Deployment of Reconsidered Validation in the Resource Public Key Infrastructure (RPKI)

Document Type Expired Internet-Draft (individual)
Authors George Michaelson  , Tim Bruijnzeels 
Last updated 2019-09-08 (latest revision 2019-03-07)
Stream (None)
Intended RFC status (None)
Expired & archived
plain text xml htmlized pdfized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document defines a deployment model for reconsidered validation [RFC8360] in the Resource Public Key Infrastructure (RPKI). It stipulates that Relying Parties in the RPKI MUST support reconsidered validation by 1 July TBD-Year, and that Certificate Authorities MAY use the reconsidered validation OIDs in CA certificates that they issue from this date. Furthermore Certificate Authorities should monitor whether the set of resources in CA certificate they receive has shrunk, and make adjustments in the CA certificates and/or other RPKI objects when appropriate.


George Michaelson (
Tim Bruijnzeels (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)