idnits 2.17.1 

draft-ietf-crisp-iris-areg-15.txt:

  Checking boilerplate required by RFC 5378 and the IETF Trust (see
  https://trustee.ietf.org/license-info):
  ----------------------------------------------------------------------------

  ** It looks like you're using RFC 3978 boilerplate.  You should update this
     to the boilerplate described in the IETF Trust License Policy document
     (see https://trustee.ietf.org/license-info), which is required now.

  -- Found old boilerplate from RFC 3978, Section 5.1 on line 19.

  -- Found old boilerplate from RFC 3978, Section 5.5 on line 2149.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 1 on line 2126.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 2 on line 2133.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 3 on line 2139.

  ** This document has an original RFC 3978 Section 5.4 Copyright Line,
     instead of the newer IETF Trust Copyright according to RFC 4748.

  ** This document has an original RFC 3978 Section 5.5 Disclaimer, instead
     of the newer disclaimer which includes the IETF Trust according to RFC
     4748.


  Checking nits according to https://www.ietf.org/id-info/1id-guidelines.txt:
  ----------------------------------------------------------------------------

  == No 'Intended status' indicated for this document; assuming Proposed
     Standard


  Checking nits according to https://www.ietf.org/id-info/checklist :
  ----------------------------------------------------------------------------

  == There are 5 instances of lines with non-RFC2606-compliant FQDNs in the
     document.

  -- The document has examples using IPv4 documentation addresses according
     to RFC6890, but does not use any IPv6 documentation addresses.  Maybe
     there should be IPv6 examples, too?


  Miscellaneous warnings:
  ----------------------------------------------------------------------------

  == The copyright year in the RFC 3978 Section 5.4 Copyright Line does not
     match the current year

  -- The document seems to lack a disclaimer for pre-RFC5378 work, but may
     have content which was first submitted before 10 November 2008.  If you
     have contacted all the original authors and they are all willing to grant
     the BCP78 rights to the IETF Trust, then this is fine, and you can ignore
     this comment.  If not, you may need to add the pre-RFC5378 disclaimer. 
     (See the Legal Provisions document at
     https://trustee.ietf.org/license-info for more information.)

  -- The document date (May 25, 2006) is 6545 days in the past.  Is this
     intentional?


  Checking references for intended status: Proposed Standard
  ----------------------------------------------------------------------------

     (See RFCs 3967 and 4897 for information about using normative references
     to lower-maturity documents in RFCs)

  == Unused Reference: '10' is defined on line 1528, but no explicit
     reference was found in the text

  == Unused Reference: '11' is defined on line 1531, but no explicit
     reference was found in the text

  ** Downref: Normative reference to an Informational RFC: RFC 3707 (ref. '4')

  -- Obsolete informational reference (is this intentional?): RFC 1700 (ref.
     '10') (Obsoleted by RFC 3232)

  -- Obsolete informational reference (is this intentional?): RFC 2434 (ref.
     '11') (Obsoleted by RFC 5226)


     Summary: 4 errors (**), 0 flaws (~~), 5 warnings (==), 10 comments (--).

     Run idnits with the --verbose option for more detailed information about
     the items above.

--------------------------------------------------------------------------------


2	Network Working Group                                          E. Gunduz
3	Internet-Draft                                                  RIPE NCC
4	Expires: November 26, 2006                                     A. Newton
5	                                                          VeriSign, Inc.
6	                                                                 S. Kerr
7	                                                                RIPE NCC
8	                                                            May 25, 2006

10	    IRIS - An Address Registry (areg) Type for the Internet Registry
11	                          Information Service
12	                     draft-ietf-crisp-iris-areg-15

14	Status of this Memo

16	   By submitting this Internet-Draft, each author represents that any
17	   applicable patent or other IPR claims of which he or she is aware
18	   have been or will be disclosed, and any of which he or she becomes
19	   aware will be disclosed, in accordance with Section 6 of BCP 79.

21	   Internet-Drafts are working documents of the Internet Engineering
22	   Task Force (IETF), its areas, and its working groups.  Note that
23	   other groups may also distribute working documents as Internet-
24	   Drafts.

26	   Internet-Drafts are draft documents valid for a maximum of six months
27	   and may be updated, replaced, or obsoleted by other documents at any
28	   time.  It is inappropriate to use Internet-Drafts as reference
29	   material or to cite them other than as "work in progress."

31	   The list of current Internet-Drafts can be accessed at
32	   http://www.ietf.org/ietf/1id-abstracts.txt.

34	   The list of Internet-Draft Shadow Directories can be accessed at
35	   http://www.ietf.org/shadow.html.

37	   This Internet-Draft will expire on November 26, 2006.

39	Copyright Notice

41	   Copyright (C) The Internet Society (2006).

43	Abstract

45	   This document describes an IRIS registry schema for IP address and
46	   Autonomous System Number information.  The schema extends the
47	   necessary query and result operations of IRIS to provide the
48	   functional information service needs for syntaxes and results used by
49	   Internet Protocol address registries.

51	Table of Contents

53	   1.  Introduction . . . . . . . . . . . . . . . . . . . . . . . . .  4
54	   2.  Document Terminology . . . . . . . . . . . . . . . . . . . . .  5
55	   3.  Schema Description . . . . . . . . . . . . . . . . . . . . . .  6
56	     3.1.  Query Derivatives  . . . . . . . . . . . . . . . . . . . .  6
57	       3.1.1.  <findContacts> Query . . . . . . . . . . . . . . . . .  6
58	       3.1.2.  <findOrganizations>  . . . . . . . . . . . . . . . . .  6
59	       3.1.3.  <findAutonomousSystemsByName> and
60	               <findNetworksByName> . . . . . . . . . . . . . . . . .  7
61	       3.1.4.  <findNetworksByAddress>  . . . . . . . . . . . . . . .  7
62	       3.1.5.  <findNetworksByHandle> . . . . . . . . . . . . . . . .  8
63	       3.1.6.  <findASByNumber> . . . . . . . . . . . . . . . . . . .  8
64	       3.1.7.  <findByContact>  . . . . . . . . . . . . . . . . . . .  9
65	       3.1.8.  <findNetworksByNameServer> . . . . . . . . . . . . . .  9
66	       3.1.9.  Contact Search Group . . . . . . . . . . . . . . . . . 10
67	       3.1.10. Common Search Group  . . . . . . . . . . . . . . . . . 10
68	       3.1.11. Match Parameters . . . . . . . . . . . . . . . . . . . 10
69	     3.2.  Result Derivatives . . . . . . . . . . . . . . . . . . . . 11
70	       3.2.1.  <ipv4Network> and <ipv6Network> Results  . . . . . . . 11
71	       3.2.2.  <autonomousSystem> Result  . . . . . . . . . . . . . . 12
72	       3.2.3.  <contact> Result . . . . . . . . . . . . . . . . . . . 13
73	       3.2.4.  <organization> Result  . . . . . . . . . . . . . . . . 13
74	       3.2.5.  Contact References . . . . . . . . . . . . . . . . . . 14
75	       3.2.6.  Common Result Child Elements . . . . . . . . . . . . . 15
76	     3.3.  Support for <iris:lookupEntity>  . . . . . . . . . . . . . 15
77	   4.  Terminology for Nesting of Networks  . . . . . . . . . . . . . 16
78	   5.  Formal XML Syntax  . . . . . . . . . . . . . . . . . . . . . . 20
79	   6.  BEEP Transport Compliance  . . . . . . . . . . . . . . . . . . 33
80	     6.1.  Message Pattern  . . . . . . . . . . . . . . . . . . . . . 33
81	     6.2.  Server Authentication  . . . . . . . . . . . . . . . . . . 33
82	   7.  URI Resolution . . . . . . . . . . . . . . . . . . . . . . . . 34
83	     7.1.  Application Service Label  . . . . . . . . . . . . . . . . 34
84	     7.2.  Operational Considerations . . . . . . . . . . . . . . . . 34
85	     7.3.  Top-Down Resolution  . . . . . . . . . . . . . . . . . . . 34
86	   8.  Internationalization Considerations  . . . . . . . . . . . . . 35
87	   9.  IANA Considerations  . . . . . . . . . . . . . . . . . . . . . 36
88	   10. Security Considerations  . . . . . . . . . . . . . . . . . . . 37
89	   11. References . . . . . . . . . . . . . . . . . . . . . . . . . . 38
90	     11.1. Normative References . . . . . . . . . . . . . . . . . . . 38
91	     11.2. Informative References . . . . . . . . . . . . . . . . . . 38
92	   Appendix A.  Privacy Considerations  . . . . . . . . . . . . . . . 39
93	   Appendix B.  Example Requests and Responses  . . . . . . . . . . . 40
94	     B.1.  Example 1  . . . . . . . . . . . . . . . . . . . . . . . . 40
95	     B.2.  Example 2  . . . . . . . . . . . . . . . . . . . . . . . . 41

97	   Appendix C.  Specificity Examples  . . . . . . . . . . . . . . . . 45
98	   Appendix D.  Contributors  . . . . . . . . . . . . . . . . . . . . 57
99	   Appendix E.  Acknowledgements  . . . . . . . . . . . . . . . . . . 58
100	   Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 59
101	   Intellectual Property and Copyright Statements . . . . . . . . . . 60

103	1.  Introduction

105	   An Internet address registry stores information about:

107	   o  address ranges

109	   o  autonomous system number ranges

111	   o  associated contacts and organizations

113	   o  name servers

115	   This information is inter-related, and Internet address registries
116	   store this information and the information's inter-relationships in a
117	   manner befitting the needs of each Internet address registry and the
118	   registry's constituents.  This document specifies a methods for
119	   accessing and retrieving this information in a common XML format.

121	   This document describes an IRIS namespace for Internet address
122	   registries using an XML Schema [9] derived from and using the IRIS
123	   [2] schema.  This schema and registry type are provided to
124	   demonstrate the extensibility of the IRIS framework beyond the use of
125	   domains, a criteria defined in CRISP [4].

127	   The schema given is this document is specified using the Extensible
128	   Markup Language (XML) 1.0 as described in XML [6], XML Schema
129	   notation as described in XML_SD [8] and XML_SS [9], and XML
130	   Namespaces as described in XML_NS [7].

132	   Examples of client/server XML exchanges with this registry type are
133	   available in Appendix B.

135	2.  Document Terminology

137	   The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
138	   "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this
139	   document are to be interpreted as described in RFC2119 [1].

