RFC 8481
Clarifications to BGP Origin Validation Based on Resource Public Key Infrastructure (RPKI), September 2018
- File formats:
- Status:
- PROPOSED STANDARD
- Updates:
- RFC 6811
- Updated by:
- RFC 9324
- Author:
- R. Bush
- Stream:
- IETF
- Source:
- sidrops (ops)
Cite this RFC: TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC8481
Discuss this RFC: Send questions or comments to the mailing list sidrops@ietf.org
Other actions: Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 8481
Abstract
Deployment of BGP origin validation based on Resource Public Key Infrastructure (RPKI) is hampered by, among other things, vendor misimplementations in two critical areas: which routes are validated and whether policy is applied when not specified by configuration. This document is meant to clarify possible misunderstandings causing those misimplementations; it thus updates RFC 6811 by clarifying that all prefixes should have their validation state set and that policy must not be applied without operator configuration.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.