What are the authorisation rules for route object creation?
There are three phases of authentication checks when creating a route object:
- a check with the relevant aut-num object,
- a check with the "IP address space"
- a check with the "mnt-by:" attribute of the route object itself.
All of these three phases must be passed individually. If any of them fails, the route object creation is rejected.