Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BA33D6030E211F1942E4F8ADAE4EC9C.roa
File: 8BA33D6030E211F1942E4F8ADAE4EC9C.roa (raw, json)
Hash identifier: Pz+wiYfsG1ns3159z2D8ywPSq4mOY5PHS4xhiZOXbco=
Subject key identifier: 3B:F4:02:08:82:61:EB:B8:3B:AD:11:57:93:4B:B4:5E:72:DD:E3:AD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AA2E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BA33D6030E211F1942E4F8ADAE4EC9C.roa
Signing time: Sun 05 Apr 2026 11:28:19 +0000
ROA not before: Sun 05 Apr 2026 11:28:14 +0000
ROA not after: Tue 05 May 2026 11:28:14 +0000
asID: 151407
IP address blocks: 156.248.8.0/21 maxlen: 24
156.248.8.0/22 maxlen: 24
156.248.8.0/23 maxlen: 24
156.248.8.0/24 maxlen: 24
156.248.9.0/24 maxlen: 24
156.248.10.0/23 maxlen: 24
156.248.10.0/24 maxlen: 24
156.248.12.0/22 maxlen: 24
156.248.12.0/23 maxlen: 24
156.248.14.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109102 (0x1aa2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 5 11:28:14 2026 GMT
Not After : May 5 11:28:14 2026 GMT
Subject: CN=69d24753-7489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2f:53:94:e0:c1:de:01:50:bd:3c:29:a4:8c:
fb:19:8d:9d:28:17:cf:c7:fe:21:84:08:b5:5c:f3:
5c:68:c0:47:e1:81:ef:48:70:d7:bb:d7:18:3e:82:
e0:5a:58:83:0e:f4:4d:4e:86:21:23:82:d4:c8:62:
2d:2b:a0:69:fb:aa:e1:84:ca:4d:49:2a:92:f9:26:
58:af:89:43:42:f2:be:50:18:54:0a:4a:95:89:27:
e3:56:b3:1f:83:ca:34:e0:72:0b:b0:22:a9:3c:a9:
7a:f6:ab:78:33:f5:99:95:61:fa:6b:25:10:ed:da:
80:4d:b9:e7:1d:ff:86:df:c9:d7:14:8e:56:99:b4:
cb:64:9b:31:d7:26:94:76:ab:e9:02:90:c5:a8:d0:
8e:d9:c1:76:6c:5c:fa:3a:6f:d6:d8:6d:ff:71:d4:
23:b1:d7:8a:85:31:6d:06:08:4c:1d:2e:2b:ab:e1:
bd:50:98:f5:a2:de:97:4a:c0:67:65:18:ad:75:22:
6b:63:f3:e7:96:b2:5d:d2:7e:d5:e8:4d:a6:07:4a:
55:d4:d4:14:9d:be:5d:06:dc:84:15:5c:0a:29:23:
f4:d3:96:ef:93:ef:ad:29:fe:0f:d6:4f:68:bf:80:
60:50:2f:6f:f3:53:2d:50:46:3a:54:28:17:e7:ce:
64:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F4:02:08:82:61:EB:B8:3B:AD:11:57:93:4B:B4:5E:72:DD:E3:AD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BA33D6030E211F1942E4F8ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.8.0/21
Signature Algorithm: sha256WithRSAEncryption
60:e8:92:46:1e:cb:35:72:b7:9f:eb:db:c8:4b:de:84:10:90:
16:09:67:b1:b7:f9:28:58:bc:15:34:cd:98:aa:cd:e6:d3:b0:
04:fb:e4:c2:03:70:09:3d:09:b3:62:15:33:24:74:81:d2:67:
fe:1d:a6:13:23:da:12:62:05:0f:05:13:bb:0f:75:c5:ce:73:
8f:a1:c5:71:66:af:69:fe:b2:25:b9:68:ea:95:6b:07:2e:23:
9d:34:f3:21:4e:89:fe:be:0c:38:64:1a:e8:c9:3f:18:a0:e7:
73:79:00:ee:43:f3:88:1f:bb:83:ff:cf:d8:c6:9a:ae:02:3c:
18:2a:1e:7a:22:3b:f7:06:29:ce:39:0e:55:76:bd:0a:4b:a9:
b4:1d:4f:4e:25:68:f0:49:d5:89:61:06:83:2b:33:95:4b:55:
5a:aa:1a:89:fe:38:07:00:ef:b8:c0:93:76:82:65:88:61:c2:
10:0a:bc:ca:8c:ea:c4:34:89:ea:02:a4:3f:7b:db:9c:60:bc:
b1:19:7e:9a:72:ac:d2:b9:fc:9c:cc:d8:1f:52:69:38:46:53:
18:7d:02:50:87:77:0f:9c:4f:04:99:3f:1e:af:8d:33:68:5d:
0e:c6:0c:ba:87:48:cb:7c:b8:b4:75:0b:0a:77:62:46:dc:9b:
25:9e:8c:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:49:29 2026 by rpki-client