Avoiding Route Origin Authorizations (ROAs) Containing Multiple IP Prefixes, August 2023
- File formats:
- Also available: XML file for editing
- BEST CURRENT PRACTICE
- Z. Yan
T. de Kock
- sidrops (ops)
Discuss this RFC: Send questions or comments to the mailing list [email protected]
When using the Resource Public Key Infrastructure (RPKI), address space holders need to issue Route Origin Authorization (ROA) object(s) to authorize one or more Autonomous Systems (ASes) to originate BGP routes to IP address prefix(es). This memo discusses operational problems that may arise from ROAs containing multiple IP prefixes and recommends that each ROA contain a single IP prefix.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.