141	3.  Schema Description

143	   IRIS requires the derivation of both query and result elements by a
144	   registry schema.  These descriptions follow.

146	   The descriptions contained within this section refer to XML elements
147	   and attributes and their relation to the exchange of data within the
148	   protocol.  These descriptions also contain specifications outside the
149	   scope of the formal XML syntax.  Therefore, this section will use
150	   terms defined by RFC 2119 [1] to describe the specification outside
151	   the scope of the formal XML syntax.  While reading this section,
152	   please reference Section 5 for needed details on the formal XML
153	   syntax.

155	3.1.  Query Derivatives

157	3.1.1.  <findContacts> Query

159	   <findContacts> searches for contacts given search constraints.

161	   The allowable search fields are handled by one of the elements in the
162	   "contactSearchGroup" (see Section 3.1.9) or the element
163	   <organizationId>.  The <organizationId> element constrains the query
164	   based on the organization ID (handle) associated with contacts.  This
165	   element is an "exactMatchParameter" (see Section 3.1.11).

167	   This query also provides optional <language> elements containing
168	   language tags.  Clients MAY use these elements to give a hint about
169	   the natural language(s) of the affected element.  Servers MAY use
170	   this information in processing the query, such as tailoring
171	   normalization routines to aid in more effective searches.

173	   The client SHOULD pass the names unchanged to the server, and the
174	   implementation of the server decides if the search is case sensitive
175	   or not.

177	3.1.2.  <findOrganizations>

179	   <findOrganizations> searches for organizations given search
180	   constraints.

182	   The allowable search fields are handled by one of the elements in the
183	   "commonSearchGroup" (see Section 3.1.10) or the element
184	   <organizationName>.  This element is an
185	   "exactOrPartialMatchParameter" (see Section 3.1.11).

187	   This query also provides optional <language> elements containing
188	   language tags.  Clients MAY use these elements to give a hint about
189	   the natural language(s) of the affected element.  Servers MAY use
190	   this information in processing the query, such as tailoring
191	   normalization routines to aid in more effective searches.

193	   The client SHOULD pass the names unchanged to the server, and the
194	   implementation of the server decides if the search is case sensitive
195	   or not.

197	3.1.3.  <findAutonomousSystemsByName> and <findNetworksByName>

199	   The <findAutonomousSystemsByName> and <findNetworksByName> elements
200	   allow searches by name of autonomous systems, and networks,
201	   respectively.  Both have the same format.

203	   The child element <name> is an "exactOrPartialMatchParameter" (see
204	   Section 3.1.11).

206	   This query also provides optional <language> elements containing
207	   language tags.  Clients MAY use these elements to give a hint about
208	   the natural language(s) of the affected element.  Servers MAY use
209	   this information in processing the query, such as tailoring
210	   normalization routines to aid in more effective searches.

212	   The client SHOULD pass the names unchanged to the server, and the
213	   implementation of the server decides if the search is case sensitive
214	   or not.

216	3.1.4.  <findNetworksByAddress>

218	   The <findNetworksByAddress> element is a query for a network given a
219	   related IP address or IP address range.  It has the following child
220	   elements:

222	   o  <ipv4Address> - has a child <start> element containing the
223	      starting IPv4 address of the network and an optional child of
224	      <end> containing the ending IPv4 address of the network.  Clients
225	      MUST convert any short-form notation ot the fully-qualified
226	      notation.

228	   o  <ipv6Address> - same as <ipv4Address> but the child addresses
229	      contain IPv6 addresses.  Clients MUST convert any short-form
230	      notation to the fully-qualified notation.

232	   o  <specificity> - determines the network specificity for the search
233	      (see Section 4).  Valid values are "exact-match", "all-less-
234	      specific", "one-level-less-specific", "all-more-specific", and
235	      "one-level-more-specific".  This element may have the optional
236	      attribute 'allowEquivalences'.  When set to "true", the result set
237	      should include networks with equivalent starting and ending
238	      addresses.  The default value for 'allowEquivalences' is "false".

240	   The results from this query MUST be either the <ipv4Network> result
241	   or the <ipv6Network> result.  More than one network result MAY be
242	   returned.

244	3.1.5.  <findNetworksByHandle>

246	   The <findNetworksByHandle> element is a query for a network given a
247	   the handle of a related network.  It has the following child
248	   elements:

250	   o  <networkHandle> - Specifies the network handle.

252	   o  <specificity> - determines the network specificity for the search
253	      (see Section 4).  Valid values are "all-less-specifics", "one-
254	      level-less-specifics", "all-more-specifics", and "one-level-more-
255	      specifics".

257	   The results from this query MUST be either the <ipv4Network> result
258	   or the <ipv6Network> result.  More than one network result MAY be
259	   returned.

261	   This query could be used to discover the parentage relationships
262	   between networks that have the same starting and ending addresses.

264	   The client SHOULD pass handles unchanged to the server, and the
265	   implementation of the server decides if the search is case sensitive
266	   or not.

268	3.1.6.  <findASByNumber>

270	   The <findASByNumber> element allows a search for autonomous systems
271	   given an autonomous system number (ASN) range.  It has the following
272	   child elements:

274	   o  <asNumberStart> - Specifies the start of the ASN range.

276	   o  <asNumberEnd> - Specifies the end of the ASN range.

278	   o  <specificity> - determines the range specificity for the search
279	      (see Section 4).  Valid values are "exact-match", "all-less-
280	      specific", "one-level-less-specific", "all-more-specific" and
281	      "one-level-more-specific".  This element may have the optional
282	      attribute 'allowEquivalences'.  When set to "true", the result set
283	      should include ranges with equivalent starting and ending numbers.
284	      The default value for 'allowEquivalences' is "false".

286	   The results from this query MUST be <autonomousSystem> result.  More
287	   than one result MAY be returned.

289	3.1.7.  <findByContact>

291	   The <findByContact> element allows a search for autonomous systems,
292	   IP networks and organizations on fields associated with that entity's
293	   contact.  The optional search element <returnedResultType> MUST
294	   restrict the results to autonomous systems, IPv4 networks, IPv6
295	   networks, or organizations using the values 'returnASs',
296	   'returnIPv4Networks', 'returnIPv6Networks', and
297	   'returnOrganizations', respectively.

299	   The allowable search fields are handled with either the
300	   <contactHandle> element or one of the elements in the
301	   "contactSearchGroup" (see Section 3.1.9).  The <contactHandle>
302	   element allows for the entities to be selected based on the contact
303	   having the specified contact handle, and is an "exactMatchParameter"
304	   type (see Section 3.1.11).  The client SHOULD pass these search
305	   fields unchanged to the server, and the implementation of the server
306	   decides if the search is case sensitive or not.

308	   The query MAY also be constrained further using the optional <role>
309	   element.  The contents of this element signify the role the contact
310	   has with the entity.  The allowable values for this element are
311	   "adminContact", "nocContact", "techContact", "abuseContact", and
312	   "otherContact".

314	   This query also provides optional <language> elements containing
315	   language tags.  Clients MAY use these elements to give a hint about
316	   the natural language(s) of the affected element.  Servers MAY use
317	   this information in processing the query, such as tailoring
318	   normalization routines to aid in more effective searches.

320	   The results from this query MUST be the <ipv4Network> results, the
321	   <ipv6Network> results, the <autonomousSystem> or <organization>
322	   results.  More than one result MAY be returned and the results MAY be
323	   of mixed types.

325	3.1.8.  <findNetworksByNameServer>

327	   The <findNetworksByNameServer> element allows a search for IP
328	   networks based on their associated name servers.  The <nameServer>
329	   element contains the fully qualified domain name of the name server.
330	   The optional search element <returnedResultType> MUST restrict the
331	   results to IPv4 networks or IPv6 networks using the values
332	   'returnIPv4Networks' and 'returnIPv6Networks', respectively.

334	   The results from this query MUST be the <ipv4Network> or the
335	   <ipv6Network> results.  More than one result MAY be returned and the
336	   results MAY be of mixed types.

338	3.1.9.  Contact Search Group

340	   Some of the queries above have similar query constraints for
341	   searching on contacts.  This section describes those common
342	   parameters.

344	   <commonName> allows the query to be constrained based on the common
345	   name of the contact.  This constraint is an
346	   "exactOrPartialMatchParameter" (see Section 3.1.11).

348	   This group also contains all the members of the "commonSearchGroup"
349	   (see Section 3.1.10).

351	3.1.10.  Common Search Group

353	   Some of the queries above have similar query constraints for
354	   searching on contacts.  This section describes those common
355	   parameters.

357	   <eMail> constrains the query based on the e-mail address of the
358	   contact.  This constraint is a "domainResource" type (see
359	   Section 3.1.11).

361	   The <city>, <region>, <country> and <postalCode> elements restrict
362	   the scope of the query based on the city, region, country, or postal
363	   code of the contact, respectively.  These constraints are all
364	   "exactMatchParameter" types (see Section 3.1.11).  The contents of
365	   <country> MUST be compliant with ISO 3166 [12] two-character country
366	   codes.

368	3.1.11.  Match Parameters

370	   Some of the queries above have constraints that match strings using
371	   matching parameters.  This section describes those matching
372	   parameters.

374	   Elements of type "exactMatchParameter" will have one child element of
375	   <exactMatch>.  The contents of this child element are to match
376	   exactly in the use of the constraint.

378	   Elements of type "partialMatchParameter" will have either a
379	   <beginsWith> child element with an optional <endsWith> child element
380	   or an <endsWith> child element.  The content of the <beginsWith>
381	   element specifies the beginning character sequence for the
382	   constraint.  The content of the <endsWith> element specifies the
383	   ending character sequence for the constraint.

385	   Elements of type "exactOrPartialMatchParameter" can have either the
386	   child element allowed with the "exactMatchParameter" type or the
387	   child elements allowed with the "partialMatchParameter" type.

389	   Elements of type "domainResource" can have either the child element
390	   allowed with the "exactMatchParameter" type or a child element of
391	   <inDomain>.  This parameter type is meant to match email, SIP, XMPP,
392	   and other types of "user@domain" addresses.  When this parameter is
393	   specified with the <exactMatch> child element, the constraint is
394	   based on the whole email address.  When this parameter is specified
395	   with the <inDomain> child element, the constraint is based on any
396	   email address within the domain given.  The <inDomain> MUST only
397	   contain a valid domain name (i.e. no '@' symbol), and the matching
398	   SHOULD take place only on the domain given (i.e. no partial matches
399	   with respect to substrings or parent domains).

