draft-ietf-sidr-rpki-rtr-protocol-mib-06.txt   draft-ietf-sidr-rpki-rtr-protocol-mib-07.txt 
Network Working Group R. Bush Network Working Group R. Bush
Internet-Draft Internet Initiative Japan Internet-Draft Internet Initiative Japan
Intended status: Standards Track B. Wijnen Intended status: Standards Track B. Wijnen
Expires: August 15, 2013 RIPE NCC Expires: September 12, 2013 RIPE NCC
K. Patel K. Patel
Cisco Systems Cisco Systems
M. Baer M. Baer
SPARTA SPARTA
February 11, 2013 March 11, 2013
Definitions of Managed Objects for the RPKI-Router Protocol Definitions of Managed Objects for the RPKI-Router Protocol
draft-ietf-sidr-rpki-rtr-protocol-mib-06 draft-ietf-sidr-rpki-rtr-protocol-mib-07
Abstract Abstract
This document defines a portion of the Management Information Base This document defines a portion of the Management Information Base
(MIB) for use with network management protocols in the Internet (MIB) for use with network management protocols in the Internet
community. In particular, it describes objects used for monitoring community. In particular, it describes objects used for monitoring
the RPKI Router protocol. the RPKI Router protocol.
Status of this Memo Status of this Memo
skipping to change at page 1, line 38 skipping to change at page 1, line 38
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF). Note that other groups may also distribute Task Force (IETF). Note that other groups may also distribute
working documents as Internet-Drafts. The list of current Internet- working documents as Internet-Drafts. The list of current Internet-
Drafts is at http://datatracker.ietf.org/drafts/current/. Drafts is at http://datatracker.ietf.org/drafts/current/.
Internet-Drafts are draft documents valid for a maximum of six months Internet-Drafts are draft documents valid for a maximum of six months
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress." material or to cite them other than as "work in progress."
This Internet-Draft will expire on August 15, 2013. This Internet-Draft will expire on September 12, 2013.
Copyright Notice Copyright Notice
Copyright (c) 2013 IETF Trust and the persons identified as the Copyright (c) 2013 IETF Trust and the persons identified as the
document authors. All rights reserved. document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents Provisions Relating to IETF Documents
(http://trustee.ietf.org/license-info) in effect on the date of (http://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents publication of this document. Please review these documents
skipping to change at page 2, line 16 skipping to change at page 2, line 16
the Trust Legal Provisions and are provided without warranty as the Trust Legal Provisions and are provided without warranty as
described in the Simplified BSD License. described in the Simplified BSD License.
Table of Contents Table of Contents
1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 3 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 3
1.1. Requirements Language . . . . . . . . . . . . . . . . . . 3 1.1. Requirements Language . . . . . . . . . . . . . . . . . . 3
2. Internet-Standard Management Framework . . . . . . . . . . . . 3 2. Internet-Standard Management Framework . . . . . . . . . . . . 3
3. Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 3. Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . 3
4. Definitions . . . . . . . . . . . . . . . . . . . . . . . . . 4 4. Definitions . . . . . . . . . . . . . . . . . . . . . . . . . 4
5. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 21 5. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 22
6. Security Considerations . . . . . . . . . . . . . . . . . . . 21 6. Security Considerations . . . . . . . . . . . . . . . . . . . 22
7. References . . . . . . . . . . . . . . . . . . . . . . . . . . 22 7. References . . . . . . . . . . . . . . . . . . . . . . . . . . 23
7.1. Normative References . . . . . . . . . . . . . . . . . . . 22 7.1. Normative References . . . . . . . . . . . . . . . . . . . 23
7.2. Informative References . . . . . . . . . . . . . . . . . . 23 7.2. Informative References . . . . . . . . . . . . . . . . . . 24
Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 23 Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 25
1. Introduction 1. Introduction
This document defines a portion of the Management Information Base This document defines a portion of the Management Information Base
(MIB) for use with network management protocols in the Internet (MIB) for use with network management protocols in the Internet
community. In particular, it defines objects used for monitoring the community. In particular, it defines objects used for monitoring the
RPKI Router protocol [RFC6810]. RPKI Router protocol [RFC6810].
1.1. Requirements Language 1.1. Requirements Language
skipping to change at page 4, line 43 skipping to change at page 4, line 43
FROM SNMPv2-TC -- RFC2579 FROM SNMPv2-TC -- RFC2579
MODULE-COMPLIANCE, OBJECT-GROUP, NOTIFICATION-GROUP MODULE-COMPLIANCE, OBJECT-GROUP, NOTIFICATION-GROUP
FROM SNMPv2-CONF -- RFC2580 FROM SNMPv2-CONF -- RFC2580
LongUtf8String FROM SYSAPPL-MIB -- RFC2287 LongUtf8String FROM SYSAPPL-MIB -- RFC2287
; ;
rpkiRtrMIB MODULE-IDENTITY rpkiRtrMIB MODULE-IDENTITY
LAST-UPDATED "201302110000Z" LAST-UPDATED "201303050000Z"
ORGANIZATION "IETF Secure Inter-Domain Routing (SIDR) ORGANIZATION "IETF Secure Inter-Domain Routing (SIDR)
Working Group Working Group
" "
CONTACT-INFO "Working Group Email: sidr@ietf.org CONTACT-INFO "Working Group Email: sidr@ietf.org
Randy Bush Randy Bush
Internet Initiative Japan Internet Initiative Japan
5147 Crystal Springs 5147 Crystal Springs
Bainbridge Island, Washington, 98110 Bainbridge Island, Washington, 98110
USA USA
skipping to change at page 5, line 46 skipping to change at page 5, line 46
Copyright (c) 2013 IETF Trust and the persons Copyright (c) 2013 IETF Trust and the persons
identified as authors of the code. All rights identified as authors of the code. All rights
reserved. reserved.
