ACSP Suggestion 2021.3: Provide Certificate Transparency for RPKI


Author: Job Snijders   
Submitted On: 17 February 2021

Description: ARIN should publish immutable logs about the existence of RPKI certificates as they are issued or revoked, in a manner that allows anyone to audit certificate authority (CA) activity and notice the issuance of suspect certificates as well as to audit the certificate logs themselves.

Value to Community: ARIN already has gone a long way to maximize the trustworthiness of the Trust Anchor by offering a hosted RPKI environment anchored on non-repudiation. A next step is to enable anyone to audit the ARIN TA in the form of a practice known as “Certificate Transparency”.

Timeframe: Not specified

Status: Open   Updated: 23 February 2021

Tracking Information

ARIN Comment

23 February 2021

Thank you for your suggestion, numbered 2021.3 on confirmed receipt, asking that we provide certificate transparency for RPKI. We agree this is a beneficial improvement and will prioritize it for future implementation.

Thank you for participating in the ARIN Consultation and Suggestion Process. Your suggestion will remain open until implemented.