aboutsummaryrefslogtreecommitdiff
path: root/myrpki.rototill/examples/myrpki.conf
diff options
context:
space:
mode:
Diffstat (limited to 'myrpki.rototill/examples/myrpki.conf')
-rw-r--r--myrpki.rototill/examples/myrpki.conf61
1 files changed, 29 insertions, 32 deletions
diff --git a/myrpki.rototill/examples/myrpki.conf b/myrpki.rototill/examples/myrpki.conf
index d54889fd..b91c82c1 100644
--- a/myrpki.rototill/examples/myrpki.conf
+++ b/myrpki.rototill/examples/myrpki.conf
@@ -48,11 +48,8 @@ parents_csv = parents.csv
prefix_csv = prefixes.csv
asn_csv = asns.csv
xml_filename = myrpki.xml
-bpki_directory = bpki/myrpki
-#################################################################
-
-[myirbe]
+myrpki_bpki_directory = bpki/myrpki
# Base of service URL for pubd. myirbe.py uses this value to
# configure <repository/> objects in rpkid. If you are running your
@@ -96,7 +93,7 @@ want_rootd = false
# Where to put BPKI stuff for the IRBE operator (entity that operates
# rpkid etc). Don't change this without a reason.
-bpki_directory = bpki/myirbe
+myirbe_bpki_directory = bpki/myirbe
#################################################################
@@ -126,11 +123,11 @@ irdb-url = https://localhost:4403/
# left-right protocol. The following values match where myirbe.py
# will have placed things. Don't change these without a reason.
-bpki-ta = ${myirbe::bpki_directory}/ca.cer
-rpkid-key = ${myirbe::bpki_directory}/rpkid.key
-rpkid-cert = ${myirbe::bpki_directory}/rpkid.cer
-irdb-cert = ${myirbe::bpki_directory}/irdbd.cer
-irbe-cert = ${myirbe::bpki_directory}/irbe.cer
+bpki-ta = ${myrpki::myirbe_bpki_directory}/ca.cer
+rpkid-key = ${myrpki::myirbe_bpki_directory}/rpkid.key
+rpkid-cert = ${myrpki::myirbe_bpki_directory}/rpkid.cer
+irdb-cert = ${myrpki::myirbe_bpki_directory}/irdbd.cer
+irbe-cert = ${myrpki::myirbe_bpki_directory}/irbe.cer
#################################################################
@@ -152,10 +149,10 @@ https-url = https://localhost:4403/
# left-right protocol. The following values match where myirbe.py
# will have placed things. Don't change these without a reason.
-bpki-ta = ${myirbe::bpki_directory}/ca.cer
-rpkid-cert = ${myirbe::bpki_directory}/rpkid.cer
-irdbd-cert = ${myirbe::bpki_directory}/irdbd.cer
-irdbd-key = ${myirbe::bpki_directory}/irdbd.key
+bpki-ta = ${myrpki::myirbe_bpki_directory}/ca.cer
+rpkid-cert = ${myrpki::myirbe_bpki_directory}/rpkid.cer
+irdbd-cert = ${myrpki::myirbe_bpki_directory}/irdbd.cer
+irdbd-key = ${myrpki::myirbe_bpki_directory}/irdbd.key
#################################################################
@@ -189,10 +186,10 @@ server-port = 4402
# left-right protocol. The following values match where myirbe.py
# will have placed things. Don't change these without a reason.
-bpki-ta = ${myirbe::bpki_directory}/ca.cer
-pubd-cert = ${myirbe::bpki_directory}/pubd.cer
-pubd-key = ${myirbe::bpki_directory}/pubd.key
-irbe-cert = ${myirbe::bpki_directory}/irbe.cer
+bpki-ta = ${myrpki::myirbe_bpki_directory}/ca.cer
+pubd-cert = ${myrpki::myirbe_bpki_directory}/pubd.cer
+pubd-key = ${myrpki::myirbe_bpki_directory}/pubd.key
+irbe-cert = ${myrpki::myirbe_bpki_directory}/irbe.cer
#################################################################
@@ -204,10 +201,10 @@ rpkid-url = https://rpkid.example.org:4404/left-right/
# BPKI certificates and keys for talking to rpkid
-rpkid-bpki-ta = ${myirbe::bpki_directory}/ca.cer
-rpkid-irbe-key = ${myirbe::bpki_directory}/irbe.key
-rpkid-irbe-cert = ${myirbe::bpki_directory}/irbe.cer
-rpkid-cert = ${myirbe::bpki_directory}/rpkid.cer
+rpkid-bpki-ta = ${myrpki::myirbe_bpki_directory}/ca.cer
+rpkid-irbe-key = ${myrpki::myirbe_bpki_directory}/irbe.key
+rpkid-irbe-cert = ${myrpki::myirbe_bpki_directory}/irbe.cer
+rpkid-cert = ${myrpki::myirbe_bpki_directory}/rpkid.cer
# HTTPS service URL for pubd
@@ -215,10 +212,10 @@ pubd-url = https://localhost:4402/control/
# BPKI certificates and keys for talking to pubd
-pubd-bpki-ta = ${myirbe::bpki_directory}/ca.cer
-pubd-irbe-key = ${myirbe::bpki_directory}/irbe.key
-pubd-irbe-cert = ${myirbe::bpki_directory}/irbe.cer
-pubd-cert = ${myirbe::bpki_directory}/pubd.cer
+pubd-bpki-ta = ${myrpki::myirbe_bpki_directory}/ca.cer
+pubd-irbe-key = ${myrpki::myirbe_bpki_directory}/irbe.key
+pubd-irbe-cert = ${myrpki::myirbe_bpki_directory}/irbe.cer
+pubd-cert = ${myrpki::myirbe_bpki_directory}/pubd.cer
#################################################################
@@ -235,11 +232,11 @@ pubd-cert = ${myirbe::bpki_directory}/pubd.cer
# BPKI certificates and keys for rootd
-bpki-ta = ${myirbe::bpki_directory}/ca.cer
-rootd-bpki-crl = ${myirbe::bpki_directory}/ca.crl
-rootd-bpki-cert = ${myirbe::bpki_directory}/rootd.cer
-rootd-bpki-key = ${myirbe::bpki_directory}/rootd.key
-child-bpki-cert = ${myirbe::bpki_directory}/child.cer
+bpki-ta = ${myrpki::myirbe_bpki_directory}/ca.cer
+rootd-bpki-crl = ${myrpki::myirbe_bpki_directory}/ca.crl
+rootd-bpki-cert = ${myrpki::myirbe_bpki_directory}/rootd.cer
+rootd-bpki-key = ${myrpki::myirbe_bpki_directory}/rootd.key
+child-bpki-cert = ${myrpki::myirbe_bpki_directory}/child.cer
# Server port on which rootd should listen.
@@ -260,7 +257,7 @@ rpki-root-cert-uri = rsync://rpki.example.org/Me/root.cer
# Private key corresponding to rootd's root RPKI certificate
-rpki-root-key = ${myirbe::bpki_directory}/ca.key
+rpki-root-key = ${myrpki::myirbe_bpki_directory}/ca.key
# Filename (as opposed to rsync URI) of rootd's root RPKI certificate
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-01 12:05:41 +0000