Skip to content

rtrlib/rpki-read

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

RPKI READ

The RPKI Realtime Dashboard

RPKI READ aims to provide a consistent (and live) view on the RPKI validation state of currently announced IP prefixes. That is, it verifies association of an IP prefix and its BGP origin AS (autonomous system) utilizing RPKI. Resulting validation states are:

  • NotFound, if no RPKI entry exists for a prefix
  • Valid, if at least one matching entry (ROA) was found in the RPKI database
  • InvalidLength, if there is an entry (ROA) for a prefix with matching origin AS, but the prefix length mismatches
  • InvalidAS, if there is an entry (ROA) for a prefix, but the origin AS does not match

The RPKI READ monitoring system has two parts: the backend storing latest validation results in a database, and the (web) frontend displaying these results as well as an overview of statistics derived from them. The backend connects to a live XML stream of a known BGPmon instance, parses BGP update messages to extract IP prefixes and origin AS information. Prefix origins are validated using the RTRlib client to query a RPKI cache server.

Releases

No releases published

Packages

No packages published

Languages