<div dir="ltr">ThanksĀ Ondrej.<div><br></div><div>I'm not fully understanding your first point. When doing a show route, I do indeed see only [?] forĀ <a href="http://185.186.206.0/24">185.186.206.0/24</a> - But is this view 'correct' ? Basically I'm trying to collect a list of ASNs originating invalids but if any of them have as-sets in them there is no easy way to check. I'd have to first find all invalids, then any invalid without an ASN do a second 'all' lookup to see which ASN was actually advertising that prefix.</div><div><br></div><div>As for the check, I wasn't aware that "roa_check(roa_v4)" alone would work but it looks good so I'll switch to that. Thanks!</div><div><br></div><div>D</div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, 15 Feb 2021 at 19:36, Ondrej Zajicek <<a href="mailto:santiago@crfreenet.org">santiago@crfreenet.org</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">On Mon, Feb 15, 2021 at 06:51:18PM -0500, Darren O'Connor wrote:<br>
> When checking ROAs, and the source ASN happens to have an AS-SET, bird does<br>
> not output the ASN itself.<br>
<br>
The output does not depend on filter expression (that is just used to<br>
specify which routes to print, unless the filter explicitly modifies<br>
routes). The output is (and is supposed to be) the same as the output<br>
of 'show route' (for given table and network).<br>
<br>
Also note that using roa_check(.., bgp_path.last_nonaggregated) is<br>
discouraged, proper RPKI check as defined ny appropriate RFCs is<br>
done with roa_check(roa_v4, net, bgp_path.last), or just<br>
roa_check(roa_v4).<br>
<br>
-- <br>
Elen sila lumenn' omentielvo<br>
<br>
Ondrej 'Santiago' Zajicek (email: <a href="mailto:santiago@crfreenet.org" target="_blank">santiago@crfreenet.org</a>)<br>
OpenPGP encrypted e-mails preferred (KeyID 0x11DEADC3, <a href="http://wwwkeys.pgp.net" rel="noreferrer" target="_blank">wwwkeys.pgp.net</a>)<br>
"To err is human -- to blame it on a computer is even more so."<br>
</blockquote></div>