[195194] in North American Network Operators' Group
Re: IPv4 Hijacking For Idiots
daemon@ATHENA.MIT.EDU (John Curran)
Mon Jul 3 13:25:18 2017
X-Original-To: nanog@nanog.org
X-Report-Abuse-To: https://support.duocircle.com/support/solutions/articles/5000540958-duocircle-standard-smtp-abuse-information
From: John Curran <jcurran@istaff.org>
In-Reply-To: <7f6264e8-6385-dcc7-f70c-ef540b2f5ea2@bryanfields.net>
Date: Mon, 3 Jul 2017 13:23:56 -0400
To: Bryan Fields <Bryan@bryanfields.net>
Cc: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 2 Jul 2017, at 2:22 PM, Bryan Fields <Bryan@bryanfields.net> wrote:
>=20
> On 7/2/17 1:28 PM, John Curran wrote:
>> Note that ARIN does provide RPKI services for legacy blocks, but it =
is true that we=20
>> require more legalisms than other RIRs=E2=80=A6 You can caulk this =
up to the abundance=20
>> of legacy resources of questionable provenance in this region, to the =
colorful US=20
>> legal environment, and/or to a desire not to endanger the services =
we=E2=80=99re already=20
>> providing to thousands of customers.=20
>=20
> Only if you sign the RSA and give up certain legal rights to your =
legacy
> blocks/property. I can't speak for everyone, but those I do know are =
not
> willing to do this.
And they may choose to do so. Others have no problem signing the =
LRSA/RSA=20
(which are effectively the same T&C=E2=80=99s now aside from fee =
schedule), and like having=20
a very clear statement of their rights to the number resources, such as =
right to transfer,
access to arbitration, etc. (These rights weren=E2=80=99t well spelt =
out in the earlier versions=20
of the LRSA or RSA, but we eventually got their in the current form.)=20
Of course, the other little detail isn=E2=80=99t whether they=E2=80=99re =
willing to sign, it is whether they
are entitled to sign, since the only parties that can enter an LRSA is =
the recipient or
their legal successor to the rights. (It can be amusing when recently =
created entities
attempt to explain why they are the legal rights holder to a legacy =
number block=E2=80=A6)=20
> I'd propose there must be a better way that doesn't require legacy =
holders
> sign the RSA. RPKI is important enough that something should be =
possible.
RPKI is quite important, but it also requires a solid legal foundation =
=E2=80=93
Resource certification absent the proper legal details as to who has
the rights and what rights that they have) is likely worse than no RPKI=20=
at all.
Thanks,
/John
John Curran
President and CEO
ARIN
=20=
