html
Routinator 3000 is free, open source RPKI (Resource Public Key
Infrastructure) Relying Party software written by NLnet Labs in the Rust programming language. The application is designed to be secure and have great portability. It is a lightweight implementation that can run effortlessly on almost any operating system using minimalist hardware.
Routinator connects to the Trust Anchors of the five Regional Internet Registries (RIRs) — APNIC, AFRINIC, ARIN, LACNIC and RIPE NCC — downloads all of the certificates and ROAs (Route Origin Attestations) in the various repositories, verifies the signatures and makes the result available for use in your BGP workflow.
It is a full featured software package that can perform RPKI validation as a one-time operation and store the result on disk in formats such as CSV and JSON, or run as a service that periodically downloads and verifies RPKI data. Routers can connect to Routinator to fetch verified data via the RPKI-RTR
(RPKI-to-Router) protocol. The built-in HTTP server offers a user interface and endpoints for the various file formats, as well as logging, status and Prometheus monitoring.
If you run into a problem with Routinator or you have a feature request, please create an issue on Github. We are also happy to accept your pull requests. For general discussion and exchanging operational experiences we provide a mailing list and a Discord server. You can follow the adventures of Routinator on Twitter and listen to its favourite songs on Spotify.
Tip
To learn more about Resource Public Key Infrastructure, please refer to the RPKI Community Documentation.
installation installation-notes initialisation
data-processing output-formats configuration local-exceptions logging
interactive validity-checker dump
daemon rtr-service http-service user-interface api-endpoints monitoring
manual-page json-metrics prometheus-metrics glossary