Redistribution and use in source and binary Redistribution and use in source and binary
forms, with or without modification, is forms, with or without modification, is
permitted pursuant to, and subject to the permitted pursuant to, and subject to the
license terms contained in, the Simplified BSD license terms contained in, the Simplified BSD
License set forth in Section 4.c of the IETF License set forth in Section 4.c of the IETF
Trust's Legal Provisions Relating to IETF Trust's Legal Provisions Relating to IETF
Documents (http://trustee.ietf.org/license-info). Documents
(http://trustee.ietf.org/license-info).
This version of this MIB module is part of This version of this MIB module is part of
RFCxxxx; see the RFC itself for full legal RFCxxxx; see the RFC itself for full legal
notices. notices.
" "
REVISION "201302110000Z" REVISION "201303050000Z"
DESCRIPTION "Initial version, published as RFCxxxx." DESCRIPTION "Initial version, published as RFCxxxx."
-- Note to RFC Editor: pls fill in above (2 times) RFC -- Note to RFC Editor: pls fill in above (2 times) RFC
-- number for xxxx and delete these 2 lines. -- number for xxxx and delete these 2 lines.
::= { mib-2 XXX } -- XXX to be assigned by IANA ::= { mib-2 XXX } -- XXX to be assigned by IANA
rpkiRtrNotifications OBJECT IDENTIFIER ::= { rpkiRtrMIB 0 } rpkiRtrNotifications OBJECT IDENTIFIER ::= { rpkiRtrMIB 0 }
rpkiRtrObjects OBJECT IDENTIFIER ::= { rpkiRtrMIB 1 } rpkiRtrObjects OBJECT IDENTIFIER ::= { rpkiRtrMIB 1 }
rpkiRtrConformance OBJECT IDENTIFIER ::= { rpkiRtrMIB 2 } rpkiRtrConformance OBJECT IDENTIFIER ::= { rpkiRtrMIB 2 }
-- ============================================================== -- ==============================================================
skipping to change at page 7, line 37 skipping to change at page 7, line 39
DESCRIPTION "This table lists the RPKI cache servers DESCRIPTION "This table lists the RPKI cache servers
known to this router/system." known to this router/system."
::= { rpkiRtrObjects 2 } ::= { rpkiRtrObjects 2 }
rpkiRtrCacheServerTableEntry OBJECT-TYPE rpkiRtrCacheServerTableEntry OBJECT-TYPE
SYNTAX RpkiRtrCacheServerTableEntry SYNTAX RpkiRtrCacheServerTableEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION "An entry in the rpkiRtrCacheServerTable. DESCRIPTION "An entry in the rpkiRtrCacheServerTable.
It holds management attributes associated It holds management attributes associated
with one connection to a RPKI cache server." with one connection to a RPKI cache server.
INDEX { rpkiRtrCacheServerAddressType,
Implementers should be aware that if the
rpkiRtrCacheServerRemoteAddress object exceeds 114
octets, the index values will exceed the 128
sub-identifier limit and cannot be accessed using
SNMPv1, SNMPv2c, or SNMPv3."
