a:84:ac:bd:f6:9d:b9:6d:cd:40:21:34:44:
                    14:6d:5c:a2:40:a5:cc:19:b7:84:97:a7:30:3d:3c:
                    b4:77:e5:a1:66:af:0a:ac:ee:0c:43:d0:db:71:2d:
                    32:a7:94:e9:e9:8c:36:37:c1:44:d6:83:3f:ee:50:
                    2d:0f:f3:88:6b:ab:00:f6:02:ac:ca:16:3c:93:6c:
                    a8:a6:a8:ee:14:22:4c:85:4d:06:27:8d:5b:bb:40:
                    5d:1b:c8:ff:78:e1:b2:85:fe:da:d3:bb:ef:86:0a:
                    ec:7b:63:a4:09:7f:7b:6c:78:18:e6:a5:29:e2:f1:
                    76:a7:37:ee:63:a3:a8:0f:8d:c0:a4:4e:f1:d9:b5:
                    34:d4:c8:9c:18:87:22:c9:9f:00:a9:28:c0:50:28:
                    ed:f9:82:9d:1f:d9:36:71:58:9c:f9:68:6a:ac:af:
                    76:f0:df:8f:14:11:a0:c6:44:a1:6f:3b:bf:87:9e:
                    a0:ad:c8:5a:fc:04:72:a2:29:b7:ad:70:19:5c:6d:
                    f2:40:18:a8:bc:01:74:35:d7:f7:0f:de:ce:a5:af:
                    97:ed:7f:05:41:9c:68:dd:49:1b:d7:2a:1d:2d:93:
                    39:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:20:7D:89:72:46:E9:91:40:15:92:3C:1A:C7:32:FF:DA:99:97:4A
            X509v3 Authority Key Identifier:
                keyid:8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/vSB9iXJG6ZFAFZI8Gscy_9qZl0o.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.177.64.0/18

    Signature Algorithm: sha256WithRSAEncryption
         b1:1b:38:7a:13:75:a9:c9:aa:66:08:d9:1f:0a:7e:27:79:85:
         de:86:3f:a5:75:ac:45:63:d6:5d:2d:c6:87:f8:a0:18:f5:74:
         2b:1f:57:d1:d9:be:18:f9:80:df:96:4a:ab:bb:17:04:a5:6e:
         28:1c:a7:42:d8:be:ab:07:dc:02:37:06:56:d2:33:8e:e8:c5:
         6e:1b:ca:d4:62:bc:81:a3:7a:05:60:ec:22:5c:dd:5c:2a:24:
         83:4a:50:bf:51:7f:9b:9a:a6:e8:82:22:e2:b2:f7:8c:b2:76:
         af:17:18:14:ca:9d:69:e0:69:f6:35:1c:1f:65:55:0a:a6:d1:
         31:ab:ad:c8:24:9f:49:e7:5e:7f:fd:45:1f:8b:36:95:6d:06:
         95:1f:be:5e:43:fb:a2:24:ae:61:f7:5d:47:b4:25:e1:18:55:
         5e:7b:30:a3:b0:eb:1f:4d:cb:86:14:96:a0:ab:a6:e3:2d:6c:
         6a:3a:98:05:c6:64:58:8f:b0:1a:1c:ad:c4:60:00:83:4b:45:
         5c:7b:26:fd:8e:ea:c2:20:ba:8a:3a:c7:9d:38:75:6b:05:bf:
         4e:3a:9e:c1:7f:20:48:98:0c:12:71:ca:e9:94:78:b0:26:9f:
         06:30:ae:d9:46:35:37:8d:03:71:be:dd:3b:93:32:f0:18:86:
         ad:2c:82:54
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBGTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDA5
NjJFREUwRjVFMjFBN0U4RjlFMUFCMDA2RkY5NDBFMDRFRDQ2MB4XDTIzMDUwMTAx
Mjk1NVoXDTI0MDQxNDAxMzAwMlowMzExMC8GA1UEAxMoQkQyMDdEODk3MjQ2RTk5
MTQwMTU5MjNDMUFDNzMyRkZEQTk5OTc0QTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAO4B6JOI/fWGUZCRZ4spP27Ef4IcWhHGnjlJAqPBzY06hKy99p25
bc1AITREFG1cokClzBm3hJenMD08tHfloWavCqzuDEPQ23EtMqeU6emMNjfBRNaD
P+5QLQ/ziGurAPYCrMoWPJNsqKao7hQiTIVNBieNW7tAXRvI/3jhsoX+2tO774YK
7HtjpAl/e2x4GOalKeLxdqc37mOjqA+NwKRO8dm1NNTInBiHIsmfAKkowFAo7fmC
nR/ZNnFYnPloaqyvdvDfjxQRoMZEoW87v4eeoK3IWvwEcqIpt61wGVxt8kAYqLwB
dDXX9w/ezqWvl+1/BUGcaN1JG9cqHS2TOT0CAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBS9IH2JckbpkUAVkjwaxzL/2pmXSjAfBgNVHSMEGDAWgBSNCWLt4PXiGn6Pnhqw
Bv+UDgTtRjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvODY4L2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0RTdVWS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0
RTdVWS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC84NjgvdlNCOWlYSkc2WkZBRlpJOEdzY3lfOXFabDBvLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBsqxQDANBgkqhkiG9w0BAQsFAAOCAQEAsRs4ehN1qcmqZgjZHwp+J3mF3oY/
pXWsRWPWXS3Gh/igGPV0Kx9X0dm+GPmA35ZKq7sXBKVuKBynQti+qwfcAjcGVtIz
jujFbhvK1GK8gaN6BWDsIlzdXCokg0pQv1F/m5qm6IIi4rL3jLJ2rxcYFMqdaeBp
9jUcH2VVCqbRMautyCSfSedef/1FH4s2lW0GlR++XkP7oiSuYfddR7Ql4RhVXnsw
o7DrH03LhhSWoKum4y1sajqYBcZkWI+wGhytxGAAg0tFXHsm/Y7qwiC6ijrHnTh1
awW/TjqewX8gSJgMEnHK6ZR4sCafBjCu2UY1N40Dcb7dO5My8BiGrSyCVA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:14 2024 by rpki-client on console-ams.rpki-client.org