Abathuthukisi be-OpenBSD ukukhishwa kokuqala esidlangalaleni kwephakeji ephathekayo ngokusebenzisa indlela ye-RPKI (Resource
Ingqalasizinda Ebalulekile Yomphakathi) ye-RP (), esetshenziselwa ukugunyaza umthombo wezimemezelo ze-BGP. ikuvumela ukuthi unqume ukuthi isimemezelo se-BGP sivela kumnikazi wenethiwekhi noma cha, lapho, kusetshenziswa ingqalasizinda eyisihluthulelo yomphakathi yezinhlelo ezizimele namakheli e-IP, kwakhiwa iketango lokuthembela, elakhiwe ukusuka ku-IANA kuya kubabhalisi besifunda (RIRs). ), abahlinzeki (LIRs) kanye nabasebenzisi bokugcina bamakheli . Ikhodi ishicilelwe ngaphansi kwelayisensi ye-BSD.
Uhlelo yenza kube nokwenzeka ukuthumela isicelo endaweni ye-RPKI futhi kukhiqize into ye-VRP (Validated ROA Payload) eqinisekisa umthombo womzila (i-ROA, Ukugunyazwa Kwemvelaphi Yomzila) ngefomethi yezilungiselelo zephakethe lomzila. ΠΈ , kanye nakumafomethi e-CSV noma e-JSON ukuze asetshenziswe kwezinye izitaki zomzila. Ukuze ufinyelele indawo yokugcina, sebenzisa insiza , ebuyisa zonke izitifiketi ze-X.509, i-manifest, nama-CRL. Khona-ke
I-rpki-client ihlola isitifiketi ngasinye esihlotshaniswa ne-ROA, yakha futhi iqinisekisa lonke uchungechunge lokwethembeka, kuyilapho ngesikhathi esifanayo ihlola ama-CRL ngokuhoxiswa kwesitifiketi okungaba khona.
Source: opennet.ru