Securing Your IPv4 Addresses with RPKI
As BGP hijacking and route leaks become more prevalent, securing your IPv4 addresses with RPKI is increasingly important.
What is RPKI?
Resource Public Key Infrastructure (RPKI) is a security framework that uses cryptographic certificates to verify the ownership and authorization of IP address announcements.
What is a ROA?
A Route Origin Authorization (ROA) is a signed object that states which Autonomous System (AS) is authorized to announce a particular IP prefix. ROAs help prevent:
- BGP hijacking - unauthorized announcement of your IPs
- Route leaks - accidental propagation of incorrect routes
- Prefix spoofing - impersonation using your address space
Why RPKI Matters for IPv4 Transfers
When transferring IPv4 addresses, RPKI considerations include:
- The seller should remove existing ROAs before transfer
- The buyer should create new ROAs after receiving the addresses
- During the transition, both parties need to coordinate to avoid routing issues
Setting Up RPKI
Most RIRs provide tools for creating and managing ROAs through their member portals. The process typically involves:
- Accessing your RIR member portal
- Navigating to the RPKI/ROA section
- Creating a ROA for your prefix and ASN
- Publishing the ROA
When you purchase or lease IPv4 addresses through IPv4.center, our team can assist with RPKI setup as part of the transfer process.