INDEX { rpkiRtrCacheServerRemoteAddressType,
rpkiRtrCacheServerRemoteAddress, rpkiRtrCacheServerRemoteAddress,
rpkiRtrCacheServerRemotePort rpkiRtrCacheServerRemotePort
} }
::= { rpkiRtrCacheServerTable 1 } ::= { rpkiRtrCacheServerTable 1 }
RpkiRtrCacheServerTableEntry ::= SEQUENCE { RpkiRtrCacheServerTableEntry ::= SEQUENCE {
rpkiRtrCacheServerAddressType InetAddressType, rpkiRtrCacheServerRemoteAddressType InetAddressType,
rpkiRtrCacheServerRemoteAddress InetAddress, rpkiRtrCacheServerRemoteAddress InetAddress,
rpkiRtrCacheServerRemotePort InetPortNumber, rpkiRtrCacheServerRemotePort InetPortNumber,
rpkiRtrCacheServerLocalAddressType InetAddressType,
rpkiRtrCacheServerLocalAddress InetAddress, rpkiRtrCacheServerLocalAddress InetAddress,
rpkiRtrCacheServerLocalPort InetPortNumber, rpkiRtrCacheServerLocalPort InetPortNumber,
rpkiRtrCacheServerPreference Unsigned32, rpkiRtrCacheServerPreference Unsigned32,
rpkiRtrCacheServerConnectionType RpkiRtrConnectionType, rpkiRtrCacheServerConnectionType RpkiRtrConnectionType,
rpkiRtrCacheServerConnectionStatus INTEGER, rpkiRtrCacheServerConnectionStatus INTEGER,
rpkiRtrCacheServerDescription LongUtf8String, rpkiRtrCacheServerDescription LongUtf8String,
rpkiRtrCacheServerMsgsReceived Counter32, rpkiRtrCacheServerMsgsReceived Counter32,
rpkiRtrCacheServerMsgsSent Counter32, rpkiRtrCacheServerMsgsSent Counter32,
rpkiRtrCacheServerV4ActiveRecords Gauge32, rpkiRtrCacheServerV4ActiveRecords Gauge32,
rpkiRtrCacheServerV4Announcements Counter32, rpkiRtrCacheServerV4Announcements Counter32,
skipping to change at page 8, line 21 skipping to change at page 8, line 31
rpkiRtrCacheServerV6ActiveRecords Gauge32, rpkiRtrCacheServerV6ActiveRecords Gauge32,
rpkiRtrCacheServerV6Announcements Counter32, rpkiRtrCacheServerV6Announcements Counter32,
rpkiRtrCacheServerV6Withdrawals Counter32, rpkiRtrCacheServerV6Withdrawals Counter32,
rpkiRtrCacheServerLatestSerial Unsigned32, rpkiRtrCacheServerLatestSerial Unsigned32,
rpkiRtrCacheServerSessionID Unsigned32, rpkiRtrCacheServerSessionID Unsigned32,
rpkiRtrCacheServerRefreshTimer Unsigned32, rpkiRtrCacheServerRefreshTimer Unsigned32,
rpkiRtrCacheServerTimeToRefresh Integer32, rpkiRtrCacheServerTimeToRefresh Integer32,
rpkiRtrCacheServerId Unsigned32 rpkiRtrCacheServerId Unsigned32
} }
rpkiRtrCacheServerAddressType OBJECT-TYPE rpkiRtrCacheServerRemoteAddressType OBJECT-TYPE
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION "The network address type of the connection DESCRIPTION "The network address type of the connection
to this RPKI cache server. to this RPKI cache server.
Note: Only IPv4, IPv6 and DNS support are required Note: Only IPv4, IPv6 and DNS support are required
for RFCxxxx read only compliance." for RFCxxxx read only compliance."
::= { rpkiRtrCacheServerTableEntry 1 } ::= { rpkiRtrCacheServerTableEntry 1 }
rpkiRtrCacheServerRemoteAddress OBJECT-TYPE rpkiRtrCacheServerRemoteAddress OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION "The remote network address for this connection DESCRIPTION "The remote network address for this connection
to this RPKI cache server. to this RPKI cache server.
The format of the address is defined by the The format of the address is defined by the
value of the corresponding instance of value of the corresponding instance of
rpkiRtrCacheServerAddressType." rpkiRtrCacheServerRemoteAddressType.
This object matches the address type used within
the local router configuration. If the address is
of type dns (fqdn), then the router will resolve it
at the time it connects to the cache server."
::= { rpkiRtrCacheServerTableEntry 2 } ::= { rpkiRtrCacheServerTableEntry 2 }
rpkiRtrCacheServerRemotePort OBJECT-TYPE rpkiRtrCacheServerRemotePort OBJECT-TYPE
SYNTAX InetPortNumber (1..65535) SYNTAX InetPortNumber (1..65535)
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION "The remote port number for this connection DESCRIPTION "The remote port number for this connection
to this RPKI cache server." to this RPKI cache server."
::= { rpkiRtrCacheServerTableEntry 3 } ::= { rpkiRtrCacheServerTableEntry 3 }
rpkiRtrCacheServerLocalAddressType OBJECT-TYPE
SYNTAX InetAddressType
MAX-ACCESS read-only
STATUS current
DESCRIPTION "The network address type of the connection
to this RPKI cache server.
Note: Only IPv4, IPv6 and DNS support are required
for RFCxxxx read only compliance."
::= { rpkiRtrCacheServerTableEntry 4 }
rpkiRtrCacheServerLocalAddress OBJECT-TYPE rpkiRtrCacheServerLocalAddress OBJECT-TYPE
SYNTAX InetAddress (SIZE(4|16)) SYNTAX InetAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The local network address for this connection DESCRIPTION "The local network address for this connection
to this RPKI cache server. to this RPKI cache server.
The format of the address is defined by the The format of the address is defined by the
value of the corresponding instance of value of the corresponding instance of
rpkiRtrCacheServerAddressType." rpkiRtrCacheServerLocalAddressType.
