ACSP Suggestion 2014.6: RPKI ROAs with an origin of AS0

Suggestion

Author: Chris Rogers   
Submitted On: 12 March 2014

Description:

Allow creation of RPKI ROAs with an origin of AS0.

Rationale: Some prefixes are never intended to be injected into the global routing table. Specifically IXP LAN prefixes. By creating an ROA for AS0, this would create an invalid signature for any announcement.

Timeframe: Immediate

Status: Closed   Updated: 14 July 2014

Tracking Information

ARIN Comment

26 March 2014

Thank you for your suggestion, numbered 2014.6 upon receipt and confirmation, requesting that we allow for the creation of RPKI ROAs with an origin of AS 0.

You raise an excellent point. RFC 6483 section 4 specifically describes AS 0 origination, and it was an oversight in ARIN’s RPKI implementation not to allow it. We will be correcting our RPKI system to include this core feature by the end of Q2. Thank you for bringing this to our attention.

This suggestion will remain open until this work is completed.

ARIN Comment

28 March 2014

Implementation Estimate: This will take 1.5 person months.

Please note that these are good-faith, general estimates to include development, testing, and implementation; as such they are subject to change.

ARIN Comment

14 July 2014

Thank you again for submitting your suggestion to allow creation of RPKI ROAs with an origin of AS0. This functionality has been implemented. You may now create RPKI ROAs with an origin of AS0.

This suggestion is now closed.