401	3.2.  Result Derivatives

403	3.2.1.  <ipv4Network> and <ipv6Network> Results

405	   The <ipv4Network> and <ipv6Network> share a common definition of
406	   'ipNetworkType'.  It has the following child elements:

408	   o  <networkHandle> contains the registry unique assigned handle for
409	      this network.

411	   o  <name> contains a human friendly name for the network.

413	   o  <startAddress> contains the first IP address of the network.

415	   o  <endAddress> contains the last IP address of the network.

417	   o  <networkType> contains a string denoting the type of network.

419	   o  <networkTypeInfo> is an entity reference to a definition of the
420	      values explained in a plain natural language.  The referent MUST
421	      be a <simpleEntity> as defined by [2].

423	   o  <nameServer> contains the domain name of a nameserver responsible
424	      for reverse-DNS mapping for this network.

426	   o  <organization> contains an entity reference to the organization
427	      assigned this network.  The referent MUST be an <organization>
428	      (Section 3.2.4) result.

430	   o  One of:

432	      *  <parent> contains an entity reference to the parent network of
433	         this network.  The referent MUST be an <ipv4Network>
434	         (Section 3.2.1) result if this reference is a child of
435	         <ipv4Network>.  The referent MUST be an <ipv6Network>
436	         (Section 3.2.1) result if this reference is a child of
437	         <ipv6Network>.

439	      *  <noParent> signifies that this network has not parent network.

441	   o  Contact references (see Section 3.2.5).

443	   o  Common child elements (see Section 3.2.6).

445	3.2.2.  <autonomousSystem> Result

447	   The <autonomousSystem> element represents an assigned or allocated
448	   autonomous system number range.  It has the following children:

450	   o  <asHandle> contains a registry unique assigned handle for this
451	      autonomous system number range.

453	   o  <asNumberStart> contains an integer indicating the starting number
454	      for the autonomous system number range.

456	   o  <asNumberEnd> contains an integer indicating the ending number for
457	      the autonomous system number range.

459	   o  <name> contains a human readable name for this autonomous system.

461	   o  <organization> contains an entity reference to the organization
462	      assigned or allocated this autonomous system number range.  The
463	      referent MUST be an <organization> (Section 3.2.4) result.

465	   o  One of:

467	      *  <parent> contains an entity reference to the parent autonomous
468	         system of this autonomous system.  The referent MUST be an
469	         <autonomousSystem> (Section 3.2.2) result.

471	      *  <noParent> signifies that this autonomous system as no parent
472	         autonomous system.

474	   o  Contact references (see Section 3.2.5).

476	   o  Common child elements (see Section 3.2.6).

478	3.2.3.  <contact> Result

480	   The <contact> element represents the registration of a point of
481	   contact.  It has the following child elements:

483	   o  <contactHandle> contains the registry unique assigned handle for
484	      this contact.

486	   o  <commonName> specifies the name of the contact.

488	   o  <eMail> contains the email address for this contact.

490	   o  <sip> contains the sip address for this contact.

492	   o  <organization> contains an entity reference to the organization
493	      associated with this contact.  The referent MUST be an
494	      <organization> (Section 3.2.4) result.

496	   o  <postalAddress> contains a information for reaching the contact
497	      via postal mail.  It is composed of the following child elements:

499	      *  <address> contains the address for this contact.

501	      *  <city> contains the city where this contact is located.

503	      *  <region> contains the national region where this contact is
504	         located.

506	      *  <postalCode> contains the postal code where this contact is
507	         located.

509	      *  <country> contains the country code where this contact is
510	         located.  This MUST be compliant with ISO 3166 [12] two-
511	         character country codes.

513	   o  <phone> contains child elements describing the phone number of the
514	      contact.  The child elements are <number>, <extension>, and
515	      <type>.

517	   o  Common child elements (see Section 3.2.6).

519	3.2.4.  <organization> Result

521	   The <organization> element represents an organization.  It has the
522	   following child elements:

524	   o  <name> contains the name of the organization.

526	   o  <id> contains a registry unique identifier for this organization.

528	   o  <eMail> contains the email address for this organization.

530	   o  <postalAddress> contains a information for reaching the
531	      organization via postal mail.  It is composed of the following
532	      child elements:

534	      *  <address> contains the address for this organization.

536	      *  <city> contains the city where this organization is located.

538	      *  <region> contains the national region where this organization
539	         is located.

541	      *  <postalCode> contains the postal code where this organization
542	         is located.

544	      *  <country> contains the country code where this organization is
545	         located.  This MUST be compliant with ISO 3166 [12] two-
546	         character country codes.

548	   o  <phone> contains child elements describing the phone number of the
549	      contact.  The child elements are <number>, <extension>, and
550	      <type>.

552	   o  Contact references (see Section 3.2.5).

554	   o  Common child elements (see Section 3.2.6).

556	3.2.5.  Contact References

558	   The registry schema defined in Section 5 normalizes out a group of
559	   elements used to reference contacts.  This group is used by many of
560	   the result types for this registry.  The group has the following
561	   elements, each of which may appear as many times as needed.  The
562	   referent of each MUST be <contact> (Section 3.2.3) results.

564	   o  <adminContact>

566	   o  <techContact>

568	   o  <nocContact>

570	   o  <abuseContact>

572	   o  <otherContact>

574	3.2.6.  Common Result Child Elements

576	   The registry schema defined in Section 5 normalizes out a group of
577	   common elements used most of the result types.  The group has the
578	   following elements:

580	   o  <numberResourceRegistry> contains an entity reference to the
581	      number resource registry of record.  The referent MUST be an
582	      <organization> (Section 3.2.4) result.

584	   o  <registrationDate> contains the date of first registration.

586	   o  <lastUpdatedDate> contains the date when the registration was last
587	      updated.

589	   o  The <iris:seeAlso> element contains an entity reference specifying
590	      an entity that is indirectly associated with this result object.
591	      This element can be used for comments and remarks.

593	3.3.  Support for <iris:lookupEntity>

595	   The following types of entity classes are recognized by the
596	   <lookupEntity> query of IRIS for this registry:

598	   o  ipv4-handle - a registry unique identifier specifying an IPv4
599	      network.  Queries with these names will yield a <ipv4Network>
600	      result.

602	   o  ipv6-handle - a registry unique identifier specifying an IPv6
603	      network.  Queries with these names will yield a <ipv6Network>
604	      result.

606	   o  as-handle - a registry unique identifier specifying an autonomous
607	      system.  It yields a result of <autonomousSystem>.

609	   o  contact-handle - a registry unique identifier of a contact.
610	      Yields a result of <contact>.

612	   o  organization-id - a registry unique identifier of an organization.
613	      Yields a result of <organization>.

615	   o  The entity names of these entity classes are case insensitive.

617	4.  Terminology for Nesting of Networks

619	   The following terms are defined for describing the nesting of IP
620	   networks.

622	   o  More specific: Given two networks, A and B, A is more specific
623	      than B if network B includes all space of network A, and if
624	      network B is larger than network A.

626	   o  Less specific: Opposite of more specific.  The network B is less
627	      specific than network A if network A's space is completely
628	      included in network B and if network A is smaller than network B.

630	   o  Most specific: Given a set of networks, the network or networks
631	      that are more specific than zero or more specific of the other
632	      networks in the set, and that are not less specific of any of the
633	      networks in the set.

635	   o  Least specific: Given a set of networks, the network or networks
636	      that are not more specific to any of the other networks in the
637	      set.

639	   Examples:

641	   +-------------------------------------------------------+
642	   |                                                       |
643	   | Given the networks A, B, C and D as follows:          |
644	   |                                                       |
645	   |    A    |---------------------------------|           |
646	   |    B                    |-----------------|           |
647	   |    C                       |---------|                |
648	   |    D      |-------|                                   |
649	   |                                                       |
650	   |                                                       |
651	   | The network A is less specific than B, C and D.       |
652	   | The network B is more specific than A.                |
653	   | Among these four networks, A is the least specific,   |
654	   |   and C and D are the most specific networks.         |
655	   |                                                       |
656	   +-------------------------------------------------------+

658	   Figure 1: Nesting Example 1
659	   +-------------------------------------------------------+
660	   |                                                       |
661	   | Given the networks E, F and G:                        |
662	   |                                                       |
663	   |    E   |----------|                                   |
664	   |    F                |--------------|                  |
665	   |    G     |---|                                        |
666	   |                                                       |
667	   | The networks E and F are least specific networks.     |
668	   | The networks F and G are most specific networks.      |
669	   |                                                       |
670	   +-------------------------------------------------------+

672	   Figure 2: Nesting Example 2

674	   The following definitions assume that there are no overlapping
675	   networks in the database.  A network overlaps with another one when
676	   they encompass each other's space partially.  Examples:

678	     A   |---------------------|
679	     B       |----------------------------|

681	   Figure 3: Nesting Example 3

683	   Here, the networks A and B are overlapping networks because network A
684	   encompasses network B's space partially and network B encompasses
685	   network A's space partially.

687	     C   |------------------|
688	     D   |---------|

690	   Figure 4: Nesting Example 4

692	   Here, the networks C and D are NOT overlapping networks, because even
693	   if network D encompasses a part of network C's space, network C does
694	   not encompass network D's space partially (it encompasses network D
695	   completely).

697	   The address directory can contain more than one network with the same
698	   range.  They are said to be exact match networks.

700	   Parent/child relationship in the internet address directory is
701	   unidirectional.  That is, there might also be parent/child
702	   relationship with exact match networks, but a network cannot be a
703	   parent and a child of its exact match network at the same time.

705	   Nested matching searches:

707	   [1] all less specifics search: Given a range, find all the networks
708	   that contain that range (ie, all less specifics and exact matches).
709	   These networks are the networks that fulfill the following condition:

711	   (start(network) <= start(search)) AND (end(network) >= end(search))

713	   [2] one-level less specifics search: Given a range, find only the
714	   most specific network that contains that range (could be multiple
715	   networks, but usually single); This is the set of networks from [1],
716	   with the provision that: no network in the return set is contained by
717	   any other network in the set.  If there are exact match networks in
718	   the set from [1], they both must appear in the result set.  The
719	   result set may contain a network that is exact match to the query
720	   range, if the search allows exact matches.

