aboutsummaryrefslogtreecommitdiff
path: root/rp/rcynic
diff options
context:
space:
mode:
Diffstat (limited to 'rp/rcynic')
-rwxr-xr-xrp/rcynic/rcynicng3
1 files changed, 2 insertions, 1 deletions
diff --git a/rp/rcynic/rcynicng b/rp/rcynic/rcynicng
index fed75ab2..68b2781b 100755
--- a/rp/rcynic/rcynicng
+++ b/rp/rcynic/rcynicng
@@ -275,8 +275,9 @@ class X509(rpki.POW.X509):
status.add(codes.MALFORMED_SIA_EXTENSION)
if not is_ta and self.count_uris(self.crldp) == 0:
status.add(codes.MALFORMED_CRLDP_EXTENSION)
+ self.checkRPKIConformance(status = status, eku = id_kp_bgpsec_router if is_routercert else None)
try:
- self.verify(trusted = [self] if trusted is None else trusted, crl = crl, status = status,
+ self.verify(trusted = [self] if trusted is None else trusted, crl = crl, policy = "1.3.6.1.5.5.7.14.2",
context_class = X509StoreCTX.subclass(status = status))
except rpki.POW.ValidationError as e:
logger.debug("%r rejected: %s", self, e)
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-10 14:21:12 +0000