show validation database
Syntax
show validation database <name database-name> <brief | detail> <instance instance-name> <logical-system logical-system-name> <mismatch> <origin-autonomous-system as-number> <record ip-prefix> <session ip-address>
Description
Display information about the route validation database when resource public key infrastructure (RPKI) BGP route validation is configured. You can query all route validation records that match a given prefix or origin-autonomous-system. In addition, you can filter the output by a specific RPKI cache session.
Options
| none |
Display all route validation database entries. |
| name database-name |
(Optional) Display the records of the specified database in that routing-instance or logical-system. If unspecified, the records of all databases are displayed. |
| brief | detail |
(Optional) Display the specified level of output. |
| instance instance-name |
(Optional) Display information about route validation database entries for the specified routing instance. The instance name can be primary for the main instance, or any valid configured instance name or its prefix. |
| logical-system logical-system-name |
(Optional) Perform this operation on a particular logical system. |
| mismatch |
(Optional) Filter the output by mismatched origin autonomous systems. |
| origin-autonomous-system as-number |
(Optional) Filter the output by mismatched origin autonomous systems. The
|
| record ip-prefix |
(Optional) Filter the output by route validation records that match a given prefix. |
| session ip-address |
(Optional) Filter the output by a specific RPKI cache session. |
Required Privilege Level
view
Output Fields
Table 1 describes the output fields for the show validation
database command. Output fields are listed in the approximate
order in which they appear.
Field Name |
Field Description |
Level of Output |
|---|---|---|
Prefix |
Route validation (RV) record prefix. RV records are received from the cache server and can also be
configured statically at the |
All levels |
Origin-AS |
Legitimate originator autonomous system (AS). |
All levels |
Session |
IP address of the RPKI cache server. |
All levels |
State |
State of the route validation records.
The state can be |
All levels |
Mismatch |
Conflicting origin-autonomous-system information between RPKI caches when nonstop active routing (NSR) is configured. |
All levels |
IPv4 records |
Number of IPv4 route validation records. |
All levels |
IPv6 records |
Number of IPv6 route validation records. |
All levels |
Sample Output
show validation database
user@host> show validation database RV database: default Prefix Origin-AS Session State Mismatch 172.16.1.0/24-32 1 10.0.77.1 valid 172.16.2.0/24-32 2 10.0.77.1 valid 172.16.3.0/24-32 3 10.0.77.1 valid 172.16.4.0/24-32 4 10.0.77.1 valid IPv4 records: 4 IPv6 records: 0 RV database: foo Prefix Origin-AS Session State Mismatch 172.16.5.0/24-32 5 10.0.77.1 valid 172.16.6.0/24-32 6 10.0.77.1 valid 172.16.7.0/24-32 7 10.0.77.1 valid 172.16.8.0/24-32 8 10.0.77.1 valid 72.9.224.0/19-24 26234 192.168.1.100 valid * 72.9.224.0/19-24 3320 192.168.1.200 invalid * 10.0.0.0/8-32 0 internal valid IPv4 records: 7 IPv6 records: 0 RV database: vrf1.red Prefix Origin-AS Session State Mismatch 172.16.5.0/24-32 5 10.0.77.1 valid 172.16.6.0/24-32 6 10.0.77.1 valid 172.16.7.0/24-32 7 10.0.77.1 valid 172.16.8.0/24-32 8 10.0.77.1 valid 72.9.224.0/19-24 26234 192.168.1.100 valid * 72.9.224.0/19-24 3320 192.168.1.200 invalid * 10.0.0.0/8-32 0 internal valid IPv4 records: 7 IPv6 records: 0
Release Information
Command introduced in Junos OS Release 12.2.