{"id":15611630,"url":"https://github.com/smlng/docker-rpki-validator2","last_synced_at":"2026-04-18T17:31:22.322Z","repository":{"id":89706259,"uuid":"170479240","full_name":"smlng/docker-rpki-validator2","owner":"smlng","description":"A Docker Setup for the RIPE RPKI Validator 2","archived":false,"fork":false,"pushed_at":"2019-02-21T07:55:44.000Z","size":9,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-02-04T15:48:45.645Z","etag":null,"topics":["docker","docker-compose","rpki","rtr"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/smlng.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2019-02-13T09:28:41.000Z","updated_at":"2019-02-21T07:55:45.000Z","dependencies_parsed_at":null,"dependency_job_id":"511a636a-5fc9-4953-9809-85092feadaed","html_url":"https://github.com/smlng/docker-rpki-validator2","commit_stats":{"total_commits":5,"total_committers":1,"mean_commits":5.0,"dds":0.0,"last_synced_commit":"82d1d7be912258ff235222a38055679ae5c83042"},"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/smlng%2Fdocker-rpki-validator2","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/smlng%2Fdocker-rpki-validator2/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/smlng%2Fdocker-rpki-validator2/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/smlng%2Fdocker-rpki-validator2/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/smlng","download_url":"https://codeload.github.com/smlng/docker-rpki-validator2/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246200318,"owners_count":20739566,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["docker","docker-compose","rpki","rtr"],"created_at":"2024-10-03T06:06:05.331Z","updated_at":"2026-04-18T17:31:17.288Z","avatar_url":"https://github.com/smlng.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"# A Docker Setup for the RIPE RPKI Validator 2\n\n## Prerequisites\n\nTo create and run the docker container you need a host system with\nDocker and docker-compose installed. This may need superuser rights\ne.g. `sudo`.\n\nYou also need the source archive of the latest RPKI validator release\nwhich can be found at the [RIPE] website, download the archive into\nthe root folder of this repository *before* creating the docker service.\n\n## Configure the RPKI-Validator\n\nThe RPKI Validator will download (rsync) ROAs from the 5 major RIRs, i.e.\nAFRINIC, APNIC, ARIN, LACNIC, and RIPE, also refered to as trust anchors.\nFor downloading TRUST ANCHOR LOCATOR (TAL) files are required, the RPKI\nValidator comes with 4 of them, however the TAL for ARIN is not included.\nThus, download the TAL file from [ARIN] and save it into the `conf/tal`\nfolder.\n\nAfterwards, check the RPKI validator configuration file, which is found in\n`conf/rpki-validator.conf`. This will be mounted into the running container\nand can be changed later, too. In case of memory errors increase the values\nof `jvm.memory.*` in the conf file and restart the container afterwards.\n\nIn general, there is no need to make any changes to the configuration(s).\n\n**Note(1)**: do not change host/server or port settings in the `.properties`\nfiles, this can be done in the `docker-compose.yml`. To do so, open the yml\nfile and change the values in section `ports`, format is `HOST_PORT:DOCKER_PORT`.\nFor instance to remap the web UI to `9090` change `8080:8080` to `9090:8080`.\n\n**Note(2)**: the HTTP port (default 8080) binds to localhost (::1) and is\nthus not reachable from the outside by default. It is recommended to use\na HTTP proxy (apache or nginx) because there is no HTTPS support by the\nRPKI validator itself.\n\n**Note(3)**: the service is set to restart always, i.e., on any errors or\nrestart of the host system.  See section `restart` in `docker-compose.yml` \nto change this if needed.\n\n## Run the RPKI-Validator in Docker\n\nUsing `docker-compose` this is easy, simply run `sudo docker-compose up -d`.\n\n**Note**: the service is run as non-root, i.e., with user `rpki` (uid=323).\n\n## Updating and Troubleshooting\n\nThe `docker-compose` command may require super user rights, i.e., run it \nwith `sudo` or as `root`.\n\nChanges to the configuration or new/added TAL files require a service restart.\nTo restart the service run `docker-compose restart`, if that does not help\nrun `docker-compose down \u0026\u0026 docker-compose up -d`.\n\nTo update the container(s) or recreate them in case of errors:\n1. Stop any running services: `docker-compose down`\n2. Force rebuild of the containers: `docker-compose build`\n3. Start the service: `docker-compose up -d`\n\nTo just stop the container for a moment and start it again use commands\n`docker-compose stop` and `docker-compose start`. This halts and\nstarts the container without deleting or recreating it.\n\n## Copyright and License\n\nThe `startup.sh` script is a modified version of the `docker-startup.sh`\nfound in https://github.com/RIPE-NCC/rpki-validator/tree/master/rpki-validator-app/docker \nof the RIPE-NCC [GitHub] repository.\n\nFor the [ARIN] TAL and the RPKI Validator (see [GitHub]) refer to the\nrespective licenses. For everything else in this repo the MIT License\napplies, see LICENSE file for details.\n\n[ARIN]: https://www.arin.net/resources/rpki/tal.html\n[RIPE]: https://www.ripe.net/manage-ips-and-asns/resource-management/certification/tools-and-resources\n[GitHub]: https://github.com/RIPE-NCC/rpki-validator \n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsmlng%2Fdocker-rpki-validator2","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsmlng%2Fdocker-rpki-validator2","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsmlng%2Fdocker-rpki-validator2/lists"}