RPKI Deployment

Thumbnail for post.

Overview

Webinar Overview

The webinar will focus on the different steps involved in deploying/implementing RPKI (from an operator’s point of view) – how to sign resources (ROA creation) through the MyAPNIC Portal, how to verify/check the ROAs, how to deploy RPKI validators, how to configure a RTR session between BGP speaking routers and the validator, how to interpret the validation states of received routes, and how to act (drop or apply policies) the validation states on the routers.

Outline

This webinar will cover the following topics:

  • What is RPKI
  • Benefits of RPKI
  • RPKI Building Blocks
  • RPKI Profile
  • Trust Anchor (TA)
  • Issuing Party
  • Single Trust Anchor
  • Routing Origin Authorization (ROA)
  • Relying Party (RPKI Validator)
  • Origin Validation
  • Validation States
  • Policies Based on Validation
  • RPKI Caveats
  • Create (Publish) Your ROA
  • Check Your ROA
  • Deploy RPKI Validator
  • RIPE – Validator
  • Dragon Research – Validator
  • Routinator – Validator
  • Configuration (IOS)
  • Configuration (JunOS)

RPKI Deployment

Thumbnail for post.

Overview

Release date: 5 May 2020

The course focuses on the different steps involved in deploying/implementing RPKI (from an operator’s point of view) – how to sign resources (ROA creation) through the MyAPNIC Portal, how to verify/check the ROAs, how to deploy RPKI validators, how to configure a RTR session between BGP speaking routers and the validator, how to interpret the validation states of received routes, and how to act (drop or apply policies) the validation states on the routers.

Course Outline

This course will cover the following topics:

  • What is RPKI
  • Benefits of RPKI
  • RPKI Building Blocks
  • RPKI Profile
  • Trust Anchor (TA)
  • Issuing Party
  • Single Trust Anchor
  • Routing Origin Authorization (ROA)
  • Relying Party (RPKI Validator)
  • Origin Validation
  • Validation States
  • Policies Based on Validation
  • RPKI Caveats
  • Create (Publish) Your ROA
  • Check Your ROA
  • Deploy RPKI Validator
  • RIPE – Validator
  • Dragon Research – Validator
  • Routinator – Validator
  • Configuration (IOS)
  • Configuration (JunOS)

Course Material

To access slides and guides click here.

Quiz & Certificate

Click the link below to go to the Quiz.

Go to Course Quiz

Tashi Phuntsho

Thumbnail for post.

Tashi has experience in IP and transmission network design, operation, and maintenance having worked as a transmission engineer and IP core network engineer for more than a decade. He has been involved in capacity development in the APNIC community by providing technical assistance and training in number of technical areas such as Routing & Switching, Network Architecture, IXP design and deployment, Network Security, IPv6 deployment, DNSSEC, and so on.

Tashi completed his undergraduate studies in Electrical and Electronics engineering from India, complemented by research studies in next generation networks from Japan and postgraduate studies in Network Systems from Australia.