* Marco d'Itri: > ARIN believes that they have a right to limit distribution of this RSA > public key (used for verification of routing security): > > https://www.arin.net/resources/rpki/arin-rfc7730.tal
Do they actually do that? Prevent redistribution? If so, I can't find where. > Does everybody agree that this is bullshit and that we can distribute > this data in Debian packages as much as we like? I think this is modeled after past relaying party agreements pretty much all the browser CAs used. Here's a current example: <https://www.digicert.com/legal-repository/DigiCertRelyingPartyAgreement.pdf> I think these terms are rather benign because as far as I can see, they do not try to control redistribution of key material (something that has been attempted in the past).