Resource Certification: A Public Key Infrastructure for IP Addresses and AS's

X.509 Public Key certificates are typically used to validate attestations related to identity or role. The overwhelming number of large scale deployments seen in public networks serves this purpose. Here, authors examine a different form of X.509 certificate that is used to describe IP address and AS number resources and bind those to a public/private key pair. These certificates are used to attest to resource allocation actions, so that digitally signed attestations relating to a party's right-of-use of IP addresses and AS numbers can be validated by relying parties, using a related Resource Certificate Public Key Infrastructure (RPKI).