722	   A  |-------------------------------|
723	   B  |---------------------------|
724	   C            |-------|
725	   Query  |- - - - - - - - - -|

727	   Figure 5: Nesting Example 5

729	   In the above case, the query must return B.

731	   A  |-------------------------------|
732	   B  |---------------------------|
733	   C  |---------------------------|
734	   D            |-------|
735	   Query  |- - - - - - - - - -|

737	   Figure 6: Nesting Example 6

739	   Here, the query must return B and C (they are exact matches of each
740	   other).

742	   A  |-------------------------------|
743	   B  |---------------------------|
744	   C  |---------------------------|
745	   D            |-------|
746	   Query        |- - - -|

748	   Figure 7: Nesting Example 7

750	   Here, the query must return B and C (they are exact matches of each
751	   other).  D must not be in the result set, as it is exact match to the
752	   query if the search specifies that exact matches of query range
753	   should not appear in the result set.

755	   In the example 7, if the search specifies that exact matches to the
756	   query range are allowed in the result set, then only D must be
757	   returned.

759	   [3] all more specifics search: Given a range, find all the networks
760	   that are fully within that range.  The search contains a flag that
761	   specifies if an exact match to the query range should appear in the
762	   result set or not.  Thus, the result set may or may not contain the
763	   exact match to the query range, as instructed by the search.

765	   (start(network) >= start(search)) AND (end(network) <= end(search))

767	   [4] one-level more specifics search: Given a range, find only the
768	   least specific networks that are fully within that range.  This is
769	   the set of networks from [3], with the provision that:

771	   no network in the return set contains any other network in the return
772	   set.

774	   Query   |- - - - - - - - - - - - - - - - - - - - - - -|

776	   A       |------------------|
777	   B                           |-------------------------|
778	   C           |--------|
779	   D                                      |---------|

781	   Figure 8: Nesting Example 8

783	   [5] exact match search: Given a range, find the networks that begin
784	   and end on the same IP addresses as the range.

786	   That is, the networks that fulfill the following condition:

788	   (start(network) = start(search)) AND (end(network) = end(search))

790	   [6] Given a range find the exact match network if exists, and if not,
791	   perform the [2] search.

793	   Parent-child relationship searches:

795	   [6] Given a network handle, find the network that is the direct (one
796	   level up) parent of the network with the given handle.

798	   [7] Given a network handle, find the network or networks that are
799	   direct (one level down) children of the network with the handle
800	   given.

802	5.  Formal XML Syntax

804	   This IP address registry is specified in the XML Schema notation.
805	   The formal syntax presented here is a complete schema representation
806	   suitable for automated validation of an XML instance when combined
807	   with the formal schema syntax of IRIS.

809	   <?xml version="1.0"?>
810	   <schema xmlns="http://www.w3.org/2001/XMLSchema"
811	     xmlns:areg="urn:ietf:params:xml:ns:areg1"
812	     xmlns:iris="urn:ietf:params:xml:ns:iris1"
813	     targetNamespace="urn:ietf:params:xml:ns:areg1"
814	     elementFormDefault="qualified" >

816	     <import namespace="urn:ietf:params:xml:ns:iris1" />

818	     <annotation>
819	       <documentation> IP address registry schema derived from IRIS
820	         schema </documentation>
821	     </annotation>

823	     <!-- ========================================= -->
824	     <!--                                           -->
825	     <!-- Query Types                               -->
826	     <!--                                           -->

828	     <!-- ========================================= -->
829	     <!--                                           -->
830	     <!-- Find Autonomous Systems By Name           -->
831	     <!-- Find Networks By Name                     -->
832	     <!--                                           -->

834	     <complexType name="findByNameType" >
835	       <complexContent>
836	         <extension base="iris:queryType">
837	           <sequence>
838	             <element name="name"
839	               type="areg:exactOrPartialMatchParameter" />
840	             <element name="language" type="language" minOccurs="0"
841	               maxOccurs="unbounded"/>
842	           </sequence>
843	         </extension>
844	       </complexContent>
845	     </complexType>

847	     <element name="findNetworksByName" type="areg:findByNameType"
848	       substitutionGroup="iris:query" />

850	     <element name="findAutonomousSystemsByName"
851	       type="areg:findByNameType"
852	       substitutionGroup="iris:query" />

854	     <!--                                           -->
855	     <!-- Address/Address Range type for            -->
856	     <!--   Find Network                            -->
857	     <!--                                           -->

859	     <complexType name="addressRangeType">
860	       <sequence>
861	         <element name="start" type="token" />
862	         <element name="end" type="token" minOccurs="0" maxOccurs="1" />
863	       </sequence>
864	     </complexType>

866	     <!--                                           -->
867	     <!-- Find Networks By Address                  -->
868	     <!--                                           -->

870	     <complexType name="findNetworksByAddressType" >
871	       <complexContent>
872	         <extension base="iris:queryType">
873	           <sequence>
874	             <choice>
875	               <element name="ipv4Address" type="areg:addressRangeType"
876	                 />
877	               <element name="ipv6Address" type="areg:addressRangeType"
878	                 />
879	             </choice>
880	             <element name="specificity">
881	               <complexType>
882	                 <simpleContent>
883	                   <extension base="areg:specificityType" >
884	                     <attribute name="allowEquivalences" type="boolean"
885	                       default="false" />
886	                   </extension>
887	                 </simpleContent>
888	               </complexType>
889	             </element>
890	           </sequence>
891	         </extension>
892	       </complexContent>
893	     </complexType>

895	     <element name="findNetworksByAddress"
896	       type="areg:findNetworksByAddressType"
897	       substitutionGroup="iris:query" />

899	     <!--                                           -->
900	     <!-- Find AS By Number                         -->
901	     <!--                                           -->

903	     <complexType name="findASByNumberType" >
904	       <complexContent>
905	         <extension base="iris:queryType">
906	           <sequence>
907	             <element name="asNumberStart" type="token" />
908	             <element name="asNumberEnd" type="token" minOccurs="0"
909	               maxOccurs="1" />
910	             <element name="specificity">
911	               <complexType>
912	                 <simpleContent>
913	                   <extension base="areg:specificityType" >
914	                     <attribute name="allowEquivalences" type="boolean"
915	                       default="false" />
916	                   </extension>
917	                 </simpleContent>
918	               </complexType>
919	             </element>
920	           </sequence>
921	         </extension>
922	       </complexContent>
923	     </complexType>

925	     <element name="findASByNumber" type="areg:findASByNumberType"
926	       substitutionGroup="iris:query" />

928	     <!--                                           -->
929	     <!-- Specificity Type                          -->
930	     <!--                                           -->

932	     <simpleType name="specificityType">
933	       <restriction base="string">
934	         <enumeration value="exact-match" />
935	         <enumeration value="all-less-specific" />
936	         <enumeration value="one-level-less-specific" />
937	         <enumeration value="all-more-specific" />
938	         <enumeration value="one-level-more-specific" />
939	       </restriction>
940	     </simpleType>

942	     <!--                                           -->
943	     <!-- Find By Contact                           -->
944	     <!--                                           -->

946	     <complexType name="findByContactType">
947	       <complexContent>
948	         <extension base="iris:queryType">
949	           <sequence>
950	             <choice>
951	               <group ref="areg:contactSearchGroup" />
952	               <element name="contactHandle"
953	                 type="areg:exactMatchParameter" />
954	             </choice>
955	             <element name="returnedResultType" minOccurs="0"
956	               maxOccurs="1" >
957	               <simpleType>
958	                 <restriction base="string" >
959	                   <enumeration value="returnASs" />
960	                   <enumeration value="returnIPv4Networks" />
961	                   <enumeration value="returnIPv6Networks" />
962	                   <enumeration value="returnOrganizations" />
963	                 </restriction>
964	               </simpleType>
965	             </element>
966	             <element name="role" minOccurs="0" maxOccurs="1" >
967	               <simpleType>
968	                 <restriction base="string" >
969	                   <enumeration value="adminContact" />
970	                   <enumeration value="techContact" />
971	                   <enumeration value="nocContact" />
972	                   <enumeration value="abuseContact" />
973	                   <enumeration value="otherContact" />
974	                 </restriction>
975	               </simpleType>
976	             </element>
977	             <element name="language" type="language" minOccurs="0"
978	               maxOccurs="unbounded"/>
979	           </sequence>
980	         </extension>
981	       </complexContent>
982	     </complexType>

984	     <element name="findByContact" type="areg:findByContactType"
985	       substitutionGroup="iris:query" />

987	     <!--                                           -->
988	     <!-- Find Networks By Handle                   -->
989	     <!--                                           -->

991	     <complexType name="findNetworksByHandleType" >
992	       <complexContent>
993	         <extension base="iris:queryType">
994	           <sequence>
995	             <element name="networkHandle" type="token" />
996	             <element name="specificity"
997	               type="areg:specificitySubsetType" />
998	           </sequence>
999	         </extension>
1000	       </complexContent>
1001	     </complexType>

1003	     <element name="findNetworksByHandle"
1004	       type="areg:findNetworksByHandleType"
1005	       substitutionGroup="iris:query" />

1007	     <!--                                           -->
1008	     <!-- Specificity Subtype                       -->
1009	     <!--                                           -->

1011	     <simpleType name="specificitySubsetType">
1012	       <restriction base="string">
1013	         <enumeration value="all-less-specific" />
1014	         <enumeration value="one-level-less-specific" />
1015	         <enumeration value="all-more-specific" />
1016	         <enumeration value="one-level-more-specific" />
1017	       </restriction>
1018	     </simpleType>

1020	     <!--                                           -->
1021	     <!-- Find Contacts                             -->
1022	     <!--                                           -->

1024	     <complexType name="findContactsType">
1025	       <complexContent>
1026	         <extension base="iris:queryType">
1027	           <sequence>
1028	             <choice>
1029	               <group ref="areg:contactSearchGroup" />
1030	               <element name="organizationId"
1031	                 type="areg:exactMatchParameter" />
1032	             </choice>
1033	             <element name="language" type="language" minOccurs="0"
1034	               maxOccurs="unbounded"/>
1035	           </sequence>
1036	         </extension>
1037	       </complexContent>
1038	     </complexType>

1040	     <element name="findContacts" type="areg:findContactsType"
1041	       substitutionGroup="iris:query" />

1043	     <!--                                           -->
1044	     <!-- Find Organizations                        -->
1045	     <!--                                           -->

