This version includes changes to the BGPsec Router Certificate request section as well as the Design Notes section to address including the SIA/EKU extensions in requests. After looking at it, I also added something about Basic Constraints - CA’s do the right thing and only issue EE certificates. I also noted a internal reference was wrong so I corrected. Comments welcome.
spt > On Mar 21, 2016, at 14:00, [email protected] wrote: > > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > This draft is a work item of the Secure Inter-Domain Routing of the IETF. > > Title : A Profile for BGPsec Router Certificates, > Certificate Revocation Lists, and Certification Requests > Authors : Mark Reynolds > Sean Turner > Stephen Kent > Filename : draft-ietf-sidr-bgpsec-pki-profiles-16.txt > Pages : 12 > Date : 2016-03-21 > _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
