Eric, I forgot to address an issue that you mentioned in a previous message, and that relates to the alg agility doc.
The alg spec for the RPKI is separate from the CP, precisely so that we could change the algs without changing the CP. So, when the alg spec is replaced to introduce the next set of algs, we do not plan to re-issue the CP. As a result, the cert policy OID will not change as a side effect of the alg transition.
I discussed this assumption re OID stability with several PKI experts today, and they agreed that there is no need to change the policy OID.
i mention this because I recall that a previous message touched on this question, and I realize that the alg agility doc failed to mention this. The next rev will make this explicit.
Steve _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
