This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Route Origin Authorization

$ rpki-client -vvf rpki.xindi.eu/repo/XINDI/0/326130623a326630373a3a2f33322d3332203d3e203438313132.roa
File:                     326130623a326630373a3a2f33322d3332203d3e203438313132.roa (raw, json)
Hash identifier:          aPSgXpaRrYKYnQ0pAjNduZFHcsGgEF9jv0MZNTrzLeU=
Subject key identifier:   49:93:74:FC:21:ED:3D:FB:5A:D3:6C:10:D8:F6:71:61:20:29:98:66
Certificate issuer:       /CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
Certificate serial:       2925B7062C7C31CDDB24627B5AC799D89B0351B1
Authority key identifier: 60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
Subject info access:      rsync://rpki.xindi.eu/repo/XINDI/0/326130623a326630373a3a2f33322d3332203d3e203438313132.roa
Signing time:             Thu 05 Feb 2026 19:47:04 +0000
ROA not before:           Thu 05 Feb 2026 19:42:04 +0000
ROA not after:            Thu 04 Feb 2027 19:47:04 +0000
asID:                     48112
IP address blocks:        2a0b:2f07::/32 maxlen: 32
Validation:               OK
Signature path:           rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl
                          rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Feb 2026 10:34:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            29:25:b7:06:2c:7c:31:cd:db:24:62:7b:5a:c7:99:d8:9b:03:51:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=60183287eb08ece0c65fa49a3f45621c612ddbd1
        Validity
            Not Before: Feb  5 19:42:04 2026 GMT
            Not After : Feb  4 19:47:04 2027 GMT
        Subject: CN=499374FC21ED3DFB5AD36C10D8F6716120299866
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:d2:4d:9e:33:b2:47:ed:0e:64:0c:f8:d9:19:
                    b3:2a:dc:0b:5f:61:b4:4b:8a:74:a6:35:50:f6:32:
                    bb:d9:8a:51:d7:7b:4a:c0:1f:23:bc:de:48:b4:a0:
                    a3:34:f4:12:c3:10:75:ff:11:2b:ac:b8:76:41:af:
                    ae:0f:96:a4:54:a5:4b:3b:c4:0a:19:04:de:79:b6:
                    5a:70:d2:28:8b:7e:ed:64:4d:7b:05:cc:33:65:ad:
                    4a:ec:eb:58:a1:68:94:eb:d0:e5:25:13:a3:cb:75:
                    8e:1b:55:7b:76:de:88:e8:d2:ff:61:b0:75:b5:1b:
                    71:2a:9f:8b:de:16:ac:8c:19:87:f5:38:32:ca:bb:
                    a5:d7:6f:a0:67:7b:25:ad:7d:57:d0:98:c0:ec:c3:
                    c1:9a:11:74:b6:31:09:e2:69:cb:a4:ee:5a:31:66:
                    34:8a:39:6a:37:97:d3:9e:48:fe:2b:dd:16:05:22:
                    a4:6c:1a:80:8c:3c:c0:d8:f4:05:9c:00:3b:9f:7d:
                    cc:8a:54:f9:ca:dd:a3:4a:f7:14:b8:6f:c9:1e:b7:
                    09:88:ac:a3:be:64:97:6c:b8:f0:d1:b4:b0:2c:f1:
                    bb:db:84:41:68:54:7e:4c:9c:e5:ea:c6:b1:4b:61:
                    d0:a7:c8:95:8c:8d:66:bc:6f:34:b5:1d:b8:55:1f:
                    ac:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:93:74:FC:21:ED:3D:FB:5A:D3:6C:10:D8:F6:71:61:20:29:98:66
            X509v3 Authority Key Identifier:
                keyid:60:18:32:87:EB:08:EC:E0:C6:5F:A4:9A:3F:45:62:1C:61:2D:DB:D1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.xindi.eu/repo/XINDI/0/60183287EB08ECE0C65FA49A3F45621C612DDBD1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBgyh-sI7ODGX6SaP0ViHGEt29E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.xindi.eu/repo/XINDI/0/326130623a326630373a3a2f33322d3332203d3e203438313132.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0b:2f07::/32

    Signature Algorithm: sha256WithRSAEncryption
         22:46:60:80:b6:95:1c:62:a8:b4:2d:7a:8a:25:df:85:25:ce:
         bb:f3:33:73:97:9c:ff:06:8d:6a:24:a0:6c:d2:87:eb:c6:17:
         13:5f:eb:ab:72:20:27:e1:dd:75:2f:59:ef:29:4c:fe:5c:8e:
         29:33:e8:02:f3:ca:2f:9d:c9:80:be:25:88:8b:bf:a4:72:24:
         3c:39:b6:a1:35:89:50:3c:f0:c4:f8:d1:78:f2:fe:3d:0c:c6:
         df:60:1e:70:99:77:44:b3:e9:f3:59:37:37:32:d4:9d:4d:b4:
         cd:7c:c7:e8:d0:77:cb:c6:da:e0:10:7e:46:55:15:32:aa:a0:
         17:70:63:ce:46:85:d2:c5:75:6c:46:f5:7a:a7:63:a7:6a:4e:
         88:3b:ff:a5:fd:7a:c4:6d:cb:b5:2f:ac:f4:74:2f:75:6b:42:
         1b:14:ac:97:a4:b8:50:d0:f2:6f:99:64:07:fb:0c:db:7f:da:
         45:d1:b6:a2:be:24:df:94:66:90:5c:54:fd:c8:d6:03:d4:de:
         00:20:f0:4d:91:01:f9:53:e2:9e:02:a9:4a:e1:d0:c2:6a:f4:
         99:65:49:4b:5e:a0:12:dd:51:b6:77:eb:05:78:de:44:d2:97:
         f0:a9:d5:3f:a9:d2:fc:15:66:da:94:16:b9:03:d7:f3:8c:4a:
         e7:a3:25:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----