I'm not exactly an expert in routing, but I'm a bit concerned about the security considerations section. If my understanding of the descriptions of the security issues is correct, there are a variety of other complicated RFCs whose security considerations sections need to be read and considered carefully. There's a fair amount of subtlety, and it seems fairly easy to make mistakes with serious consequences. This is not entirely obvious without diving into the referenced security considerations.

Perhaps the section could be expanded with better guidance about what choices implementers need to make to avoid introducing problems when implementing this RFC. I'm concerned that the existing RECOMMENDATION might be easily missed, with unfortunate consequences.