[afnog] RPKI

Saul saul at enetworks.co.za
Fri Jul 31 09:04:42 UTC 2015

Hi Randy, 
Just a question (OK, yet another one ;-) )

>ROAs vs ROA records
>I personally think this is bad practice.
>One wants to control each separately.

Are you saying instead of creating one ROA for say with a
max length of /24

Rather create multiple ROAs one for the /20 and then individuals?


-----Original Message-----
From: Randy Bush [mailto:randy at psg.com] 
Sent: 31 July 2015 10:25 AM
To: Saul <saul at enetworks.co.za>
Cc: Mark Tinka <mark.tinka at seacom.mu>; Nishal Goburdhan
<nishal at controlfreak.co.za>; afnog at afnog.org
Subject: Re: [afnog] RPKI

> So ultimately, how stable/reliable is the RPKI system/policy
> Or is the system fine, but AFRNICs systems aren't?

you may find http://archive.psg.com/141006.rpki-nanog.pdf interesting


More information about the afnog mailing list