Router Keying for BGPsec

Document Type Replaced Internet-Draft (individual)
Last updated 2018-09-13 (latest revision 2018-08-30)
Replaces draft-ymbk-bgpsec-rtr-rekeying
Replaced by draft-ietf-sidrops-rtr-keying
Stream IETF
Intended RFC status (None)
Expired & archived
plain text pdf html bibtex
Stream WG state Waiting for WG Chair Go-Ahead
Revised I-D Needed - Issue raised by WGLC
Document shepherd No shepherd assigned
IESG IESG state Replaced by draft-ietf-sidrops-rtr-keying
Consensus Boilerplate Unknown
Telechat date
Responsible AD Alvaro Retana
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


BGPsec-speaking routers are provisioned with private keys in order to sign BGPsec announcements. The corresponding public keys are published in the global Resource Public Key Infrastructure, enabling verification of BGPsec messages. This document describes two methods of generating the public-private key-pairs: router-driven and operator-driven.


Randy Bush (
Sean Turner (
Keyur Patel (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)