In this episode of PING, Kentik’s Doug Madory discusses the state of play in secure Border Gateway Protocol (BGP) across 2024 and 2025. Drawing on Kentik’s internal measurements of BGP behaviour and Internet flow data, alongside the University of Oregon’s RouteViews Archive, Doug analyses both the public view of BGP routing and the dynamics of routing changes. He also incorporates data from systems such as the global Resource Public Key Infrastructure (RPKI) and Internet Routing Registries (IRRs).
RPKI demands two outcomes. Firstly, for IP address holders to create Route Origin Authorizations (ROAs), which declare which networks are allowed to originate their prefixes and secondly, for BGP routers to perform Route Origin Validation (ROV) based on these ROAs. While creating ROAs is relatively easy, especially when using RIR-hosted tools, implementing ROV is more complex and must be done carefully, often resulting in slower and more cautious adoption.
Doug has been independently tracking ROA creation and ROV deployment, along with notable routing incidents in the default-free zone, to assess their impact on networks using RPKI and the broader Internet.
Read more about RPKI and BGP on the APNIC Blog, the web, and at Doug’s own blogging at Kentik:
- RPKI ROV reaches a Major Milestone (APNIC Blog, May 2024)
- The Oregon Routeviews Project
- Doug Madory’s blog posts at Kentik
- All articles by Doug Madory on the APNIC Blog
- A shorter interview with Doug Madory on AS_SET problems
Subscribe and share your story
You can stream and subscribe to PING via the following channels:
If you’re interested in sharing your insights or research, please get in touch — we’re always looking for great stories from the community. Please let us know what you think of the podcast and the APNIC Blog so we can keep improving.
The views expressed by the authors of this blog are their own and do not necessarily reflect the views of APNIC. Please note a Code of Conduct applies to this blog.