CA Key Rollover in the RPKI

Document Type Expired Internet-Draft (individual)
Authors Geoff Huston  , George Michaelson  , Stephen Kent 
Last updated 2010-07-26
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document describes an algorithm to allow an entity who undertakes the role of a Certification Authority in the Resource Public Key Infrastructure to perform a rollover of its key pair. This document also notes the requirements placed on Relying Parties who maintain a local cache of the objects that have been published in the distributed Resource Public Key Infrastructure repository publication structure.


Geoff Huston (
George Michaelson (
Stephen Kent (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)