1047	     <complexType name="findOrganizationsType">
1048	       <complexContent>
1049	         <extension base="iris:queryType">
1050	           <sequence>
1051	             <choice>
1052	               <element name="organizationName"
1053	                 type="areg:exactOrPartialMatchParameter" />
1054	               <group ref="areg:commonSearchGroup" />
1055	             </choice>
1056	             <element name="language" type="language" minOccurs="0"
1057	               maxOccurs="unbounded"/>
1058	           </sequence>
1059	         </extension>
1060	       </complexContent>
1061	     </complexType>

1063	     <element name="findOrganizations" type="areg:findOrganizationsType"
1064	       substitutionGroup="iris:query" />

1066	     <!--                                           -->
1067	     <!-- Find Networks by Name Server              -->
1068	     <!--                                           -->

1070	     <complexType name="findNetworksByNameServerType">
1071	       <complexContent>
1072	         <extension base="iris:queryType">
1073	           <sequence>
1074	             <element name="nameServer" type="normalizedString" />
1075	             <element name="returnedResultType" minOccurs="0"
1076	               maxOccurs="1" >
1077	               <simpleType>
1078	                 <restriction base="string" >
1079	                   <enumeration value="returnIPv4Networks" />
1080	                   <enumeration value="returnIPv6Networks" />
1081	                 </restriction>
1082	               </simpleType>
1083	             </element>
1084	           </sequence>
1085	         </extension>
1086	       </complexContent>
1087	     </complexType>

1089	     <element name="findNetworksByNameServer"
1090	       type="areg:findNetworksByNameServerType"
1091	       substitutionGroup="iris:query" />

1093	     <!--                                           -->
1094	     <!-- Contact Search Group                      -->
1095	     <!--                                           -->

1097	     <group name="contactSearchGroup">
1098	       <choice>
1099	         <element name="commonName"
1100	           type="areg:exactOrPartialMatchParameter" />
1101	         <group ref="areg:commonSearchGroup" />
1102	       </choice>
1103	     </group>

1105	     <!--                                           -->
1106	     <!-- Common Search Group                       -->
1107	     <!--                                           -->

1109	     <group name="commonSearchGroup">
1110	       <choice>
1111	         <element name="eMail" type="areg:domainResourceParameter" />
1112	         <element name="city" type="areg:exactMatchParameter" />
1113	         <element name="region" type="areg:exactMatchParameter" />
1114	         <element name="country" type="areg:exactMatchParameter" />
1115	         <element name="postalCode" type="areg:exactMatchParameter" />
1116	       </choice>
1117	     </group>

1119	     <!--                                           -->
1120	     <!-- Parameters for Search Groups              -->
1121	     <!--                                           -->

1123	     <complexType name="exactOrPartialMatchParameter">
1124	       <choice>
1125	         <group ref="areg:partialMatchGroup" />
1126	         <group ref="areg:exactMatchGroup" />
1127	       </choice>
1128	     </complexType>

1130	     <complexType name="exactMatchParameter">
1131	       <group ref="areg:exactMatchGroup" />
1132	     </complexType>

1134	     <complexType name="partialMatchParameter">
1135	       <sequence>
1136	         <group ref="areg:partialMatchGroup" />
1137	       </sequence>
1138	     </complexType>
1139	     <complexType name="domainResourceParameter" >
1140	       <choice>
1141	         <group ref="areg:exactMatchGroup" />
1142	         <element name="inDomain" type="token" />
1143	       </choice>
1144	     </complexType>

1146	     <group name="partialMatchGroup">
1147	       <choice>
1148	         <sequence>
1149	           <element name="beginsWith">
1150	             <simpleType>
1151	               <restriction base="token">
1152	                 <minLength value="1"/>
1153	               </restriction>
1154	             </simpleType>
1155	           </element>
1156	           <element minOccurs="0" ref="areg:endsWith"/>
1157	         </sequence>
1158	         <element ref="areg:endsWith" />
1159	       </choice>
1160	     </group>

1162	     <element name="endsWith">
1163	       <simpleType>
1164	         <restriction base="token">
1165	           <minLength value="1"/>
1166	         </restriction>
1167	       </simpleType>
1168	     </element>

1170	     <group name="exactMatchGroup">
1171	       <sequence>
1172	         <element name="exactMatch" type="normalizedString" />
1173	       </sequence>
1174	     </group>

1176	     <!-- ========================================= -->
1177	     <!--                                           -->
1178	     <!-- Result Types                              -->
1179	     <!--                                           -->
1180	     <!-- ========================================= -->

1182	     <!--                                           -->
1183	     <!-- IPv4 and IPv6 Network Results             -->
1184	     <!--                                           -->

1186	     <complexType name="ipNetworkType">
1187	       <complexContent>
1188	         <extension base="iris:resultType">
1189	           <sequence>
1190	             <element name="networkHandle" type="token"
1191	               minOccurs="0" maxOccurs="1" />
1192	             <element name="name" minOccurs="0" maxOccurs="1"
1193	               type="normalizedString" />
1194	             <element name="startAddress" type="token" />
1195	             <element name="endAddress" type="token" />
1196	             <sequence minOccurs="0" maxOccurs="1">
1197	               <element name="networkType" type="normalizedString"
1198	                 minOccurs="1" maxOccurs="1" />
1199	               <element name="networkTypeInfo" type="iris:entityType"
1200	                 minOccurs="0" maxOccurs="1" />
1201	             </sequence>
1202	             <element name="nameServer" type="normalizedString"
1203	               minOccurs="0" maxOccurs="unbounded" />
1204	             <element name="organization" type="iris:entityType"
1205	               minOccurs="0" maxOccurs="1" />
1206	             <choice minOccurs="0" maxOccurs="1" >
1207	               <element name="parent" type="iris:entityType" />
1208	               <element name="noParent">
1209	               </element>
1210	             </choice>
1211	             <group ref="areg:contactGroup" />
1212	             <group ref="areg:commonGroup" />
1213	           </sequence>
1214	         </extension>
1215	       </complexContent>
1216	     </complexType>

1218	     <element name="ipv4Network" type="areg:ipNetworkType"
1219	       substitutionGroup="iris:result" />

1221	     <element name="ipv6Network" type="areg:ipNetworkType"
1222	       substitutionGroup="iris:result" />

1224	     <!--                                           -->
1225	     <!-- Autonomous System                         -->
1226	     <!--                                           -->

1228	     <complexType name="autonomousSystemType">
1229	       <complexContent>
1230	         <extension base="iris:resultType">
1231	           <sequence>
1232	             <element name="asHandle" type="token"
1233	               minOccurs="0" maxOccurs="1" />
1234	             <element name="asNumberStart" type="integer" minOccurs="0"
1235	               maxOccurs="1" />
1236	             <element name="asNumberEnd" type="integer" minOccurs="0"
1237	               maxOccurs="1" />
1238	             <element name="name" type="normalizedString" minOccurs="0"
1239	               maxOccurs="1" />
1240	             <element name="organization" type="iris:entityType"
1241	               minOccurs="0" maxOccurs="1" />
1242	             <choice minOccurs="0" maxOccurs="1">
1243	               <element name="parent" type="iris:entityType" />
1244	               <element name="noParent" />
1245	             </choice>
1246	             <group ref="areg:contactGroup" />
1247	             <group ref="areg:commonGroup" />
1248	           </sequence>
1249	         </extension>
1250	       </complexContent>
1251	     </complexType>

1253	     <element name="autonomousSystem" type="areg:autonomousSystemType"
1254	       substitutionGroup="iris:result" />

1256	     <!--                                           -->
1257	     <!-- Contact                                   -->
1258	     <!--                                           -->

1260	     <complexType name="contactType">
1261	       <complexContent>
1262	         <extension base="iris:resultType">
1263	           <sequence>
1264	             <element name="contactHandle" type="token"
1265	               minOccurs="0" maxOccurs="1" />
1266	             <element name="commonName" type="normalizedString"
1267	               minOccurs="0" maxOccurs="1" />
1268	             <element name="eMail" type="normalizedString" minOccurs="0"
1269	               maxOccurs="unbounded" />
1270	             <element name="sip" type="normalizedString" minOccurs="0"
1271	               maxOccurs="unbounded" />
1272	             <element name="organization" type="iris:entityType"
1273	               minOccurs="0" maxOccurs="unbounded" />
1274	             <element name="postalAddress" minOccurs="0"
1275	               maxOccurs="unbounded">
1276	               <complexType>
1277	                 <sequence>
1278	                   <element name="address" type="string" minOccurs="0"
1279	                     maxOccurs="1" />
1280	                   <element name="city" type="string" minOccurs="0"
1281	                     maxOccurs="1" />
1282	                   <element name="region" type="string" minOccurs="0"
1283	                     maxOccurs="1" />
1284	                   <element name="postalCode" type="normalizedString"
1285	                     minOccurs="0" maxOccurs="1" />
1286	                   <element name="country" type="token" minOccurs="0"
1287	                     maxOccurs="1" />
1288	                 </sequence>
1289	               </complexType>
1290	             </element>
1291	             <element name="phone" minOccurs="0" maxOccurs="unbounded" >
1292	               <complexType>
1293	                 <sequence>
1294	                   <element name="number" type="normalizedString" />
1295	                   <element name="extension" type="normalizedString"
1296	                     minOccurs="0" maxOccurs="unbounded" />
1297	                   <element name="type" type="normalizedString"
1298	                     minOccurs="0" maxOccurs="1" />
1299	                 </sequence>
1300	               </complexType>
1301	             </element>
1302	             <group ref="areg:commonGroup" />
1303	           </sequence>
1304	         </extension>
1305	       </complexContent>
1306	     </complexType>

1308	     <element name="contact" type="areg:contactType"
1309	       substitutionGroup="iris:result" />

1311	     <!--                                           -->
1312	     <!-- Organization                              -->
1313	     <!--                                           -->

