🔒 RPKI - Resource Public Key Infrastructure
Q: What is RPKI?
At the very basic level, RPKI allows routers on the Halcyon Network to validate the route advertisements received by their routing peers. This layer of security ensures that no bgp route hijacking can occur.
We publish ROAs that list ASNs and their allowed prefixes and max announced prefix length.
Additionally, routers on the Halcyon Network can use our public RTR-to-RPKI instance to dynamically load routes:
- failsafe
- rtr.rpki.hlcn.xyz port 8282/tcp
NOTE: It is however recommended to run your own local RTR-to-RPKI cache instance to reduce load on global route servers, but also provide you with local resiliency in case of issues with Halcyon infrastructure.