::= { rpkiRtrCacheServerTableEntry 4 }
This object matches the address type used within
the local router configuration. If the address is
of type dns (fqdn), then the router will resolve it
at the time it connects to the cache server."
::= { rpkiRtrCacheServerTableEntry 5 }
rpkiRtrCacheServerLocalPort OBJECT-TYPE rpkiRtrCacheServerLocalPort OBJECT-TYPE
SYNTAX InetPortNumber (1..65535) SYNTAX InetPortNumber (1..65535)
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The local port number for this connection DESCRIPTION "The local port number for this connection
to this RPKI cache server." to this RPKI cache server."
::= { rpkiRtrCacheServerTableEntry 5 }
::= { rpkiRtrCacheServerTableEntry 6 }
rpkiRtrCacheServerPreference OBJECT-TYPE rpkiRtrCacheServerPreference OBJECT-TYPE
SYNTAX Unsigned32 SYNTAX Unsigned32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The routers' preference for this RPKI cache server. DESCRIPTION "The routers' preference for this RPKI cache server.
A lower value means more preferred. If two A lower value means more preferred. If two entries
entries have the same preference, then the have the same preference, then the order is
order is arbitrary. arbitrary.
In two cases the maximum value for an Unsigned32 In two cases the maximum value for an Unsigned32
object should be returned for this object: object should be returned for this object:
- If no order is specified in the RPKI Router - If no order is specified in the RPKI Router
configuration. configuration.
- If a preference value is configured that is larger - If a preference value is configured that is
than the max value for an Unsigned32 object." larger than the max value for an Unsigned32
object."
REFERENCE "The RPKI/Rtr Protocol, RFC6810 - section 8." REFERENCE "The RPKI/Rtr Protocol, RFC6810 - section 8."
DEFVAL { 4294967295 } DEFVAL { 4294967295 }
::= { rpkiRtrCacheServerTableEntry 6 } ::= { rpkiRtrCacheServerTableEntry 7 }
rpkiRtrCacheServerConnectionType OBJECT-TYPE rpkiRtrCacheServerConnectionType OBJECT-TYPE
SYNTAX RpkiRtrConnectionType SYNTAX RpkiRtrConnectionType
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The connection type or transport security suite DESCRIPTION "The connection type or transport security suite
in use for this RPKI cache server." in use for this RPKI cache server."
::= { rpkiRtrCacheServerTableEntry 7 } ::= { rpkiRtrCacheServerTableEntry 8 }
rpkiRtrCacheServerConnectionStatus OBJECT-TYPE rpkiRtrCacheServerConnectionStatus OBJECT-TYPE
SYNTAX INTEGER { up(1), down(2) } SYNTAX INTEGER { up(1), down(2) }
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The connection status for this entry DESCRIPTION "The connection status for this entry
(connection to this RPKI cache server)." (connection to this RPKI cache server)."
::= { rpkiRtrCacheServerTableEntry 8 } ::= { rpkiRtrCacheServerTableEntry 9 }
rpkiRtrCacheServerDescription OBJECT-TYPE rpkiRtrCacheServerDescription OBJECT-TYPE
SYNTAX LongUtf8String SYNTAX LongUtf8String
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "Free form description/information for this DESCRIPTION "Free form description/information for this
connection to this RPKI cache server." connection to this RPKI cache server."
::= { rpkiRtrCacheServerTableEntry 9 } ::= { rpkiRtrCacheServerTableEntry 10 }
rpkiRtrCacheServerMsgsReceived OBJECT-TYPE rpkiRtrCacheServerMsgsReceived OBJECT-TYPE
SYNTAX Counter32 SYNTAX Counter32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "Number of messages received from this DESCRIPTION "Number of messages received from this
RPKI cache server via this connection. RPKI cache server via this connection.
Discontinuities are indicated by the value Discontinuities are indicated by the value
of rpkiRtrDiscontinuityTimer." of rpkiRtrDiscontinuityTimer."
::= { rpkiRtrCacheServerTableEntry 10 } ::= { rpkiRtrCacheServerTableEntry 11 }
rpkiRtrCacheServerMsgsSent OBJECT-TYPE rpkiRtrCacheServerMsgsSent OBJECT-TYPE
SYNTAX Counter32 SYNTAX Counter32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "Number of messages sent to this DESCRIPTION "Number of messages sent to this
RPKI cache server via this connection. RPKI cache server via this connection.
Discontinuities are indicated by the value Discontinuities are indicated by the value
of rpkiRtrDiscontinuityTimer." of rpkiRtrDiscontinuityTimer."
::= { rpkiRtrCacheServerTableEntry 11 } ::= { rpkiRtrCacheServerTableEntry 12 }
rpkiRtrCacheServerV4ActiveRecords OBJECT-TYPE rpkiRtrCacheServerV4ActiveRecords OBJECT-TYPE
SYNTAX Gauge32 SYNTAX Gauge32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "Number of active IPv4 records received from DESCRIPTION "Number of active IPv4 records received from
this RPKI cache server via this connection." this RPKI cache server via this connection."