1315	     <complexType name="organizationType">
1316	       <complexContent>
1317	         <extension base="iris:resultType">
1318	           <sequence>
1319	             <element name="name" type="normalizedString"
1320	               minOccurs="0" maxOccurs="1" />
1321	             <element name="eMail" type="normalizedString" minOccurs="0"
1322	               maxOccurs="unbounded" />
1323	             <element name="id" type="token" />
1324	             <element name="postalAddress" minOccurs="0"
1325	               maxOccurs="unbounded">
1326	               <complexType>
1327	                 <sequence>
1328	                   <element name="address" type="string" minOccurs="0"
1329	                     maxOccurs="1" />
1330	                   <element name="city" type="string" minOccurs="0"
1331	                     maxOccurs="1" />
1332	                   <element name="region" type="string" minOccurs="0"
1333	                     maxOccurs="1" />
1334	                   <element name="postalCode" type="normalizedString"
1335	                     minOccurs="0" maxOccurs="1" />
1336	                   <element name="country" type="token" minOccurs="0"
1337	                     maxOccurs="1" />
1338	                 </sequence>
1339	               </complexType>
1340	             </element>
1341	             <element name="phone" minOccurs="0" maxOccurs="unbounded" >
1342	               <complexType>
1343	                 <sequence>
1344	                   <element name="number" type="normalizedString" />
1345	                   <element name="extension" type="normalizedString"
1346	                     minOccurs="0" maxOccurs="unbounded" />
1347	                   <element name="type" type="normalizedString"
1348	                     minOccurs="0" maxOccurs="1" />
1349	                 </sequence>
1350	               </complexType>
1351	             </element>
1352	             <group ref="areg:contactGroup" />
1353	             <group ref="areg:commonGroup" />
1354	           </sequence>
1355	         </extension>
1356	       </complexContent>
1357	     </complexType>

1359	     <element name="organization" type="areg:organizationType"
1360	       substitutionGroup="iris:result" />

1362	     <!--                                           -->
1363	     <!-- Contact Group                             -->
1364	     <!--                                           -->

1366	     <group name="contactGroup">
1367	       <sequence>
1368	         <element name="adminContact" type="iris:entityType"
1369	           minOccurs="0" maxOccurs="unbounded" />
1370	         <element name="techContact" type="iris:entityType"
1371	           minOccurs="0" maxOccurs="unbounded" />
1372	         <element name="nocContact" type="iris:entityType" minOccurs="0"
1373	           maxOccurs="unbounded" />
1374	         <element name="abuseContact" type="iris:entityType"
1375	           minOccurs="0" maxOccurs="unbounded" />
1376	         <element name="otherContact" type="iris:entityType"
1377	           minOccurs="0" maxOccurs="unbounded" />
1378	       </sequence>

1380	     </group>

1382	     <!--                                           -->
1383	     <!-- Common Group                              -->
1384	     <!--                                           -->

1386	     <group name="commonGroup">
1387	       <sequence>
1388	         <element name="numberResourceRegistry" type="iris:entityType"
1389	           minOccurs="0" maxOccurs="1" />
1390	         <element name="registrationDate" type="dateTime" minOccurs="0"
1391	           maxOccurs="1" />
1392	         <element name="lastUpdatedDate" type="dateTime" minOccurs="0"
1393	           maxOccurs="1" />
1394	         <element ref="iris:seeAlso" minOccurs="0" maxOccurs="unbounded"
1395	           />
1396	       </sequence>
1397	     </group>
1398	   </schema>

1400	   Figure 9

1402	6.  BEEP Transport Compliance

1404	   IRIS allows several extensions of the core capabilities.  This
1405	   section outlines those extensions allowable by IRIS-BEEP [3].

1407	6.1.  Message Pattern

1409	   This registry type uses the default message pattern as described in
1410	   IRIS-BEEP [3].

1412	6.2.  Server Authentication

1414	   This registry type uses the default server authentication method as
1415	   described in IRIS-BEEP [3].

1417	7.  URI Resolution

1419	7.1.  Application Service Label

1421	   See Section 9 for the application service label registration.

1423	7.2.  Operational Considerations

1425	   Address registries do not have natural links to DNS.  Using reverse
1426	   DNS tree presents problems for IP address delegation (for example,
1427	   delegations do not fall into byte boundaries, unlike reverse DNS),
1428	   and DNS does not currently contain any information regarding
1429	   autonomous system delegation.

1431	   Therefore, in order for the top-down resolution to operate properly,
1432	   it is requested that the IAB instruct IANA to insert and maintain a
1433	   NAPTR DNS resource record for areg.iris.arpa, as described in
1434	   Section 9.

1436	7.3.  Top-Down Resolution

1438	   The top-down alternative resolution method MUST be identified as
1439	   'top' in IRIS URIs.

1441	   The process for this condition is as follows:

1443	   1.  The IRIS [2] direct-resolution process is tried against
1444	       areg.iris.arpa.

1446	   2.  If the direct-resolution process yields no server for which a
1447	       connection can be made, then a negative response is returned and
1448	       no further action is taken.

1450	   It is RECOMMENDED that IRIS clients issuing AREG1 requests use the
1451	   'top' resolution method when no resolution method has been explicitly
1452	   given by a user.  IRIS servers accepting AREG1 requests seeking
1453	   information for which they are not authoritative SHOULD refer clients
1454	   using the 'top' resolution method.

1456	8.  Internationalization Considerations

1458	   This document lays out no new considerations for internationalization
1459	   beyond that specified in IRIS [2].

1461	9.  IANA Considerations

1463	   The following URN will need to be registered with IANA according to
1464	   the IANA considerations defined in IRIS [2]:

1466	      urn:ietf:params:xml:ns:areg1

1468	   The following S-NAPTR application service label will need to be
1469	   registered with IANA according to the IANA considerations defined in
1470	   IRIS [2]:

1472	      AREG1

1474	   Under instructions from the IAB, the IANA will create a new second
1475	   level domain under .arpa called iris (i.e. iris.arpa.).  The contents
1476	   of this new domain are to be under the control of the IAB.  Under
1477	   instructions from the IAB, the IANA will insert and maintain a NAPTR
1478	   DNS resource record in the iris.arpa. domain for the name
1479	   areg.iris.arpa.  The initial contents for that record is:

1481	   areg.iris.arpa.
1482	   ;;        order pref flags service                   re replacement
1483	   IN NAPTR  100   10   ""    "AREG1:iris.xpc:iris.lwz" "" areg.nro.net

1485	10.  Security Considerations

1487	   This document lays out no new considerations for security precautions
1488	   beyond that specified in IRIS [2].

1490	11.  References

1492	11.1.  Normative References

1494	   [1]  Bradner, S., "Key words for use in RFCs to Indicate Requirement
1495	        Levels", RFC 2119, BCP 14, March 1997.

1497	   [2]  Newton, A. and M. Sanz, "IRIS: The Internet Registry Information
1498	        Service  (IRIS) Core Protocol", RFC 3981, January 2005.

1500	   [3]  Newton, A. and M. Sanz, "Using the Internet Registry Information
1501	        Service  (IRIS) over the Blocks Extensible Exchange Protocol
1502	        (BEEP)", RFC 3983, January 2005.

1504	   [4]  Newton, A., "Cross Registry Internet Service Protocol (CRISP)
1505	        Requirements", RFC 3707, February 2004.

1507	11.2.  Informative References

1509	   [5]   Mockapetris, P., "Domain names - implementation and
1510	         specification", STD 13, RFC 1035, November 1987.

1512	   [6]   World Wide Web Consortium, "Extensible Markup Language (XML)
1513	         1.0", W3C XML, February 1998,
1514	         <http://www.w3.org/TR/1998/REC-xml-19980210>.

1516	   [7]   World Wide Web Consortium, "Namespaces in XML", W3C XML
1517	         Namespaces, January 1999,
1518	         <http://www.w3.org/TR/1999/REC-xml-names-19990114>.

1520	   [8]   World Wide Web Consortium, "XML Schema Part 2: Datatypes",
1521	         W3C XML Schema, October 2000,
1522	         <http://www.w3.org/TR/2001/REC-xmlschema-2-20010502/>.

1524	   [9]   World Wide Web Consortium, "XML Schema Part 1: Structures",
1525	         W3C XML Schema, October 2000,
1526	         <http://www.w3.org/TR/2001/REC-xmlschema-1-20010502/>.

1528	   [10]  Reynolds, J. and J. Postel, "ASSIGNED NUMBERS", RFC 1700,
1529	         STD 2, October 1994.

1531	   [11]  Narten, T. and H. Alvestrand, "Guidelines for Writing an IANA
1532	         Considerations Section in RFCs", RFC 2434, BCP 26,
1533	         October 1998.

1535	   [12]  International Organization for Standardization, "Codes for the
1536	         representation of names of countries, 3rd edition",
1537	         ISO Standard 3166, August 1988.

1539	Appendix A.  Privacy Considerations

1541	   Internet address registries store contact details and other
1542	   information that may be abused.  The XML Schema defined in this
1543	   document purposefully makes the inclusion of any data in a response
1544	   an option dependent on the needs and policies of the Internet address
1545	   registry serving the data.

1547	   Combined with the authentication mechanisms of an IRIS transfer
1548	   protocol, Internet address registries may derive authorization
1549	   policies to meet their needs without compromising general privacy
1550	   policies.  As an example, the constituents of an Internet address
1551	   registry may create a policy whereby NOC contact email addresses are
1552	   only to be available to members of the Internet address registry.  To
1553	   institute this policy, the XML elements for NOC contacts will never
1554	   appear in a response to a user that has not been authenticated to be
1555	   a member of the Internet address registry.

1557	Appendix B.  Example Requests and Responses

1559	   The examples in this section use the string "C:" to denote data sent
1560	   by a client to a server and the string "S:" to denote data sent by a
1561	   server to a client.

