[RPKI] Routes containing aggregated AS-set becomes invalid
Jan Chrillesen
jan at chrillesen.dk
Wed Jul 15 06:13:43 UTC 2020
Hi,
I am in the process of turning on validation in our network and I have
an issue with 2001:948::/32
When receiving the route over various IX's I get the following AS-path:
2603
{224,39590,64520,64530,65001,65002,65003,65004,65005,65006,65007,65008,65009,65010,65423,65426}
However when received via transit the AS-path doesn't contain the
aggregated list of AS numbers (see
https://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/5441-aggregation.html#aggregatingwiththeassetargument
for an explanation of aggregation with as-set)
Our Cisco ASR9000 running 6.6.3 considers the route with the aggregated
as-set as RPKI invalid. Is this expected behavior or a bug?
- Jan
More information about the RPKI
mailing list