My ROAs Are Expiring ... Now What?

My ROAs Are Expiring ... Now What?

Currently Route Origin Authorizations (ROAs) created using ARIN’s Hosted RPKI service do not auto-renew.

We are in the process of developing auto-renew functionality, but until its deployment customers using ARIN’s Hosted RPKI will need to monitor their ROAs. The good news is that it’s a straightforward process to replace an expiring ROA.

A Point of Contact (POC) for Admin, Tech, or Routing linked to the organization can create and delete ROAs. The steps to create and remove a ROA can be found in the RPKI resources on our website. The process does not require support from the ARIN Help Desk, so it can be performed at any time without worry over processing delays.

As a courtesy, ARIN sends a message to the POCs of an organization one month before expiration of a ROA in the ARIN repository. At any time prior to the ROA’s expiration, a new (duplicate) ROA can be created for the same resources with a new, future expiration date. You can either delete the soon-to-expire ROA once the new ROA has been published to the repository, or you can simply wait for it to expire.

We will update the community as soon as auto-renew functionality is deployed, but for now we encourage Hosted RPKI users to monitor their ROAs that are nearing expiration and to keep an eye out for any notices from ARIN that you have ROAs due to expire.

Post written by:

Brad Gorman
Senior Product Owner, Routing Security

Recent blogs categorized under: Tips

Sign up to receive the latest news about ARIN and the most pressing issues facing the Internet community.


RPKI •  Grant Program •  Public Policy •  Training •  Updates •  ARIN Bits •  Fellowship Program •  Elections •  IPv6 •  Business Case for IPv6 •  Caribbean •  IPv4 •  Security •  Data Accuracy •  Internet Governance •  Tips •  Customer Feedback •  Outreach •  IRR


Connect with us on LinkedIn!