1563	B.1.  Example 1

1565	   The following is an example of entity lookup for the contact-handle
1566	   of 'JN560-RIR1'.

1568	   C: <?xml version="1.0"?>
1569	   C: <request xmlns="urn:ietf:params:xml:ns:iris1"
1570	   C:   xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
1571	   C:   xsi:schemaLocation="urn:ietf:params:xml:ns:iris1 iris.xsd" >
1572	   C:
1573	   C:   <searchSet>
1574	   C:
1575	   C:     <lookupEntity
1576	   C:       registryType="urn:ietf:params:xml:ns:areg1"
1577	   C:       entityClass="contact-handle"
1578	   C:       entityName="JN560-RIR1" />
1579	   C:
1580	   C:   </searchSet>
1581	   C:
1582	   C: </request>

1584	   S: <?xml version="1.0"?>
1585	   S: <iris:response
1586	   S:   xmlns:iris="urn:ietf:params:xml:ns:iris1"
1587	   S:   xmlns="urn:ietf:params:xml:ns:areg1"
1588	   S:   xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
1589	   S:
1590	   S:   <iris:resultSet>
1591	   S:     <iris:answer>
1592	   S:
1593	   S:       <contact
1594	   S:         authority="rir.example.net"
1595	   S:         registryType="areg1"
1596	   S:         entityClass="contact-handle"
1597	   S:         entityName="JN560-RIR1">
1598	   S:
1599	   S:         <contactHandle>JN560-RIR1</contactHandle>
1600	   S:
1601	   S:         <commonName>Bob Smurd</commonName>
1602	   S:
1603	   S:         <organization
1604	   S:           iris:referentType="organization"
1605	   S:           authority="rir.example.net"
1606	   S:           registryType="areg1"
1607	   S:           entityClass="organization-id"
1608	   S:           entityName="ORGX">
1609	   S:           <iris:displayName
1610	   S:             language="en">
1611	   S:             Organization X, Inc.
1612	   S:           </iris:displayName>
1613	   S:         </organization>
1614	   S:
1615	   S:         <phone>
1616	   S:           <number>+1-703-555-5555</number>
1617	   S:           <type>office</type>
1618	   S:         </phone>
1619	   S:
1620	   S:       </contact>
1621	   S:
1622	   S:     </iris:answer>
1623	   S:   </iris:resultSet>
1624	   S:
1625	   S: </iris:response>

1627	   Figure 11: Example 1

1629	B.2.  Example 2

1631	   The following example shows a query to find the IP networks
1632	   containing a given address.

1634	   C: <?xml version="1.0"?>
1635	   C: <request xmlns="urn:ietf:params:xml:ns:iris1"
1636	   C:          xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
1637	   C:
1638	   C:   <searchSet>
1639	   C:     <findNetworksByAddress
1640	   C:       xmlns="urn:ietf:params:xml:ns:areg1">
1641	   C:
1642	   C:       <ipv4Address>
1643	   C:         <start>192.0.2.134</start>
1644	   C:       </ipv4Address>
1645	   C:
1646	   C:       <specificity
1647	   C:         allowEquivalences="true"
1648	   C:         >one-level-less-specific</specificity>
1649	   C:
1650	   C:     </findNetworksByAddress>
1651	   C:   </searchSet>
1652	   C:

1654	   C: </request>

1656	   S: <?xml version="1.0"?>
1657	   S: <iris:response xmlns:iris="urn:ietf:params:xml:ns:iris1"
1658	   S:   xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
1659	   S:
1660	   S:   <iris:resultSet>
1661	   S:     <iris:answer>
1662	   S:       <areg:ipv4Network
1663	   S:         xmlns="urn:ietf:params:xml:ns:areg1"
1664	   S:         xmlns:areg="urn:ietf:params:xml:ns:areg1"
1665	   S:         xsi:schemaLocation="urn:ietf:params:xml:ns:areg1 areg.xsd"
1666	   S:         authority="rir.example.net" registryType="areg1"
1667	   S:         entityClass="ipv4-handle" entityName="NET-192-0-2-128-1" >
1668	   S:         <networkHandle>
1669	   S:           NET-192-0-2-128-1
1670	   S:         </networkHandle>
1671	   S:         <name>
1672	   S:           UU-192-0-2-D6
1673	   S:         </name>
1674	   S:         <startAddress>
1675	   S:           192.0.2.128
1676	   S:         </startAddress>
1677	   S:         <endAddress>
1678	   S:           192.0.2.255
1679	   S:         </endAddress>
1680	   S:         <networkType>reassigned</networkType>
1681	   S:         <organization
1682	   S:           iris:referentType="areg:organization"
1683	   S:           authority="rir.example.net" registryType="areg1"
1684	   S:           entityClass="organization-id" entityName="ORGX">
1685	   S:           <iris:displayName language="en">
1686	   S:             Organization X, Inc.
1687	   S:           </iris:displayName>
1688	   S:         </organization>
1689	   S:         <parent
1690	   S:           iris:referentType="areg:ipv4Network"
1691	   S:           authority="rir.example.net" registryType="areg1"
1692	   S:           entityClass="ipv4-handle" entityName="NET-192-0-2-0-1"/>
1693	   S:         <techContact
1694	   S:           iris:referentType="areg:contact"
1695	   S:           authority="rir.example.net" registryType="areg1"
1696	   S:           entityClass="contact-handle" entityName="JN560-RIR1">
1697	   S:           <iris:displayName language="en">
1698	   S:             Smurd, Bob
1699	   S:           </iris:displayName>
1700	   S:         </techContact>
1701	   S:         <registrationDate>
1702	   S:           2002-11-18T00:00:00-00:00
1703	   S:         </registrationDate>
1704	   S:         <lastUpdatedDate>
1705	   S:           2002-11-18T00:00:00-00:00
1706	   S:         </lastUpdatedDate>
1707	   S:         <iris:seeAlso
1708	   S:           iris:referentType="ANY"
1709	   S:           authority="rir.example.net" registryType="areg1"
1710	   S:           entityClass="local" entityName="portability-notice"/>
1711	   S:       </areg:ipv4Network>
1712	   S:       <areg:ipv4Network
1713	   S:         xmlns="urn:ietf:params:xml:ns:areg1"
1714	   S:         xmlns:areg="urn:ietf:params:xml:ns:areg1"
1715	   S:         xsi:schemaLocation="urn:ietf:params:xml:ns:areg1 areg.xsd"
1716	   S:         authority="rir.example.net" registryType="areg1"
1717	   S:         entityClass="ipv4-handle" entityName="NET-192-0-2-0-2" >
1718	   S:         <networkHandle>
1719	   S:           NET-192-0-2-0-2
1720	   S:         </networkHandle>
1721	   S:         <name>
1722	   S:           UU-192-0-2-0-D5
1723	   S:         </name>
1724	   S:         <startAddress>
1725	   S:           192.0.2.0
1726	   S:         </startAddress>
1727	   S:         <endAddress>
1728	   S:           192.0.2.255
1729	   S:         </endAddress>
1730	   S:         <networkType>direct allocation</networkType>
1731	   S:         <nameServer>auth03.ns.example.org</nameServer>
1732	   S:         <nameServer>auth00.ns.example.org</nameServer>
1733	   S:         <organization
1734	   S:           iris:referentType="areg:organization"
1735	   S:           authority="rir.example.net" registryType="areg1"
1736	   S:           entityClass="organization-id" entityName="ORGY">
1737	   S:           <iris:displayName language="en">
1738	   S:             Organization Y, Inc.
1739	   S:           </iris:displayName>
1740	   S:         </organization>
1741	   S:         <parent
1742	   S:           iris:referentType="areg:ipv4Network"
1743	   S:           authority="rir.example.net" registryType="areg1"
1744	   S:           entityClass="ipv4-handle" entityName="NET-192-0-2-0-1"/>
1745	   S:         <techContact
1746	   S:           iris:referentType="areg:contact"
1747	   S:           authority="rir.example.net" registryType="areg1"
1748	   S:           entityClass="contact-handle" entityName="OA12-RIR1" />
1749	   S:         <registrationDate>
1750	   S:           2000-10-27T00:00:00-00:00
1751	   S:         </registrationDate>
1752	   S:         <lastUpdatedDate>
1753	   S:           2002-02-13T00:00:00-00:00
1754	   S:         </lastUpdatedDate>
1755	   S:         <iris:seeAlso
1756	   S:           iris:referentType="ANY"
1757	   S:           authority="rir.example.net" registryType="areg1"
1758	   S:           entityClass="local" entityName="portability-notice"/>
1759	   S:       </areg:ipv4Network>
1760	   S:     </iris:answer>
1761	   S:     <iris:additional>
1762	   S:       <iris:simpleEntity
1763	   S:         authority="rir.example.net" registryType="areg1"
1764	   S:         entityClass="local" entityName="portability-notice" >
1765	   S:         <iris:property name="portability" language="en">
1766	   S:           Addresses within this block are non-portable.
1767	   S:         </iris:property>
1768	   S:       </iris:simpleEntity>
1769	   S:     </iris:additional>
1770	   S:   </iris:resultSet>
1771	   S:
1772	   S: </iris:response>

