Router Keying for BGPsec

Document Type Expired Internet-Draft (sidr WG)
Last updated 2016-12-19 (latest revision 2016-06-15)
Replaces draft-ymbk-bgpsec-rtr-rekeying
Stream IETF
Intended RFC status (None)
Expired & archived
plain text pdf html bibtex
Stream WG state WG Document Jul 2017
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD Joel Jaeggli
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


BGPsec-speaking routers are provisioned with private keys in order to sign BGPsec announcements. The corresponding public keys are published in the global Resource Public Key Infrastructure, enabling verification of BGPsec messages. This document describes two methods of generating the public-private key-pairs: router-driven and operator-driven.


Randy Bush (
Sean Turner (
Keyur Patel (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)