-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Randy,
Randy Bush wrote on 06/06/2012 16:00: [...] > > Abstract: There are circumstances in RPKI operations where a > resource holder's parent may not be able to, or may not choose > to, facilitate full and proper registration of the holder's > data. As in real life, the holder may form a relationship to their > grandparent who is willing to aid the grandchild. This document > describes simple procedures for doing so. > The procedures make sense, but I am still trying to figure out what the draft is trying to recommend. Surely, what is described is technically possible, but it gives RPs no clue if the procedures were followed. In fact, what a RP may see would not be "congruent with the number resource allocation framework" [CP]. IMO a clean implementation would necessarily entail punching a hole in C's certificate. But this is not what the draft recommends. Andrei -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.14 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk/txEUACgkQljz5tZmtij8WPwCg2kRVgtBPaa/R2Ww60zYZEAvs 9koAoOKvcGU06yERG1op2ehL1IQoTvzk =K7Ly -----END PGP SIGNATURE----- _______________________________________________ sidr mailing list sidr@ietf.org https://www.ietf.org/mailman/listinfo/sidr
