Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/958/UP-86ThTOFnaXWfMLj8A8L066dI.roa
File:                     UP-86ThTOFnaXWfMLj8A8L066dI.roa (raw, json)
Hash identifier:          OinMwSDADveli+tY5ERgruGyFh9TcMD/DnWvhc+Ozzo=
Subject key identifier:   50:FF:BC:E9:38:53:38:59:DA:5D:67:CC:2E:3F:00:F0:BD:3A:E9:D2
Certificate issuer:       /CN=9904ECBCD85F22A2E8AE7E1F991E8345D06A9816
Certificate serial:       75
Authority key identifier: 99:04:EC:BC:D8:5F:22:A2:E8:AE:7E:1F:99:1E:83:45:D0:6A:98:16
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mQTsvNhfIqLorn4fmR6DRdBqmBY.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/UP-86ThTOFnaXWfMLj8A8L066dI.roa
Signing time:             Thu 13 Apr 2023 09:53:49 +0000
ROA not before:           Thu 13 Apr 2023 09:53:49 +0000
ROA not after:            Thu 14 Mar 2024 01:30:02 +0000
asID:                     38631
IP address blocks:        203.104.158.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 117 (0x75)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9904ECBCD85F22A2E8AE7E1F991E8345D06A9816
        Validity
            Not Before: Apr 13 09:53:49 2023 GMT
            Not After : Mar 14 01:30:02 2024 GMT
        Subject: CN=50FFBCE938533859DA5D67CC2E3F00F0BD3AE9D2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:3b:f6:f1:48:f3:5e:dd:61:f5:76:12:e5:65:
                    12:22:a2:8e:6b:cd:e9:0b:f5:37:78:e4:e2:62:cb:
                    03:b5:25:8b:f3:b4:b2:57:c4:a5:ba:44:a2:49:2e:
                    62:99:c7:8c:0a:99:6a:cc:40:e9:41:d9:d2:bf:4e:
                    b9:dd:ff:6c:c1:7d:0a:ad:a4:20:c5:ec:91:fa:1a:
                    35:e6:d7:d3:3f:16:78:4a:2b:fd:67:9c:92:34:f3:
                    3d:c5:c1:5f:31:05:c2:df:37:a7:c9:e3:14:4d:17:
                    72:e6:f9:9a:88:04:7d:a5:82:39:7a:0f:77:b2:91:
                    0e:64:c6:1f:5d:02:21:35:24:af:b0:fd:28:18:0a:
                    0c:d3:2c:11:ad:a4:2d:dd:ea:ab:de:3f:29:c4:e0:
                    c3:c6:4e:bf:56:e6:4e:61:8e:e6:29:d4:29:37:50:
                    05:32:bc:cc:7b:8a:61:3c:23:ea:e7:8f:ff:1f:88:
                    10:04:53:c1:45:42:c0:81:b4:3c:44:ab:5d:15:21:
                    f4:ba:c0:9e:df:27:eb:e4:34:97:a5:2a:4e:91:cf:
                    9f:f6:cb:70:52:b3:41:04:18:27:36:dd:62:67:32:
                    ad:61:5e:30:97:dd:9e:17:d7:2a:11:c1:d6:1e:e6:
                    00:8a:3a:d0:c0:cf:e0:c4:3e:ee:c3:67:5b:99:75:
                    e1:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:FF:BC:E9:38:53:38:59:DA:5D:67:CC:2E:3F:00:F0:BD:3A:E9:D2
            X509v3 Authority Key Identifier:
                keyid:99:04:EC:BC:D8:5F:22:A2:E8:AE:7E:1F:99:1E:83:45:D0:6A:98:16

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/mQTsvNhfIqLorn4fmR6DRdBqmBY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mQTsvNhfIqLorn4fmR6DRdBqmBY.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/UP-86ThTOFnaXWfMLj8A8L066dI.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  203.104.158.0/24

    Signature Algorithm: sha256WithRSAEncryption
         af:ca:03:d5:47:c6:00:75:71:ec:5f:37:32:e2:a7:8d:8e:37:
         5c:6d:14:b4:3b:d8:69:eb:37:d3:ee:b5:f5:cd:a6:9d:64:28:
         da:d5:25:17:95:59:48:7d:73:f8:f7:60:c9:82:fb:63:6a:49:
         36:97:04:96:9b:5d:d6:f1:bf:ac:a7:43:5d:2a:3a:b6:7c:88:
         47:d1:a0:b4:f6:0a:ca:96:3b:f6:a9:c0:c5:42:42:56:c6:74:
         dc:0f:30:e7:4a:57:ed:76:01:93:da:a6:c9:ea:ec:68:5f:6d:
         21:4c:8f:f7:50:24:ee:e7:3c:28:10:66:bc:0d:b2:e8:e0:b7:
         08:22:56:07:49:49:c2:f1:b8:cc:9f:a1:3c:fe:0c:b0:df:33:
         40:07:43:c9:a6:b9:34:fb:b1:58:1d:5f:ed:54:05:7b:aa:d3:
         6a:ad:cf:34:61:94:88:17:d6:8f:50:5a:75:f3:8d:eb:b7:0d:
         20:07:bc:3b:4e:26:0d:d7:40:cf:cf:d8:9f:8b:a6:a9:f0:90:
         cd:e3:74:e6:bc:d4:24:6a:d8:8c:81:72:b5:c0:81:46:44:6f:
         28:67:99:58:62:4e:98:b4:04:e8:cd:49:71:44:27:1d:fe:eb:
         7b:5f:79:dc:4b:1b:67:13:c4:b0:6c:c8:34:92:70:62:69:df:
         db:0f:1f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:02 2024 by rpki-client on console-fra.rpki-client.org