This document is the Certification Practice Statement (CPS) of the WBA for the Resource Public Key Infrastructure (RPKI). It defines the operational, technical, and security practices followed by WBA’s Certification Authorities (CAs) to issue, manage, and revoke digital certificates in accordance with the WBA Certificate Policy and IETF standards. The CPS provides the governance framework that ensures WBA’s RPKI operations remain secure, reliable, and compliant, protecting the integrity of internet routing and related infrastructure.
This framework enables validation of claims made by holders of Internet Number Resources (INRs), such as IP addresses and Autonomous System Numbers, ensuring accurate and unambiguous distribution. It mirrors the global INR distribution hierarchy, beginning with IANA and extending through Regional and National Internet Registries, Internet Service Providers, and subscribers.
The CPS sets out:
• Roles and responsibilities of Certification Authorities, Registration Authorities, subscribers, and relying parties
• Rules for certificate usage, issuance, renewal, re-key, and revocation
• Security, audit, and operational controls (leveraging AWS Private CA services)
• Legal, business, and compliance obligations for all participants
For further information regarding the WBA Certification Practice Statement (CPS), please contact pki@wballiance.com or pmo@wballiance.com.
