this should have answered all comments in addition, a major change. previous drafts naïvely assumed the router could send a PKCS#10 to the relevant RPKI CA. this ignored how the CA would know the request was authentic. oops! now, the operator has to mediate the conversation. i am willing to take five minutes of floor time to discuss/explain this.
randy _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
