On 2023-09-13, Stuart Henderson wrote:
> On 2023-09-13, Lyndon Nerenberg (VE7TFX/VE6BBM) wrote:
>> After some head bashing wondering why rpki-client wasn't
>> finding our ROAs I discovered the system doesn't ship with
>> ARINs tal file. So great swaths of RPKI data aren't getting
>> downloaded.
Peter Hessler writes:
> On 2023 Sep 13 (Wed) at 14:45:37 -0700 (-0700), Lyndon Nerenberg (VE7TFX/VE6B
> BM) wrote:
> :This might be worth a note in the rpki-client manpage
>
> Please re-read my entire email.
>
Doh! Sorry, I didn't look at that part of the page as I already knew
where the files
On 2023 Sep 13 (Wed) at 14:45:37 -0700 (-0700), Lyndon Nerenberg
(VE7TFX/VE6BBM) wrote:
:This might be worth a note in the rpki-client manpage
Please re-read my entire email.
Peter Hessler writes:
> Because ARIN insists on a completely ridiculous agreement for a public
> key to verify their data.
That's odd. I didn't have to agree to anything to download the file.
This might be worth a note in the rpki-client manpage, as it certainly
violates POLA.
--lyndon
On 2023-09-13, Lyndon Nerenberg (VE7TFX/VE6BBM) wrote:
> After some head bashing wondering why rpki-client wasn't
> finding our ROAs I discovered the system doesn't ship with
> ARINs tal file. So great swaths of RPKI data aren't getting
> downloaded.
>
> Why are those things?
See the FILES
Because ARIN insists on a completely ridiculous agreement for a public
key to verify their data.
we cannot make the agreement for you.
from the rpki-client(8) man page:
All the top-level TAL are included, except the ARIN TAL which is not made
available with terms compatible with open
After some head bashing wondering why rpki-client wasn't
finding our ROAs I discovered the system doesn't ship with
ARINs tal file. So great swaths of RPKI data aren't getting
downloaded.
Why are those things?
--lyndon
7 matches
Mail list logo