Greetings, Tech-discuss: Looking for a sanity check on how hosted RPKI works.
Based on the docs and website, ARIN must host the private key for a site using hosted RPKI "Hosted RPKI requires that ARIN hosts the private key of your ROA Request Generation Key Pair."(from https://www.arin.net/resources/rpki/index.html) Further, there are instructions on generating a key pair: "How do I Make a ROA Request Generation or Delegated RPKI Key Pair? ROA Request Generation and Delegated RPKI Key Pairs may be generated numerous ways." (from https://www.arin.net/resources/rpki/faq.html#keypairgeneration) To be clear, the key pair that I'm generating in this step is simply to validate the communication of my ROA request, correct? The private key that is used to sign the ROA itself is never seen nor accessed by the org using the hosted model, correct? Thank you.
_______________________________________________ arin-tech-discuss mailing list [email protected] http://lists.arin.net/mailman/listinfo/arin-tech-discuss
