IRR-NONAUTH Cleanup Analyser

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for job from gravatar.com job

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: BSD License (BSD 2-Clause)
  • Author: Job Snijders
  • Tags rpki, prefix, routing, networking
Classifiers

Project description

A simple tool to show what IRR “Non Authoritative” objects are affected by RPKI ROAs. The motivation behind the tool is to help reduce the amount of RPKI Invalid IRR route objects in the IRR eco-system.

An IRR route object is validated following the Origin Validation procedure as described in [RFC 6811](https://tools.ietf.org/html/rfc6811). The input into the procedure is the route: object’s primary key: the prefix and the ASN value of the origin: attribute.

A predecessor of this tool facilitated testing the implementation of the [RIPE-731](https://www.ripe.net/publications/docs/ripe-731) policy.

Installation

pip3 install irr-nonauth-cleanup

Use

$ irr-nonauth-cleanup -i ./somedatabase.db.gz

You can download an assortment of IRR databases from [RADB](ftp://ftp.radb.net/radb/dbase/)’s public IRR mirror service.

If add -r YOUR_IRRd_OVERRIDE_PW as command line arguments, the program will output data in a way that can be piped straight into an email to Legacy IRRd daemons.

Example output

VALID: IRR route object “203.69.138.0/24AS20940” matches ROA 203.69.138.0/24, MaxLength 24, Origin AS20940 (apnic) NOT-FOUND: IRR route object “168.143.241.0/24AS20940” is not covered by any ROAs INVALID! IRR route object 204.245.152.64/26AS20940 has conflicts:

route: 204.245.152.64/26 descr: Akamai origin: AS20940 mnt-by: AKAM1-ALTDB-MNT changed: ablock@akamai.com 20120402 source: ALTDB

Above non-authoritative IRR object is in conflict with this ROA:

ROA: 204.245.128.0/18, MaxLength: 18, Origin AS2914 (arin)

VALID: IRR route object “203.69.141.0/24AS20940” matches ROA 203.69.141.0/24, MaxLength 24, Origin AS20940 (apnic) VALID: IRR route object “210.61.248.0/23AS20940” matches ROA 210.61.248.0/23, MaxLength 23, Origin AS20940 (apnic) NOT-FOUND: IRR route object “203.69.141.0/24AS20940” is not covered by any ROAs

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for job from gravatar.com job

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: BSD License (BSD 2-Clause)
  • Author: Job Snijders
  • Tags rpki, prefix, routing, networking
Classifiers

Release history Release notifications | RSS feed

1.1.2

This version

1.1.1

1.1.0

1.0.2

1.0.1

1.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

irr-nonauth-cleanup-1.1.1.tar.gz (6.1 kB view details)

Uploaded Source

File details

Details for the file irr-nonauth-cleanup-1.1.1.tar.gz.

File metadata

  • Download URL: irr-nonauth-cleanup-1.1.1.tar.gz
  • Upload date:
  • Size: 6.1 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: Python-urllib/3.7

File hashes

Hashes for irr-nonauth-cleanup-1.1.1.tar.gz
Algorithm Hash digest
SHA256 5b17f51ceed52dfc147c926ced57c81a7794b7c86df0ccf7c4a9eb289c5f36ca
MD5 41ec32c9019d58f0cf4b3118be94c430
BLAKE2b-256 7995220fa50741e80c69a0192d8d67e7a4d7986c73a85a1c58f7f8436a18117c

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page