[arin-ppml] RPKI Relying Agreement

John Curran jcurran at arin.net
Thu Dec 4 10:59:31 EST 2014

On Dec 4, 2014, at 10:51 AM, David Huberman <David.Huberman at microsoft.com> wrote:
> Numerous members of the security and network engineering community and I have discussed this over the last 12 months, and the RPA is a show stopper for some of us.  Paragraphs 3 and 4 are the key. It's one way warranties (you -> ARIN), just like the RSA.  
> It's thorny because if you put yourself in ARIN's shoes for a moment, you have to balance the risk of bankrupting the company with the responsibility of being a trust anchor.   Unfortunately, like many ARIN legal postures, the unwillingness to take on any risk at all is problematic.

Actually, the terms regarding indemnification and warrant disclaimer are nearly 
identical to that contained in the other RIR's RPKI agreements; are those also
problematic, or is the difficultly that principally that ARIN agreeing to the 
terms explicit rather than implicit?


John Curran
President and CEO

More information about the ARIN-PPML mailing list