This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/326130623a326630323a3a2f33312d3331203d3e203438313132.roa
File:                     326130623a326630323a3a2f33312d3331203d3e203438313132.roa (raw, json)
Hash identifier:          yQP+eScL56VvjCcArkcOHkYtVrhlr+5rY7m1oWbf8VI=
Subject key identifier:   DB:EB:24:E5:4D:AC:73:07:1D:D5:E4:9C:53:25:A3:33:51:8B:7F:3A
Certificate issuer:       /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial:       7EF5856DFB5B4404D81B83D408F3885945C9CC0F
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access:      rsync://rpki.xindi.eu/repo/XINDI/0/326130623a326630323a3a2f33312d3331203d3e203438313132.roa
Signing time:             Thu 05 Feb 2026 19:47:06 +0000
ROA not before:           Thu 05 Feb 2026 19:42:06 +0000
ROA not after:            Thu 04 Feb 2027 19:47:06 +0000
asID:                     48112
IP address blocks:        2a0b:2f02::/31 maxlen: 31
Validation:               OK
Signature path:           rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
                          rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Feb 2026 10:34:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7e:f5:85:6d:fb:5b:44:04:d8:1b:83:d4:08:f3:88:59:45:c9:cc:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
        Validity
            Not Before: Feb  5 19:42:06 2026 GMT
            Not After : Feb  4 19:47:06 2027 GMT
        Subject: CN=DBEB24E54DAC73071DD5E49C5325A333518B7F3A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:85:b3:8e:f3:68:d1:6a:4b:43:5f:e4:20:4e:
                    53:5e:35:1c:ba:d5:13:02:8a:d0:65:7d:60:c5:4c:
                    e1:77:3c:6b:c7:09:74:9b:a3:ac:bc:c0:f8:b9:b0:
                    66:dc:10:67:2e:40:57:9e:b3:e7:e8:32:1a:d3:b0:
                    36:44:22:f1:ee:8f:00:f1:9f:b0:15:25:a3:06:e1:
                    3a:82:55:fc:dd:48:8d:1f:87:ab:9f:3c:ae:94:84:
                    60:60:8e:7a:b8:31:86:90:60:78:1f:c7:6d:6b:7b:
                    f4:cc:52:fa:bd:25:b4:81:49:2b:ea:50:3c:ad:20:
                    18:ee:7b:f9:f1:10:ef:bb:fb:59:4d:2e:30:97:a7:
                    1e:2b:98:ee:1f:26:75:cc:fb:b6:f0:1c:62:5f:87:
                    22:00:64:ea:2b:0d:45:09:62:6e:07:fe:be:83:39:
                    c0:79:7c:8b:81:5c:ac:e8:0b:e4:91:43:d0:b7:1a:
                    5e:c0:f6:9a:2a:63:f3:d7:39:07:f1:1f:3f:aa:6a:
                    80:7c:26:ba:1a:b3:e9:84:5c:06:00:95:6d:09:19:
                    30:a6:1b:86:d0:29:a9:0e:d5:21:f1:c9:ed:2c:a2:
                    ba:cd:99:5f:e4:17:c2:ad:93:7a:f4:a8:ba:f7:73:
                    3a:e5:29:76:df:65:38:21:75:e4:20:f9:0c:98:19:
                    39:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:EB:24:E5:4D:AC:73:07:1D:D5:E4:9C:53:25:A3:33:51:8B:7F:3A
            X509v3 Authority Key Identifier:
                keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/326130623a326630323a3a2f33312d3331203d3e203438313132.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0b:2f02::/31

    Signature Algorithm: sha256WithRSAEncryption
         3d:d6:ed:8b:f1:d8:c2:2d:81:5c:3b:0b:be:b6:c5:1a:88:b2:
         05:3b:d4:c8:78:c2:cb:eb:98:50:ef:27:d4:60:d2:ba:16:b2:
         b0:3b:24:92:d8:da:57:0f:df:73:2e:a9:a0:25:e6:07:39:7c:
         d3:90:ce:85:b1:a0:4b:78:94:7c:0a:6a:24:bf:78:dc:80:b5:
         e4:39:a4:8c:87:56:f7:1a:7f:d2:23:dc:e9:60:51:af:a3:23:
         04:7e:a1:d9:21:f8:f9:ef:94:72:5c:50:b6:4a:62:ed:cd:0f:
         44:1d:8f:fe:03:6f:15:4a:d3:d6:3f:5f:17:9d:66:a9:1a:f2:
         52:7f:41:17:f0:4f:e8:88:91:08:6f:14:12:58:c8:55:d8:f0:
         21:23:ff:60:21:4f:8c:94:94:b1:67:7c:58:18:51:23:e8:4f:
         bb:7c:14:25:04:00:4b:5f:e5:17:7d:71:35:4b:9e:ca:64:0b:
         09:47:54:eb:a5:96:a3:4e:80:4f:76:c8:51:42:44:f9:fc:82:
         2e:c8:6a:cb:76:71:45:bd:ae:e3:fb:4d:22:a8:34:d4:36:fd:
         4f:bf:74:77:5d:db:c9:d0:cd:28:f7:aa:f3:88:95:9d:cc:c9:
         fd:a0:21:57:a7:ff:7b:05:f8:ab:4d:5d:c6:a8:20:d6:c8:64:
         8e:b2:d1:12
-----BEGIN CERTIFICATE-----
MIIExzCCA6+gAwIBAgIUfvWFbftbRATYG4PUCPOIWUXJzA8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjAxODMyODdlYjA4ZWNlMGM2NWZhNDlhM2Y0NTYyMWM2
MTJkZGJkMTAeFw0yNjAyMDUxOTQyMDZaFw0yNzAyMDQxOTQ3MDZaMDMxMTAvBgNV
BAMTKERCRUIyNEU1NERBQzczMDcxREQ1RTQ5QzUzMjVBMzMzNTE4QjdGM0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjhbOO82jRaktDX+QgTlNeNRy6
1RMCitBlfWDFTOF3PGvHCXSbo6y8wPi5sGbcEGcuQFees+foMhrTsDZEIvHujwDx
n7AVJaMG4TqCVfzdSI0fh6ufPK6UhGBgjnq4MYaQYHgfx21re/TMUvq9JbSBSSvq
UDytIBjue/nxEO+7+1lNLjCXpx4rmO4fJnXM+7bwHGJfhyIAZOorDUUJYm4H/r6D
OcB5fIuBXKzoC+SRQ9C3Gl7A9poqY/PXOQfxHz+qaoB8Jroas+mEXAYAlW0JGTCm
G4bQKakO1SHxye0sorrNmV/kF8Ktk3r0qLr3czrlKXbfZTghdeQg+QyYGTm/AgMB
AAGjggHRMIIBzTAdBgNVHQ4EFgQU2+sk5U2scwcd1eScUyWjM1GLfzowHwYDVR0j
BBgwFoAUYBgyh+sI7ODGX6SaP0ViHGEt29EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud
HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraS54aW5kaS5ldS9yZXBvL1hJTkRJLzAv
NjAxODMyODdFQjA4RUNFMEM2NUZBNDlBM0Y0NTYyMUM2MTJEREJEMS5jcmwwZAYI
KwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQv
cmVwb3NpdG9yeS9ERUZBVUxUL1lCZ3loLXNJN09ER1g2U2FQMFZpSEdFdDI5RS5j
ZXIwdwYIKwYBBQUHAQsEazBpMGcGCCsGAQUFBzALhltyc3luYzovL3Jwa2kueGlu
ZGkuZXUvcmVwby9YSU5ESS8wLzMyNjEzMDYyM2EzMjY2MzAzMjNhM2EyZjMzMzEy
ZDMzMzEyMDNkM2UyMDM0MzgzMTMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQEqCy8CMA0GCSqGSIb3
DQEBCwUAA4IBAQA91u2L8djCLYFcOwu+tsUaiLIFO9TIeMLL65hQ7yfUYNK6FrKw
OySS2NpXD99zLqmgJeYHOXzTkM6FsaBLeJR8Cmokv3jcgLXkOaSMh1b3Gn/SI9zp
YFGvoyMEfqHZIfj575RyXFC2SmLtzQ9EHY/+A28VStPWP18XnWapGvJSf0EX8E/o
iJEIbxQSWMhV2PAhI/9gIU+MlJSxZ3xYGFEj6E+7fBQlBABLX+UXfXE1S57KZAsJ
R1TrpZajToBPdshRQkT5/IIuyGrLdnFFva7j+00iqDTUNv1Pv3R3XdvJ0M0o96rz
iJWdzMn9oCFXp/97BfirTV3GqCDWyGSOstES
-----END CERTIFICATE-----