Recently, the White Paper on RPKI Test Environment Setup Technologies (hereinafter referred to as the “RPKI White Paper”) has been officially released by China National Engineering Laboratory of Domain Management Technologies that was spearheaded by China Internet Network Information Center (CNNIC). The RPKI White Paper elaborates the prevailing RPKI core module implementation software and its installation and configuration methods, introduces the detailed procedures for setting up a complete RPKI system and works out a mechanism for solving the problems that may arise, aiming to help RPKI researchers and related operation management organizations to set up the RPKI verification test environment.

　　Resource Public Key Infrastructure (RPKI) is a technical system spearheaded by Internet Engineering Task Force (IETF) to ensure authenticity of the information on Internet code & number resources (IP addresses and AS numbers). It is another mechanism to secure fundamental Internet resources strongly promoted by the Internet Corporation for Assigned Names and Numbers (ICANN) following Domain Name System Security Extensions (DNSSEC).

　　According to the RPKI White Paper, the concept of RPKI appeared originally in a paper that proposes a solution for the deficiencies at the level of BGP protocol. It is used to verify the binding relationship between AS numbers on transmission paths and the IP address prefixes in the router advertisement, so as to authenticate the registration information of Internet code & number resources (IP address and AS number) and avoid route hijacking. The standardization of RPKI framework is being considered by the Secure Inter-Domain Routing (SIDR) Working Group and over 20 working documents are published as proposed standard RFCs. The five RIRs (regional internet registries) around the globe have launched their RPKI services.

　　The release of the RPKI White Paper will make it possible to analyze and evaluate the management efficiency and security risks of RPKI data, and facilitate practices and explorations for RPKI deployment in the future. Through developing RPKI-based technical system and promoting its standardization, related organizations may set up a fundamental Internet resource management framework that supports inter-domain routing security , so as to regulate the mechanism for allocation and management of the IP addresses and provide strong technical supports for China to stride towards the next-generation secure and reliable Internet.