Re: [sidr] A quick note from RPKI in the wild
"Sriram, Kotikalapudi" <kotikalapudi.sriram@nist.gov> Wed, 07 December 2011 22:28 UTC
Return-Path: <kotikalapudi.sriram@nist.gov>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 13D1C11E808B for <sidr@ietfa.amsl.com>; Wed, 7 Dec 2011 14:28:50 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Tj8K6zl0Df5f for <sidr@ietfa.amsl.com>; Wed, 7 Dec 2011 14:28:49 -0800 (PST)
Received: from wsget2.nist.gov (wsget2.nist.gov [129.6.13.151]) by ietfa.amsl.com (Postfix) with ESMTP id 6588D11E8073 for <sidr@ietf.org>; Wed, 7 Dec 2011 14:28:49 -0800 (PST)
Received: from WSXGHUB2.xchange.nist.gov (129.6.18.19) by wsget2.nist.gov (129.6.13.151) with Microsoft SMTP Server (TLS) id 14.1.339.1; Wed, 7 Dec 2011 17:28:41 -0500
Received: from MBCLUSTER.xchange.nist.gov ([fe80::41df:f63f:c718:e08]) by WSXGHUB2.xchange.nist.gov ([129.6.18.19]) with mapi; Wed, 7 Dec 2011 17:28:06 -0500
From: "Sriram, Kotikalapudi" <kotikalapudi.sriram@nist.gov>
To: Alex Band <alexb@ripe.net>, "sidr@ietf.org" <sidr@ietf.org>
Date: Wed, 07 Dec 2011 17:28:46 -0500
Thread-Topic: [sidr] A quick note from RPKI in the wild
Thread-Index: AcyzmYVobC6J6eNTRdORolgc0x0dDgBe9UnA
Message-ID: <D7A0423E5E193F40BE6E94126930C49308EEE3BB2A@MBCLUSTER.xchange.nist.gov>
References: <F88C726A-DB3E-452D-9906-67B84F9B19C8@ripe.net>
In-Reply-To: <F88C726A-DB3E-452D-9906-67B84F9B19C8@ripe.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Subject: Re: [sidr] A quick note from RPKI in the wild
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Dec 2011 22:28:50 -0000
>By the latter group, 416 Route Origin Authorization (ROA) objects have been created, covering the equivalent of 230,000 /24 prefixes and 8,600 /32 IPv6 prefixes. >MaxLength in ROAs is sorely misunderstood, lots of education is needed there. Most leave the field blank, causing more specific announcements to be invalid. Alex, Can you comment if (a) the more specifics are announced from the same AS as seen in the ROA, or (b) they are announced from a different AS (e.g., customer AS)? If it is the latter, then even the ROA creation (for the less specific) is possibly in violation of: "Before issuing a ROA for a super-block, an operator MUST ensure that any sub-allocations from that block which are announced by other ASs, e.g. customers, have correct ROAs in the RPKI." from the origin-ops doc. http://tools.ietf.org/html/draft-ietf-sidr-origin-ops-13#section-3 As for education, the origin-ops document as well as the use-cases document (Sections 3, 7) http://tools.ietf.org/html/draft-ietf-sidr-usecases-03 can be referred. Sriram
- [sidr] A quick note from RPKI in the wild Alex Band
- Re: [sidr] A quick note from RPKI in the wild Matthias Waehlisch
- Re: [sidr] A quick note from RPKI in the wild Sriram, Kotikalapudi
- Re: [sidr] A quick note from RPKI in the wild Matthias Waehlisch
- Re: [sidr] A quick note from RPKI in the wild Sriram, Kotikalapudi
- Re: [sidr] A quick note from RPKI in the wild Matthias Waehlisch
- Re: [sidr] A quick note from RPKI in the wild Carlos Martinez-Cagnazzo
- Re: [sidr] A quick note from RPKI in the wild Matthias Waehlisch
- Re: [sidr] A quick note from RPKI in the wild Randy Bush
- Re: [sidr] A quick note from RPKI in the wild Arturo Servin
- Re: [sidr] A quick note from RPKI in the wild Randy Bush
- Re: [sidr] A quick note from RPKI in the wild Arturo Servin
- Re: [sidr] A quick note from RPKI in the wild Tim Bruijnzeels