Browse Prior Art Database

X.509 Extensions for IP Addresses and AS Identifiers (RFC3779)

IP.com Disclosure Number: IPCOM000029103D
Original Publication Date: 2004-Jun-01
Included in the Prior Art Database: 2004-Jun-16
Document File: 28 page(s) / 61K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

C. Lynn: AUTHOR [+3]

Abstract

This document defines two X.509 v3 certificate extensions. The first binds a list of IP address blocks, or prefixes, to the subject of a certificate. The second binds a list of autonomous system identifiers to the subject of a certificate. These extensions may be used to convey the authorization of the subject to use the IP addresses and autonomous system identifiers contained in the extensions.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 5% of the total text.

Network Working Group                                            C. Lynn

Request for Comments: 3779                                       S. Kent

Category: Standards Track                                         K. Seo

                                                        BBN Technologies

                                                               June 2004

          X.509 Extensions for IP Addresses and AS Identifiers

Status of this Memo

   This document specifies an Internet standards track protocol for the

   Internet community, and requests discussion and suggestions for

   improvements.  Please refer to the current edition of the "Internet

   Official Protocol Standards" (STD 1) for the standardization state

   and status of this protocol.  Distribution of this memo is unlimited.

Copyright Notice

   Copyright (C) The Internet Society (2004).

Abstract

   This document defines two X.509 v3 certificate extensions.  The first

   binds a list of IP address blocks, or prefixes, to the subject of a

   certificate.  The second binds a list of autonomous system

   identifiers to the subject of a certificate.  These extensions may be

   used to convey the authorization of the subject to use the IP

   addresses and autonomous system identifiers contained in the

   extensions.

Table of Contents

   1.  Introduction . . . . . . . . . . . . . . . . . . . . . . . . .  3

       1.1.  Terminology. . . . . . . . . . . . . . . . . . . . . . .  3

   2.  IP Address Delegation Extension. . . . . . . . . . . . . . . .  5

       2.1.  Context. . . . . . . . . . . . . . . . . . . . . . . . .  5

             2.1.1.  Encoding of an IP Address or Prefix. . . . . . .  5

             2.1.2.  Encoding of a Range of IP Addresses. . . . . . .  7

       2.2.  Specification. . . . . . . . . . . . . . . . . . . . . .  8

             2.2.1.  OID. . . . . . . . . . . . . . . . . . . . . . .  8

             2.2.2.  Criticality. . . . . . . . . . . . . . . . . . .  9

             2.2.3.  Syntax . . . . . . . . . . . . . . . . . . . . .  9

                     2.2.3.1.  Type IPAddrBlocks. . . . . . . . . . .  9

                     2.2.3.2.  Type IPAddressFamily . . . . . . . . .  9

                     2.2.3.3.  Element addressFamily. . . . . . . . . 10

                     2.2.3.4.  Element ipAddressChoice and Type

                               IPAddressChoice. . . . . . . . . . . . 10

Lynn, et al.                Standards Track                     [...