This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/326130623a326630343a3a2f33312d3331203d3e203438313132.roa
File:                     326130623a326630343a3a2f33312d3331203d3e203438313132.roa (raw, json)
Hash identifier:          7y6tnTQRPMWsTtdBvWotKskklOa4LwGqVuv1o+eH81w=
Subject key identifier:   F7:F8:E2:B6:3E:AF:49:EF:14:1D:47:6D:B8:87:7B:CC:FF:68:F8:53
Certificate issuer:       /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial:       285971885B25785F431E2BD02247142211D7E434
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access:      rsync://rpki.xindi.eu/repo/XINDI/0/326130623a326630343a3a2f33312d3331203d3e203438313132.roa
Signing time:             Thu 05 Feb 2026 19:47:02 +0000
ROA not before:           Thu 05 Feb 2026 19:42:02 +0000
ROA not after:            Thu 04 Feb 2027 19:47:02 +0000
asID:                     48112
IP address blocks:        2a0b:2f04::/31 maxlen: 31
Validation:               OK
Signature path:           rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
                          rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Feb 2026 10:34:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            28:59:71:88:5b:25:78:5f:43:1e:2b:d0:22:47:14:22:11:d7:e4:34
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
        Validity
            Not Before: Feb  5 19:42:02 2026 GMT
            Not After : Feb  4 19:47:02 2027 GMT
        Subject: CN=F7F8E2B63EAF49EF141D476DB8877BCCFF68F853
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:76:d3:25:25:06:26:25:1d:98:6e:6a:80:b1:
                    f3:19:fe:1d:84:0e:28:bc:fa:13:f2:01:22:ee:6d:
                    89:a8:2a:1b:08:f9:6e:fc:81:7b:76:64:a5:2f:23:
                    23:e6:33:a2:77:b9:6d:c3:61:d9:ca:4d:f8:fc:27:
                    92:42:70:24:e2:d1:26:fd:ae:0e:f9:84:57:f4:16:
                    d1:9b:d8:78:df:7a:d4:b0:1e:89:06:5d:96:0f:c7:
                    89:25:0a:80:8d:ca:4c:81:e9:b1:59:d6:a3:92:54:
                    9a:4b:c9:7f:4c:96:ad:fc:42:4e:64:de:10:c7:a8:
                    6a:93:6f:d8:85:31:57:b4:8e:31:70:37:26:25:ea:
                    f1:fb:2e:c0:1e:39:29:fc:70:e5:0b:b5:1b:8c:ae:
                    aa:e5:3b:8c:b0:72:73:4f:96:5d:d4:c2:a6:31:a7:
                    eb:2b:5c:61:6a:7a:3a:01:15:79:1b:a2:5c:f4:a5:
                    17:f9:c1:10:99:27:e8:5a:11:94:cc:df:a5:73:1b:
                    2c:79:5b:fe:dd:73:2a:b4:8a:a2:e5:60:a0:02:fa:
                    b8:b1:af:4d:1a:cd:1a:bd:3a:3a:a1:07:76:19:3d:
                    dd:b0:9f:a4:9e:7d:05:d8:24:79:26:7b:09:ba:fa:
                    83:ef:1e:03:fe:a8:f9:92:a9:ba:b8:d8:e0:41:52:
                    8c:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:F8:E2:B6:3E:AF:49:EF:14:1D:47:6D:B8:87:7B:CC:FF:68:F8:53
            X509v3 Authority Key Identifier:
                keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/326130623a326630343a3a2f33312d3331203d3e203438313132.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0b:2f04::/31

    Signature Algorithm: sha256WithRSAEncryption
         40:9d:90:57:b7:08:5a:ec:ca:58:ea:70:64:98:be:df:f2:69:
         bb:a2:ae:a9:95:c9:98:74:81:3c:cf:5c:2e:58:47:c0:b6:75:
         19:44:c6:68:55:e3:e7:c0:e6:a3:8d:46:96:16:24:3e:c4:e2:
         9e:06:ea:e6:73:e1:e0:c7:02:12:8c:c4:dc:e3:6e:1f:9d:16:
         dd:60:5b:7c:f0:20:e9:8d:80:2e:78:91:b4:1d:c7:a8:27:51:
         a0:8d:ef:78:16:78:67:8a:37:f6:f7:8b:8c:e2:46:e2:9d:44:
         b7:0d:aa:7e:59:55:b6:1e:3f:d5:f3:e9:77:6f:5e:9c:42:fb:
         77:c3:e0:55:33:83:4e:10:22:b6:be:32:bb:91:df:dd:0e:ee:
         5f:df:d3:83:cd:48:e7:06:13:e4:46:f6:a0:7d:3d:d9:6f:98:
         ec:ad:3c:76:9e:71:9f:a0:63:72:b8:26:09:1c:80:80:2b:58:
         ac:ca:31:e9:24:8b:e0:68:f6:82:27:63:bf:4c:55:33:20:f3:
         24:92:bd:96:82:f3:61:4c:30:71:24:c6:c7:95:72:a2:32:ce:
         3d:9e:f0:28:a5:33:27:06:70:51:5f:a0:0c:a8:36:1e:4f:7d:
         72:cf:8c:e9:36:77:f5:c0:f2:ae:fc:e6:e1:a5:18:1c:d1:77:
         7d:cd:e2:d3
-----BEGIN CERTIFICATE-----
MIIExzCCA6+gAwIBAgIUKFlxiFsleF9DHivQIkcUIhHX5DQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjAxODMyODdlYjA4ZWNlMGM2NWZhNDlhM2Y0NTYyMWM2
MTJkZGJkMTAeFw0yNjAyMDUxOTQyMDJaFw0yNzAyMDQxOTQ3MDJaMDMxMTAvBgNV
BAMTKEY3RjhFMkI2M0VBRjQ5RUYxNDFENDc2REI4ODc3QkNDRkY2OEY4NTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDdtMlJQYmJR2YbmqAsfMZ/h2E
Dii8+hPyASLubYmoKhsI+W78gXt2ZKUvIyPmM6J3uW3DYdnKTfj8J5JCcCTi0Sb9
rg75hFf0FtGb2HjfetSwHokGXZYPx4klCoCNykyB6bFZ1qOSVJpLyX9Mlq38Qk5k
3hDHqGqTb9iFMVe0jjFwNyYl6vH7LsAeOSn8cOULtRuMrqrlO4ywcnNPll3UwqYx
p+srXGFqejoBFXkbolz0pRf5wRCZJ+haEZTM36VzGyx5W/7dcyq0iqLlYKAC+rix
r00azRq9OjqhB3YZPd2wn6SefQXYJHkmewm6+oPvHgP+qPmSqbq42OBBUowdAgMB
AAGjggHRMIIBzTAdBgNVHQ4EFgQU9/jitj6vSe8UHUdtuId7zP9o+FMwHwYDVR0j
BBgwFoAUYBgyh+sI7ODGX6SaP0ViHGEt29EwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud
HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraS54aW5kaS5ldS9yZXBvL1hJTkRJLzAv
NjAxODMyODdFQjA4RUNFMEM2NUZBNDlBM0Y0NTYyMUM2MTJEREJEMS5jcmwwZAYI
KwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQv
cmVwb3NpdG9yeS9ERUZBVUxUL1lCZ3loLXNJN09ER1g2U2FQMFZpSEdFdDI5RS5j
ZXIwdwYIKwYBBQUHAQsEazBpMGcGCCsGAQUFBzALhltyc3luYzovL3Jwa2kueGlu
ZGkuZXUvcmVwby9YSU5ESS8wLzMyNjEzMDYyM2EzMjY2MzAzNDNhM2EyZjMzMzEy
ZDMzMzEyMDNkM2UyMDM0MzgzMTMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQEqCy8EMA0GCSqGSIb3
DQEBCwUAA4IBAQBAnZBXtwha7MpY6nBkmL7f8mm7oq6plcmYdIE8z1wuWEfAtnUZ
RMZoVePnwOajjUaWFiQ+xOKeBurmc+HgxwISjMTc424fnRbdYFt88CDpjYAueJG0
HceoJ1Ggje94Fnhnijf294uM4kbinUS3Dap+WVW2Hj/V8+l3b16cQvt3w+BVM4NO
ECK2vjK7kd/dDu5f39ODzUjnBhPkRvagfT3Zb5jsrTx2nnGfoGNyuCYJHICAK1is
yjHpJIvgaPaCJ2O/TFUzIPMkkr2WgvNhTDBxJMbHlXKiMs49nvAopTMnBnBRX6AM
qDYeT31yz4zpNnf1wPKu/ObhpRgc0Xd9zeLT
-----END CERTIFICATE-----