BGP Route Validation with RPKI-RTR Operational Commands
BGP RPKI-RTR Show Commands
The BGP RPKI-RTR show commands provide detailed information about the BGP RPKI-RTR route validation operations.
Prefix Validation
The show validation command displays detailed validation information.
Syntax:
show validation <option>
| Option | Description |
|---|---|
cache-in |
Displays prefix information per cache IP and source IP. |
database |
Displays information related to the validation database. |
session |
Provides details about validation sessions. |
Validation Session
The show validation session command and options provide information about the TCP session information between RBFS and the local caches.
Syntax:
show validation session <option>
| Option | Description |
|---|---|
- |
Without any option, it displays information about all the validation session. |
cache |
Displays validation session information filtered by a specific cache address. |
detail |
Provides detailed information about each validation session. |
instance |
Displays validation session information for a specific instance. |
source |
Displays validation session information filtered by a specific source IP address. |
Example: Validation session
supervisor@rtbrick.net: cfg> show validation session Instance: vrf-blue Cache Source State Up/Down Time IPv4 Rcvd IPv6 Rcvd 192.168.5.50 192.168.5.20 Established 0d:00h:34m:12s 4048744 986282 192:168:5::50 192:168:5::20 Established 0d:00h:34m:12s 4048734 986261
Validation Cache-in
The show validation cache-in command provides cache information.
Syntax:
show validation cache-in <option>
The show command and options provide detailed information about the received validation route records from the local caches.
| Option | Description |
|---|---|
- |
Without any option, it displays information about the prefix validation data for all caches and source IPs. |
afi |
Filters the cache-in validation data based on the address family, such as IPv4 or IPv6. |
cache |
Displays validation information related to a specific cache address. |
instance |
Filters the validation data for a specific instance. |
prefix |
Displays validation information for a specific prefix. |
Example: Information for the specific cache.
supervisor@rtbrick.net: cfg> show validation cache-in instance default cache 10.1.1.2
Instance: default AFI: ipv4
Cache IP: 10.1.1.2 Source IP: 10.1.1.1 Total Prefixes: 443092
Prefix As Num Max Len
1.0.0.0/24 13335 24
3.0.0.0/10 16509 24
3.0.0.0/15 16509 24
5.0.0.0/19 29256 19
20.0.0.0/11 8075 11
23.0.0.0/12 20940 12
23.0.0.0/24 20940 24
24.0.0.0/12 7922 12
24.0.0.0/16 33659 16
27.0.0.0/22 16509 24
31.0.0.0/16 8374 16
<...>
Validation Database
The validation database contains preferred validation route records based the cache preference.
The show validation database provides detailed information about the validation database, which is used for prefix validation.
Syntax:
show validation database <option>
| Option | Description |
|---|---|
- |
Without any option, it displays the information about all validation databases. |
afi |
Filters the validation database based on the address family, such as IPv4 or IPv6. |
as-num |
Displays validation information for a specific Autonomous System (AS). |
cache |
Displays database entries associated with a specific cache address. |
instance |
Displays database information for a specific instance. |
prefix |
Filters the database to show validation details for a specific prefix. |
summary |
Provides a summary of the validation database. |
Example: Validation database information
supervisor@S1-STD-1-1012>bm14-tst.fsn.rtbrick.net: cfg> show validation database Instance: vrf-blue, AFI: ipv4 Prefix As Num Max Len Cache 1.0.0.0/24 13335 24 192:168:5::50 3.0.0.0/10 16509 24 192:168:5::50 3.0.0.0/15 16509 24 192:168:5::50 5.0.0.0/19 29256 19 192:168:5::50 20.0.0.0/11 8075 11 192:168:5::50 23.0.0.0/12 20940 12 192:168:5::50 23.0.0.0/24 20940 24 192:168:5::50
Example: Validation database information for a specific AS number.
supervisor@rtbrick.net: cfg> show validation database as-num 5089 Instance: vrf-blue, AFI: ipv4 Prefix As Num Max Len Cache 80.0.0.0/13 5089 17 192:168:5::50 82.0.0.0/12 5089 12 192:168:5::50 82.0.0.0/13 5089 13 192:168:5::50 82.0.0.0/14 5089 14 192:168:5::50 86.0.0.0/11 5089 11 192:168:5::50 86.0.0.0/13 5089 13 192:168:5::50 86.0.0.0/14 5089 14 192:168:5::50 86.0.0.0/15 5089 15 192:168:5::50 86.0.0.0/16 5089 16 192:168:5::50 86.1.0.0/16 5089 16 192:168:5::50
Example: Validation database summary
supervisor@rtbrick.net: cfg> show validation database summary Instance: vrf-blue IPv4 Prefix: 452282 IPv6 Prefix: 113149
Clear Commands
Clear Validation Session
The clear validation session command and options are used to remove or reset data related to validation session.
Syntax:
clear validation session <option>
| Option | Description |
|---|---|
all |
Resets all existing validation sessions (without clearing the database). |
all soft |
Refreshes the only the validation database by sending a reset query to the cache. |
instance |
Resets validation sessions per instance. |
Example Commands:
clear validation session all clear validation session all soft clear validation session instance vrf-blue clear validation session instance vrf-blue 192.168.5.50 source 192.168.5.20 soft
Clear Validation Database
The clear validation database command is used to remove entries in the validation database.
Syntax:
clear validation database <option>
| Option | Description |
|---|---|
all |
Clears all entries in the validation database. |
instance |
Clears validation database for a specific instance. |
Example Commands:
clear validation database all clear validation database instance vrf-blue clear validation database instance vrf-blue 192.168.5.50 source 192.168.5.20