RPKI

RPKI, or Resource Public Key Infrastructure, is a framework for securing Internet routing by providing cryptographic authorization of IP address space and autonomous system (AS) numbers used in the Border Gateway Protocol (BGP). It enables operators to verify that a given origin AS is permitted to announce a specific prefix, helping to prevent route hijacking and misconfigurations.

The system relies on a hierarchy of trusted authorities. Regional Internet registries (RIRs) act as trust anchors

Key components include the RPKI trust anchors maintained by the RIRs, certificate authorities that bind resources

Adoption and limitations: RPKI is widely deployed in many networks and IXs, contributing to improved routing