What is ROA?

ROA stands for Route Origin Authorization, and it is an object that is signed cryptographically, which ensures security and privacy. A ROA indicates which Autonomous System (AS) has the authorization to originate a specific prefix.

Every ROA (Route Origin Authorization) contains this important information:

  • Authorized ASN (Autonomous System Number)
  • The prefix that can be originated from the AS
  • The maximum length of the prefix

The maximum length of the IP prefix defines the most specific prefix that the AS can advertise. If the maximum length isn’t set, the AS can only advertise the specified prefix. If more specific prefix announcements are made, they will not be authorized, which is done to prevent prefix hijacking.

Each Regional Internet Registry has set unique guidelines for creating ROAs. Refer to these guides for more specific Route Origin Authorization creation steps:

Was this article helpful?

Still need help?

Heficed Slack Community

Get involved in Heficed Slack community. Get updates, ask questions, connect with peers.

Heficed Slack

Need support?

If you need any further help, don't hesitate to send a support request to our support team.