::= { rpkiRtrCacheServerTableEntry 12 } ::= { rpkiRtrCacheServerTableEntry 13 }
rpkiRtrCacheServerV4Announcements OBJECT-TYPE rpkiRtrCacheServerV4Announcements OBJECT-TYPE
SYNTAX Counter32 SYNTAX Counter32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The number of IPv4 records announced by the DESCRIPTION "The number of IPv4 records announced by the
RPKI cache Server via this connection. RPKI cache Server via this connection.
Discontinuities are indicated by the value Discontinuities are indicated by the value
of rpkiRtrDiscontinuityTimer." of rpkiRtrDiscontinuityTimer."
::= { rpkiRtrCacheServerTableEntry 13 } ::= { rpkiRtrCacheServerTableEntry 14 }
rpkiRtrCacheServerV4Withdrawals OBJECT-TYPE rpkiRtrCacheServerV4Withdrawals OBJECT-TYPE
SYNTAX Counter32 SYNTAX Counter32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The number of IPv4 records withdrawn by the DESCRIPTION "The number of IPv4 records withdrawn by the
RPKI cache Server via this connection. RPKI cache Server via this connection.
Discontinuities are indicated by the value Discontinuities are indicated by the value
of rpkiRtrDiscontinuityTimer." of rpkiRtrDiscontinuityTimer."
::= { rpkiRtrCacheServerTableEntry 14 } ::= { rpkiRtrCacheServerTableEntry 15 }
rpkiRtrCacheServerV6ActiveRecords OBJECT-TYPE rpkiRtrCacheServerV6ActiveRecords OBJECT-TYPE
SYNTAX Gauge32 SYNTAX Gauge32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "Number of active IPv6 records received from DESCRIPTION "Number of active IPv6 records received from
this RPKI cache server via this connection." this RPKI cache server via this connection."
::= { rpkiRtrCacheServerTableEntry 15 } ::= { rpkiRtrCacheServerTableEntry 16 }
rpkiRtrCacheServerV6Announcements OBJECT-TYPE rpkiRtrCacheServerV6Announcements OBJECT-TYPE
SYNTAX Counter32 SYNTAX Counter32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The number of IPv6 records announced by the DESCRIPTION "The number of IPv6 records announced by the
RPKI cache Server via this connection. RPKI cache Server via this connection.
Discontinuities are indicated by the value Discontinuities are indicated by the value
of rpkiRtrDiscontinuityTimer." of rpkiRtrDiscontinuityTimer."
::= { rpkiRtrCacheServerTableEntry 16 } ::= { rpkiRtrCacheServerTableEntry 17 }
rpkiRtrCacheServerV6Withdrawals OBJECT-TYPE rpkiRtrCacheServerV6Withdrawals OBJECT-TYPE
SYNTAX Counter32 SYNTAX Counter32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The number of IPv6 records withdrawn by the DESCRIPTION "The number of IPv6 records withdrawn by the
RPKI cache Server via this connection. RPKI cache Server via this connection.
Discontinuities are indicated by the value Discontinuities are indicated by the value
of rpkiRtrDiscontinuityTimer." of rpkiRtrDiscontinuityTimer."
::= { rpkiRtrCacheServerTableEntry 18 }
::= { rpkiRtrCacheServerTableEntry 17 }
rpkiRtrCacheServerLatestSerial OBJECT-TYPE rpkiRtrCacheServerLatestSerial OBJECT-TYPE
SYNTAX Unsigned32 SYNTAX Unsigned32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The latest serial number of data received from DESCRIPTION "The latest serial number of data received from
this RPKI server on this connection. this RPKI server on this connection.
Note: this value wraps back to zero when it Note: this value wraps back to zero when it
reaches its maximum value." reaches its maximum value."
REFERENCE "RFC6810 section 2 and RFC1982" REFERENCE "RFC6810 section 2 and RFC1982"
-- RFC-Editor: please fill out nnnn with the RFC number assigned -- RFC-Editor: please fill out nnnn with the RFC number assigned
-- to draft-ietf-sidr-rpki-rtr-nn.txt -- to draft-ietf-sidr-rpki-rtr-nn.txt
::= { rpkiRtrCacheServerTableEntry 18 } ::= { rpkiRtrCacheServerTableEntry 19 }
rpkiRtrCacheServerSessionID OBJECT-TYPE rpkiRtrCacheServerSessionID OBJECT-TYPE
SYNTAX Unsigned32 (0..65535) SYNTAX Unsigned32 (0..65535)
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The Session ID associated with the RPKI cache DESCRIPTION "The Session ID associated with the RPKI cache
server at the other end of this connection." server at the other end of this connection."
REFERENCE "RFC6810 section 2" REFERENCE "RFC6810 section 2"
::= { rpkiRtrCacheServerTableEntry 19 } ::= { rpkiRtrCacheServerTableEntry 20 }
rpkiRtrCacheServerRefreshTimer OBJECT-TYPE rpkiRtrCacheServerRefreshTimer OBJECT-TYPE
SYNTAX Unsigned32 (60..7200) SYNTAX Unsigned32 (60..7200)
UNITS "seconds" UNITS "seconds"
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The number of seconds configured for the refresh DESCRIPTION "The number of seconds configured for the refresh
timer for this connection to this RPKI cache timer for this connection to this RPKI cache
server." server."
