This comment on BGP and RPKI from AAISP is essentially "why not deploy routing security".

https://www.aa.net.uk/etc/news/bgp-and-rpki/

Sorry but we've seen that attitude back in 2000's with security vulnerabilities - which was generally ignored by vendors - and only full disclosure changed that. This "good enough" attitude of large players was always what allowed abuse.