BCP 238
RFC 9455
Avoiding Route Origin Authorizations (ROAs) Containing Multiple IP Prefixes, August 2023
- File formats:
- Status:
- BEST CURRENT PRACTICE
- Authors:
- Z. Yan
R. Bush
G. Geng
T. de Kock
J. Yao - Stream:
- IETF
- Source:
- sidrops (ops)
Discuss this RFC: Send questions or comments to the mailing list iesg@ietf.org
Other actions: Submit Errata | Find IPR Disclosures from the IETF | View History of RFC
Abstract
When using the Resource Public Key Infrastructure (RPKI), address space holders need to issue Route Origin Authorization (ROA) object(s) to authorize one or more Autonomous Systems (ASes) to originate BGP routes to IP address prefix(es). This memo discusses operational problems that may arise from ROAs containing multiple IP prefixes and recommends that each ROA contain a single IP prefix.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.