REFERENCE "RFC6810 section 8, section 6.1" REFERENCE "RFC6810 section 8, section 6.1"
::= { rpkiRtrCacheServerTableEntry 20 } ::= { rpkiRtrCacheServerTableEntry 21 }
rpkiRtrCacheServerTimeToRefresh OBJECT-TYPE rpkiRtrCacheServerTimeToRefresh OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32
UNITS "seconds" UNITS "seconds"
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The number of seconds remaining before a new DESCRIPTION "The number of seconds remaining before a new
refresh is performed via a Serial Query to refresh is performed via a Serial Query to
this cache server over this connection. this cache server over this connection.
A negative value means that the refresh time has A negative value means that the refresh time has
passed this many seconds and the refresh has not yet passed this many seconds and the refresh has not
been completed. It will stop decrementing at the yet been completed. It will stop decrementing at
maximum negative value. the maximum negative value.
Upon a completed refresh (i.e. a successful Upon a completed refresh (i.e. a successful
and complete response to a Serial Query) the and complete response to a Serial Query) the
value of this attribute will be re-initialized value of this attribute will be re-initialized
with the value of the corresponding with the value of the corresponding
rpkiRtrCacheServerRefreshTimer attribute." rpkiRtrCacheServerRefreshTimer attribute."
REFERENCE "RFC6810 section 8" REFERENCE "RFC6810 section 8"
::= { rpkiRtrCacheServerTableEntry 21 } ::= { rpkiRtrCacheServerTableEntry 22 }
rpkiRtrCacheServerId OBJECT-TYPE rpkiRtrCacheServerId OBJECT-TYPE
SYNTAX Unsigned32 (1..4294967295) SYNTAX Unsigned32 (1..4294967295)
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION "The unique ID for this connection. DESCRIPTION "The unique ID for this connection.
An implementation must make sure this ID is unique An implementation must make sure this ID is unique
within this table. It is this ID that can be used within this table. It is this ID that can be used
to find entries in the rpkiRtrPrefixOriginTable to find entries in the rpkiRtrPrefixOriginTable
that were created by announcements received on this that were created by announcements received on
connection from this cache server." this connection from this cache server."
REFERENCE "RFC6810 section 4" REFERENCE "RFC6810 section 4"
::= { rpkiRtrCacheServerTableEntry 22 } ::= { rpkiRtrCacheServerTableEntry 23 }
-- ============================================================== -- ==============================================================
-- Errors Table -- Errors Table
-- ============================================================== -- ==============================================================
rpkiRtrCacheServerErrorsTable OBJECT-TYPE rpkiRtrCacheServerErrorsTable OBJECT-TYPE
SYNTAX SEQUENCE OF RpkiRtrCacheServerErrorsTableEntry SYNTAX SEQUENCE OF RpkiRtrCacheServerErrorsTableEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION "This table provides statistics on errors per DESCRIPTION "This table provides statistics on errors per
RPKI peer connection. These can be used for RPKI peer connection. These can be used for
debugging." debugging."
::= { rpkiRtrObjects 3 } ::= { rpkiRtrObjects 3 }
rpkiRtrCacheServerErrorsTableEntry OBJECT-TYPE rpkiRtrCacheServerErrorsTableEntry OBJECT-TYPE
SYNTAX RpkiRtrCacheServerErrorsTableEntry SYNTAX RpkiRtrCacheServerErrorsTableEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION "An entry in the rpkiCacheServerErrorTable. It holds DESCRIPTION "An entry in the rpkiCacheServerErrorTable. It
management objects associated with errors codes that holds management objects associated with errors
were received on the specified connection to a codes that were received on the specified
specific cache server." connection to a specific cache server."
REFERENCE "RFC6810 section 10" REFERENCE "RFC6810 section 10"
AUGMENTS { rpkiRtrCacheServerTableEntry } AUGMENTS { rpkiRtrCacheServerTableEntry }
::= { rpkiRtrCacheServerErrorsTable 1 } ::= { rpkiRtrCacheServerErrorsTable 1 }
RpkiRtrCacheServerErrorsTableEntry ::= SEQUENCE { RpkiRtrCacheServerErrorsTableEntry ::= SEQUENCE {
rpkiRtrCacheServerErrorsCorruptData Counter32, rpkiRtrCacheServerErrorsCorruptData Counter32,
rpkiRtrCacheServerErrorsInternalError Counter32, rpkiRtrCacheServerErrorsInternalError Counter32,
rpkiRtrCacheServerErrorsNoData Counter32, rpkiRtrCacheServerErrorsNoData Counter32,
rpkiRtrCacheServerErrorsInvalidRequest Counter32, rpkiRtrCacheServerErrorsInvalidRequest Counter32,
rpkiRtrCacheServerErrorsUnsupportedVersion Counter32, rpkiRtrCacheServerErrorsUnsupportedVersion Counter32,
skipping to change at page 16, line 34 skipping to change at page 17, line 19
announced by RPKI cache servers to this system. announced by RPKI cache servers to this system.
