Hi, this question addresses the scenario, in which a BGP update contains an AS_SET. According to draft-ietf-sidr-pfx-validate-01, the variable origin_as would be defined as "NONE". In case of a valid certificate for the prefix, the prefix validation function would return "INVALID".
BGP updates including an AS_SET with a valid certificate would never be valid. Correct? This seems a bit rough. Can you clarify the reason behind? I would expect that if a valid record for at least one origin AS within the AS_SET exists, the funcion will return "VALID". Thanks matthias -- Matthias Waehlisch . Freie Universitaet Berlin, Inst. fuer Informatik, AG CST . Takustr. 9, D-14195 Berlin, Germany .. mailto:[email protected] .. http://www.inf.fu-berlin.de/~waehl :. Also: http://inet.cpt.haw-hamburg.de .. http://www.link-lab.net _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
