An open-source C implementation of the RPKI/Router Protocol client
C Perl CMake C++ Objective-C Makefile Shell
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.


The RTRlib implements the client-side of the RPKI-RTR protocol (RFC
6810) and BGP Prefix Origin Validation (RFC 6811). This release also
supports Internet-Draft draft-ietf-sidr-rpki-rtr-rfc6810-bis, which
enables the maintenance of router keys. Router keys are required to
deploy BGPSEC.

The software was successfully tested on Linux and FreeBSD.

This package contains also the rtrclient program. It connects to an
RTR-Server over TCP or SSH and shows on STDOUT prefix origin data and
router keys that have been received from the RTR server. The program can
be found in the bin/ directory.

To build the RTRlib, the CMake build system must be installed.

To establish an SSH connection between RTR-Client and RTR-Server, the
libssh 0.6.x or higher library must also be installed.

cmocka (optional) is required for unit tests
Doxygen (optional) is required to create the HTML documentation.


* Generate Makefile:

  Without debugging options

    cmake -D CMAKE_BUILD_TYPE=Release .

  With debug symbols and debug messages:

    cmake -D CMAKE_BUILD_TYPE=Debug .

  If the libssh isn't installed within the systems include and library
  directories you can run cmake with the following parameters:

      -D LIBSSH_INCLUDE=<include-directory>

  To specify another directory where the RTRlib will be installed, you
  can pass the following argument to cmake:


* Build library, tests, and tools


To copy libraries and headers to system directories, run (optional):

    make install

Linking to RTRlib
The name of the shared library is rtr. To link programs to the RTRlib,
pass the following parameter to gcc:


In case an error such as

    -/usr/bin/ld: cannot find -lrtr
    -collect2: error: ld returned 1 exit status

occurs, the location of the library can be passed explicitly as a parameter



API Documentation
The RTRlib includes a HTML documentation of the API. To build them,
doxygen must be installed. The documentation will be located in the
docs/ directory after the execution of:

    make doc

Test RTR-Server Connection
The following command establishes a plain TCP connection to an
RTR-Server using the rtrclient command line tool:

    bin/rtrclient tcp 8282 is an open RTR-Server instance for testing
purposes, which runs the RIPE Validator. It listens on port 8282 and
validates ROAs from the following trust anchors: AfriNIC, APNIC, ARIN,

* cmake/      - CMake modules
* doxygen/    - Example code and graphics used in the Doxygen
* rtrlib/     - Header and source code files of the RTRlib
* tests/      - Unit tests
* tools/      - Contains the rtrclient


Mailing List:

/* vim: set tw=72 sts=2 sw=2 ts=2 expandtab: */