That is the prefixes and their Origin ASN That is the prefixes and their Origin ASN
as received by announcements via the as received by announcements via the
rpki-rtr protocol." rpki-rtr protocol."
::= { rpkiRtrObjects 4 } ::= { rpkiRtrObjects 4 }
rpkiRtrPrefixOriginTableEntry OBJECT-TYPE rpkiRtrPrefixOriginTableEntry OBJECT-TYPE
SYNTAX RpkiRtrPrefixOriginTableEntry SYNTAX RpkiRtrPrefixOriginTableEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION "An entry in the rpkiRtrPrefixOriginTable. DESCRIPTION "An entry in the rpkiRtrPrefixOriginTable. This
This represents one announced prefix. If a Cache represents one announced prefix. If a Cache Server
Server is removed from the local configuration, any is removed from the local configuration, any table
table rows associated with that server (indicated by rows associated with that server (indicated by
rpkiRtrPrefixOriginCacheServerId) are also removed rpkiRtrPrefixOriginCacheServerId) are also removed
from this table." from this table.
Implementers should be aware that if the
rpkiRtrPrefixOriginAddress object exceeds 111
octets, the index values will exceed the 128
sub-identifier limit and cannot be accessed using
SNMPv1, SNMPv2c, or SNMPv3."
INDEX { rpkiRtrPrefixOriginAddressType, INDEX { rpkiRtrPrefixOriginAddressType,
rpkiRtrPrefixOriginAddress, rpkiRtrPrefixOriginAddress,
rpkiRtrPrefixOriginMinLength, rpkiRtrPrefixOriginMinLength,
rpkiRtrPrefixOriginMaxLength, rpkiRtrPrefixOriginMaxLength,
rpkiRtrPrefixOriginASN, rpkiRtrPrefixOriginASN,
rpkiRtrPrefixOriginCacheServerId rpkiRtrPrefixOriginCacheServerId
} }
::= { rpkiRtrPrefixOriginTable 1 } ::= { rpkiRtrPrefixOriginTable 1 }
RpkiRtrPrefixOriginTableEntry ::= SEQUENCE { RpkiRtrPrefixOriginTableEntry ::= SEQUENCE {
skipping to change at page 17, line 16 skipping to change at page 18, line 8
rpkiRtrPrefixOriginASN InetAutonomousSystemNumber, rpkiRtrPrefixOriginASN InetAutonomousSystemNumber,
rpkiRtrPrefixOriginCacheServerId Unsigned32 rpkiRtrPrefixOriginCacheServerId Unsigned32
} }
rpkiRtrPrefixOriginAddressType OBJECT-TYPE rpkiRtrPrefixOriginAddressType OBJECT-TYPE
SYNTAX InetAddressType SYNTAX InetAddressType
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION "The network Address Type for this prefix. DESCRIPTION "The network Address Type for this prefix.
Note: Only IPv4, IPv6 and DNS support are required Note: Only IPv4 and IPv6 support are required
for RFCxxxx read only compliance." for RFCxxxx read only compliance."
::= { rpkiRtrPrefixOriginTableEntry 1 } ::= { rpkiRtrPrefixOriginTableEntry 1 }
rpkiRtrPrefixOriginAddress OBJECT-TYPE rpkiRtrPrefixOriginAddress OBJECT-TYPE
SYNTAX InetAddress SYNTAX InetAddress
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION "The network Address for this prefix. DESCRIPTION "The network Address for this prefix.
The format of the address is defined by the The format of the address is defined by the
skipping to change at page 17, line 49 skipping to change at page 18, line 41
SYNTAX InetAddressPrefixLength SYNTAX InetAddressPrefixLength
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION "The maximum prefix length allowed for this prefix. DESCRIPTION "The maximum prefix length allowed for this prefix.
Note, this value must be greater or equal to the Note, this value must be greater or equal to the
value of rpkiRtrPrefixOriginMinLength." value of rpkiRtrPrefixOriginMinLength."
::= { rpkiRtrPrefixOriginTableEntry 4 } ::= { rpkiRtrPrefixOriginTableEntry 4 }
rpkiRtrPrefixOriginASN OBJECT-TYPE rpkiRtrPrefixOriginASN OBJECT-TYPE
SYNTAX InetAutonomousSystemNumber SYNTAX InetAutonomousSystemNumber (0..4294967295)
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION "The ASN that is authorized to announce the DESCRIPTION "The ASN that is authorized to announce the
prefix or sub-prefixes covered by this entry." prefix or sub-prefixes covered by this entry."
