so, A has to know all the ASs to which RS will hand route, forward sign announcements to each of them and hand all those to RS, and RS then stores them all and forwards as appropriate. that'll scale really well.
IX are used for optimizing local traffic patterns. Only very few applications of IX are about Internet peering broker service (but let's keep those out for the time being).
So if we assume that A wants to give some of his addresses to B & C via RS why do they need to bother with bgpsec at all ?
When A advertises it's nets to it's Internet providers yes it will forward sign it properly so they will be announced everywhere according to BGPsec rules.
Imagine an IX without RS ... A wants to peer with B and both establish a peering relation I really see no need why they should get any of additional security on top of their direct route exchange as B will not be a transit for A anyway.
Rgs, R. _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
