This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/routing-wg@ripe.net/
[routing-wg]2008-04 New Policy Proposal (Using the Resource Public Key Infrastructure to Construct Validated IRR Data)
- Previous message (by thread): [routing-wg]2008-04 New Policy Proposal (Using the Resource Public Key Infrastructure to Construct Validated IRR Data)
- Next message (by thread): [routing-wg]2008-04 New Policy Proposal (Using the Resource Public Key Infrastructure to Construct Validated IRR Data)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Geoff Huston
gih at apnic.net
Wed Apr 30 04:18:15 CEST 2008
Randy Bush wrote: >> It may also be useful to consider this in the light of alternative >> approaches where the RPSL object is signed by the resource holder, >> using a signing certificate that is validatable in the context of a >> resource PKI. > > who signs as-set:? If the as-set has a hierarchical name (as described in RFC 2725 and possibly elsewhere) then the signer would be the AS holder of the AS named in the hierarchical name form, wouldn't it? > how does maintainer map to anything in rpki? I would've thought, after looking through the RFCs that explored this topic back in 1999 - 2000, that the maintainer of a inetnum object would be the address holder, the maintainer of the aut-num object would be the as number holder, and the maintainer of the route object would be the address holder, which would map back into the RPKI ... as > i said, bad impedance mismatch. I'm not sure I can agree with this assertion at this stage. >> What classes of IRR objects could be generated using the approach of >> generating IRR objects from RPKI data? > > route: I'm still wondering if that is a sufficient subset of the IRR information set. regards, Geoff
- Previous message (by thread): [routing-wg]2008-04 New Policy Proposal (Using the Resource Public Key Infrastructure to Construct Validated IRR Data)
- Next message (by thread): [routing-wg]2008-04 New Policy Proposal (Using the Resource Public Key Infrastructure to Construct Validated IRR Data)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]