>> To be clear, I mean nobody really uses this RPKI, so 3 days downtime
>> was even not noticed by anyone.
> nobody == {but, to your point, the reason no one was damaged is that ROV was designed to fail soft. when the ncc failed to publish, the prefixes for which there should have been ROAs did not become invalid, they became not found. so folk dropping invalids did not drop them. what could have happened, but would be quite hard to detect, is that someone could have mis-originated one of those prefixes and it would not have been blocked. randy
