Search RPD Archives
Limit search to: Subject & Body Subject Author
Sort by:

[rpd] Last Call - RPKI ROAs for Unallocated and Unassigned AFRINIC Address Space AFPUB-2019-GEN-006-DRAFT03.

Frank Habicht geier at
Sun Jun 6 18:38:27 UTC 2021


I have 2 recommendations for you.

On 06/06/2021 20:38, Anthony Ubah wrote:

> Hello Frank,



> I'm sure you agree with me that the gray area exists, and also that

> Legal and the Afrinic assessment committee failed to highlight this risk

> resource owners are being exposed to.


> There should be clear understanding of risks and implications, with a

> signed mutual legal agreement between the Afrinic and the resource

> holders before this policy is imposed on them(Network operators).

1. please do not turn on validation in your routers!
2. please don't even try to operate routers yourself.
Bonus: consider a carrier in the legal profession.

For *us*(network operators) it is very telling that you used these words:
"them(Network operators)"
no. I'm actually not interested in your "explanation", don't bother.

> An additional risk to consider about inviting RIRs into routing process

Chairs: I really don't have any patience any more for this phrase.
I don't know how often we have to hear/read the same.

> is the possibility of malicious targeted "errors" which can be

> perpetrated by compromised members of staff.

> How can such acts be put on check, and criminalized?

Easy: The parliament of Mauritius.

But I believe that it is outside the scope of the PDP.




> Anthony




> On Sun, Jun 6, 2021, 12:11 PM Frank Habicht <geier at

> <mailto:geier at>> wrote:


> Hi,


> On 06/06/2021 18:46, Anthony Ubah wrote:

> ...> *Who bears the final brunt for the consequences

> > (e.g.poor QoS, fines, revenue cut, and loss of customers), Afrinic or

> > resource owner?*

> >


> To me it seems obvious (but maybe wrong)....

> Sure the network operators who decide to turn on validation have to

> weigh the risk of themselves doing mistakes as well as others like ROA

> publishers doing mistakes.

> And when they decide to include information from a Trust-Anchor-Locator

> operated by AfriNIC, against your good advise, hmm....

> ... they might just think that protecting themselves from IP space

> hijackers is worth the risk.


> I am not a lawyer.


> Frank

> But I'm a co-author of that policy


> _______________________________________________

> RPD mailing list

> RPD at <mailto:RPD at>


> <>


More information about the RPD mailing list