::= { rpkiRtrPrefixOriginTableEntry 5 } ::= { rpkiRtrPrefixOriginTableEntry 5 }
rpkiRtrPrefixOriginCacheServerId OBJECT-TYPE rpkiRtrPrefixOriginCacheServerId OBJECT-TYPE
SYNTAX Unsigned32 (1..4294967295) SYNTAX Unsigned32 (1..4294967295)
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
skipping to change at page 19, line 28 skipping to change at page 20, line 20
-- Module Compliance information -- Module Compliance information
-- ============================================================== -- ==============================================================
rpkiRtrCompliances OBJECT IDENTIFIER ::= rpkiRtrCompliances OBJECT IDENTIFIER ::=
{rpkiRtrConformance 1} {rpkiRtrConformance 1}
rpkiRtrGroups OBJECT IDENTIFIER ::= rpkiRtrGroups OBJECT IDENTIFIER ::=
{rpkiRtrConformance 2} {rpkiRtrConformance 2}
rpkiRtrRFCxxxxReadOnlyCompliance MODULE-COMPLIANCE rpkiRtrRFCxxxxReadOnlyCompliance MODULE-COMPLIANCE
STATUS current STATUS current
DESCRIPTION "The compliance statement for the rpkiRtrMIB DESCRIPTION
module. There are only read-only objects in this "The compliance statement for the rpkiRtrMIB module. There
MIB module, so the 'ReadOnly' in the name of this are only read-only objects in this MIB module, so the
compliance statement is there only for clarity 'ReadOnly' in the name of this compliance statement is there
and truth in advertising. only for clarity and truth in advertising.
There are a number of INDEX objects that cannot be
represented in the form of OBJECT clauses in SMIv2, but for
which there are compliance requirements. Those requirements
and similar requirements for related objects are expressed
below, in pseudo-OBJECT clause form, in this description:
-- OBJECT rpkiRtrCacheServerRemoteAddressType
-- SYNTAX InetAddressType { ipv4(1), ipv6(2), dns(16) }
-- DESCRIPTION
-- The MIB requires support for the IPv4, IPv6 and DNS
-- InetAddressTypes's for this object.
-- OBJECT rpkiRtrCacheServerLocalAddressType
-- SYNTAX InetAddressType { ipv4(1), ipv6(2), dns(16) }
-- DESCRIPTION
-- The MIB requires support for the IPv4, IPv6 and DNS
-- InetAddressTypes's for this object.
-- OBJECT rpkiRtrPrefixOriginAddressType
-- SYNTAX InetAddressType { ipv4(1), ipv6(2) }
-- DESCRIPTION
-- The MIB requires support for the IPv4 and IPv6
-- InetAddressTypes's for this object.
"
In order to be compliant, the InetAddressType
objects in this MIB, rpkiRtrCacheServerAddressType
and rpkiRtrPrefixOriginAddressType, are only
required to support the ipv4, ipv6, and dns types.
"
MODULE -- This module MODULE -- This module
MANDATORY-GROUPS { rpkiRtrCacheServerGroup, MANDATORY-GROUPS { rpkiRtrCacheServerGroup,
rpkiRtrPrefixOriginGroup, rpkiRtrPrefixOriginGroup,
rpkiRtrNotificationsGroup, rpkiRtrNotificationsGroup
rpkiRtrCacheServerAddressType
} }
GROUP rpkiRtrCacheServerErrorsGroup GROUP rpkiRtrCacheServerErrorsGroup
DESCRIPTION "Implementation of this group is optional and DESCRIPTION "Implementation of this group is optional and
would be useful for debugging." would be useful for debugging."
::= { rpkiRtrCompliances 1 } ::= { rpkiRtrCompliances 1 }
rpkiRtrCacheServerGroup OBJECT-GROUP rpkiRtrCacheServerGroup OBJECT-GROUP
OBJECTS { OBJECTS {
rpkiRtrDiscontinuityTimer, rpkiRtrDiscontinuityTimer,
rpkiRtrCacheServerLocalAddressType,
rpkiRtrCacheServerLocalAddress, rpkiRtrCacheServerLocalAddress,
rpkiRtrCacheServerLocalPort, rpkiRtrCacheServerLocalPort,
rpkiRtrCacheServerPreference, rpkiRtrCacheServerPreference,
rpkiRtrCacheServerConnectionType, rpkiRtrCacheServerConnectionType,
rpkiRtrCacheServerConnectionStatus, rpkiRtrCacheServerConnectionStatus,
rpkiRtrCacheServerDescription, rpkiRtrCacheServerDescription,
rpkiRtrCacheServerMsgsReceived, rpkiRtrCacheServerMsgsReceived,
rpkiRtrCacheServerMsgsSent, rpkiRtrCacheServerMsgsSent,
rpkiRtrCacheServerV4ActiveRecords, rpkiRtrCacheServerV4ActiveRecords,
rpkiRtrCacheServerV4Announcements, rpkiRtrCacheServerV4Announcements,
 End of changes. 48 change blocks. 
73 lines changed or deleted 133 lines changed or added

This html diff was produced by rfcdiff 1.41. The latest version is available from http://tools.ietf.org/tools/rfcdiff/