1774	   Figure 12: Example 2

1776	Appendix C.  Specificity Examples

1778	   This section includes examples to clarify specificity options for
1779	   network and ASN searches.

1781	   A    |------------------|                     192.0.2.0  - 192.0.2.15

1783	   B                        |------------------| 192.0.2.16 - 192.0.2.31

1785	   C    |--------------|                         192.0.2.0  - 192.0.2.9

1787	   D                        |---------------|    192.0.2.16 - 192.0.2.30

1789	   E                        |---------------|    192.0.2.16 - 192.0.2.30

1791	   F    |--------|                               192.0.2.0  - 192.0.2.5

1793	   G              |----|                         192.0.2.6  - 192.0.2.9

1795	                        Contents of the DB

1797	   Figure 13: Specificity Example 1

1799	   A    |------------------|                     192.0.2.0  - 192.0.2.15

1801	   B                        |------------------| 192.0.2.16 - 192.0.2.31

1803	   C    |--------------|                         192.0.2.0  - 192.0.2.9

1805	   D                        |---------------|    192.0.2.16 - 192.0.2.30

1807	   E                        |---------------|    192.0.2.16 - 192.0.2.30

1809	   F    |--------|                               192.0.2.0  - 192.0.2.5

1811	   G              |----|                         192.0.2.6  - 192.0.2.9

1813	   Query|- - - - - - - |                         192.0.2.0  - 192.0.2.9

1815	                        Exact match [1]

1817	                        Result: C

1819	   Figure 14: Specificity Example 2

1821	   A    |------------------|                     192.0.2.0  - 192.0.2.15

1823	   B                        |------------------| 192.0.2.16 - 192.0.2.31

1825	   C    |--------------|                         192.0.2.0  - 192.0.2.9

1827	   D                        |---------------|    192.0.2.16 - 192.0.2.30

1829	   E                        |---------------|    192.0.2.16 - 192.0.2.30

1831	   F    |--------|                               192.0.2.0  - 192.0.2.5

1833	   G              |----|                         192.0.2.6  - 192.0.2.9

1835	   Query|- - - - - - - - |                       192.0.2.0  - 192.0.2.12

1837	                         Exact match [2]

1839	                         Result: None

1841	   Figure 15: Specificity Example 3
1842	   A    |------------------|                     192.0.2.0  - 192.0.2.15

1844	   B                        |------------------| 192.0.2.16 - 192.0.2.31

1846	   C    |--------------|                         192.0.2.0  - 192.0.2.9

1848	   D                        |---------------|    192.0.2.16 - 192.0.2.30

1850	   E                        |---------------|    192.0.2.16 - 192.0.2.30

1852	   F    |--------|                               192.0.2.0  - 192.0.2.5

1854	   G              |----|                         192.0.2.6  - 192.0.2.9

1856	   Query|- - - - - - - - - |                     192.0.2.0  - 192.0.2.15

1858	                All more specifics, allowEquivalences = false

1860	                Result: C, F & G (not A, which is exact match)

1862	   Figure 16: Specificity Example 4
1863	   A    |------------------|                     192.0.2.0  - 192.0.2.15

1865	   B                        |------------------| 192.0.2.16 - 192.0.2.31

1867	   C    |--------------|                         192.0.2.0  - 192.0.2.9

1869	   D                        |---------------|    192.0.2.16 - 192.0.2.30

1871	   E                        |---------------|    192.0.2.16 - 192.0.2.30

1873	   F    |--------|                               192.0.2.0  - 192.0.2.5

1875	   G              |----|                         192.0.2.6  - 192.0.2.9

1877	   Query|- - - - - - - - - |                     192.0.2.0  - 192.0.2.15

1879	                All more specifics, allowEquivalences = true

1881	                Result: A, C, F & G (A included, which is exact match)

1883	   Figure 17: Specificity Example 5
1884	   A    |------------------|                     192.0.2.0  - 192.0.2.15

1886	   B                        |------------------| 192.0.2.16 - 192.0.2.31

1888	   C    |--------------|                         192.0.2.0  - 192.0.2.9

1890	   D                        |---------------|    192.0.2.16 - 192.0.2.30

1892	   E                        |---------------|    192.0.2.16 - 192.0.2.30

1894	   F    |--------|                               192.0.2.0  - 192.0.2.5

1896	   G              |----|                         192.0.2.6  - 192.0.2.9

1898	   Query|- - - - - - - - - |                     192.0.2.0  - 192.0.2.15

1900	                One level more specifics, allowEquivalences = false

1902	                Result: C

1904	   Figure 18: Specificity Example 6
1905	   A    |------------------|                     192.0.2.0  - 192.0.2.15

1907	   B                        |------------------| 192.0.2.16 - 192.0.2.31

1909	   C    |--------------|                         192.0.2.0  - 192.0.2.9

1911	   D                        |---------------|    192.0.2.16 - 192.0.2.30

1913	   E                        |---------------|    192.0.2.16 - 192.0.2.30

1915	   F    |--------|                               192.0.2.0  - 192.0.2.5

1917	   G              |----|                         192.0.2.6  - 192.0.2.9

1919	   Query|- - - - - - - - - |                     192.0.2.0  - 192.0.2.15

1921	                One level more specifics, allowEquivalences = true

1923	                Result: A

1925	   Figure 19: Specificity Example 7
1926	   A    |------------------|                     192.0.2.0  - 192.0.2.15

1928	   B                        |------------------| 192.0.2.16 - 192.0.2.31

1930	   C    |--------------|                         192.0.2.0  - 192.0.2.9

1932	   D                        |---------------|    192.0.2.16 - 192.0.2.30

1934	   E                        |---------------|    192.0.2.16 - 192.0.2.30

1936	   F    |--------|                               192.0.2.0  - 192.0.2.5

1938	   G              |----|                         192.0.2.6  - 192.0.2.9

1940	   Query          |- - |                         192.0.2.6  - 192.0.2.9

1942	                All less specifics, allowEquivalences = true

1944	                Result: A, C & G (G is included, exact match)

1946	   Figure 20: Specificity Example 8
1947	   A    |------------------|                     192.0.2.0  - 192.0.2.15

1949	   B                        |------------------| 192.0.2.16 - 192.0.2.31

1951	   C    |--------------|                         192.0.2.0  - 192.0.2.9

1953	   D                        |---------------|    192.0.2.16 - 192.0.2.30

1955	   E                        |---------------|    192.0.2.16 - 192.0.2.30

1957	   F    |--------|                               192.0.2.0  - 192.0.2.5

1959	   G              |----|                         192.0.2.6  - 192.0.2.9

1961	   Query          |- - |                         192.0.2.6  - 192.0.2.9

1963	                All less specifics, allowEquivalences = false

1965	                Result: A & C (G is not included, exact match)

1967	   Figure 21: Specificity Example 9
1968	   A    |------------------|                     192.0.2.0  - 192.0.2.15

1970	   B                        |------------------| 192.0.2.16 - 192.0.2.31

1972	   C    |--------------|                         192.0.2.0  - 192.0.2.9

1974	   D                        |---------------|    192.0.2.16 - 192.0.2.30

1976	   E                        |---------------|    192.0.2.16 - 192.0.2.30

1978	   F    |--------|                               192.0.2.0  - 192.0.2.5

1980	   G              |----|                         192.0.2.6  - 192.0.2.9

1982	   Query          |- - |                         192.0.2.6  - 192.0.2.9

1984	                One level less specifics, allowEquivalences = true

1986	                Result: G (the exact match)

1988	   Figure 22: Specificity Example 10
1989	   A    |------------------|                     192.0.2.0  - 192.0.2.15

1991	   B                        |------------------| 192.0.2.16 - 192.0.2.31

1993	   C    |--------------|                         192.0.2.0  - 192.0.2.9

1995	   D                        |---------------|    192.0.2.16 - 192.0.2.30

1997	   E                        |---------------|    192.0.2.16 - 192.0.2.30

1999	   F    |--------|                               192.0.2.0  - 192.0.2.5

2001	   G              |----|                         192.0.2.6  - 192.0.2.9

2003	   Query          |- - |                         192.0.2.6  - 192.0.2.9

2005	                One level less specifics, allowEquivalences = false

2007	                Result: C

2009	   Figure 23: Specificity Example 11
2010	   A    |------------------|                     192.0.2.0  - 192.0.2.15

2012	   B                        |------------------| 192.0.2.16 - 192.0.2.31

2014	   C    |--------------|                         192.0.2.0  - 192.0.2.9

2016	   D                        |---------------|    192.0.2.16 - 192.0.2.30

2018	   E                        |---------------|    192.0.2.16 - 192.0.2.30

2020	   F    |--------|                               192.0.2.0  - 192.0.2.5

2022	   G              |----|                         192.0.2.6  - 192.0.2.9

2024	   Query|- - - - - - |                           192.0.2.0  - 192.0.2.8

2026	             One level less specifics, allowEquivalences = false or true

2028	             Result: C

2030	   Figure 24: Specificity Example 12

2032	   A    |------------------|                     192.0.2.0  - 192.0.2.15

2034	   B                        |------------------| 192.0.2.16 - 192.0.2.31

2036	   C    |--------------|                         192.0.2.0  - 192.0.2.9

2038	   D                        |---------------|    192.0.2.16 - 192.0.2.30

2040	   E                        |---------------|    192.0.2.16 - 192.0.2.30

2042	   F    |--------|                               192.0.2.0  - 192.0.2.5

2044	   G              |----|                         192.0.2.6  - 192.0.2.9

2046	   Query  =  E

2048	                  Find parent (Query argument is a handle)

2050	                  Result: D

2052	   Figure 25: Specificity Example 13

2054	   A    |------------------|                     192.0.2.0  - 192.0.2.15

2056	   B                        |------------------| 192.0.2.16 - 192.0.2.31

2058	   C    |--------------|                         192.0.2.0  - 192.0.2.9

2060	   D                        |---------------|    192.0.2.16 - 192.0.2.30

2062	   E                        |---------------|    192.0.2.16 - 192.0.2.30

2064	   F    |--------|                               192.0.2.0  - 192.0.2.5

2066	   G              |----|                         192.0.2.6  - 192.0.2.9

2068	   Query  =  D

2070	                   Find child (Query argument is a handle)

2072	                   Result: E

2074	   Figure 26: Specificity Example 14

2076	Appendix D.  Contributors

2078	   David Blacka and Tim Christensen made substantial contributions to
2079	   this document.

2081	Appendix E.  Acknowledgements

2083	   Eric Hall, William Leibzon, April Marine, George Michaelson, Tim
2084	   Christensen Cathy Murphy, Andrei Robachevsky, Marcos Sanz, Frederico
2085	   Neves, Ted Hardie and many others contributed constructively in the
2086	   mailing list discussions and IETF Meeting sessions.

2088	Authors' Addresses

2090	   Engin Gunduz
2091	   RIPE NCC
2092	   Singel 258
2093	   Amsterdam  1016AB
2094	   The Netherlands

2096	   Phone: +31 20 535 4444
2097	   Email: e.gunduz@computer.org

2099	   Andrew L. Newton
2100	   VeriSign, Inc.
2101	   21345 Ridgetop Circle
2102	   Sterling, VA  20166
2103	   USA

2105	   Phone: +1 703 948 3382
2106	   Email: andy@hxr.us; anewton@verisignlabs.com

2108	   Shane W. Kerr
2109	   RIPE NCC
2110	   Singel 258
2111	   Amsterdam  1016AB
2112	   The Netherlands

2114	   Phone: +31 20 535 4444
2115	   Email: shane@ripe.net

2117	Intellectual Property Statement

2119	   The IETF takes no position regarding the validity or scope of any
2120	   Intellectual Property Rights or other rights that might be claimed to
2121	   pertain to the implementation or use of the technology described in
2122	   this document or the extent to which any license under such rights
2123	   might or might not be available; nor does it represent that it has
2124	   made any independent effort to identify any such rights.  Information
2125	   on the procedures with respect to rights in RFC documents can be
2126	   found in BCP 78 and BCP 79.

2128	   Copies of IPR disclosures made to the IETF Secretariat and any
2129	   assurances of licenses to be made available, or the result of an
2130	   attempt made to obtain a general license or permission for the use of
2131	   such proprietary rights by implementers or users of this
2132	   specification can be obtained from the IETF on-line IPR repository at
2133	   http://www.ietf.org/ipr.

2135	   The IETF invites any interested party to bring to its attention any
2136	   copyrights, patents or patent applications, or other proprietary
2137	   rights that may cover technology that may be required to implement
2138	   this standard.  Please address the information to the IETF at
2139	   ietf-ipr@ietf.org.

2141	Disclaimer of Validity

2143	   This document and the information contained herein are provided on an
2144	   "AS IS" basis and THE CONTRIBUTOR, THE ORGANIZATION HE/SHE REPRESENTS
2145	   OR IS SPONSORED BY (IF ANY), THE INTERNET SOCIETY AND THE INTERNET
2146	   ENGINEERING TASK FORCE DISCLAIM ALL WARRANTIES, EXPRESS OR IMPLIED,
2147	   INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE
2148	   INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED
2149	   WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.

2151	Copyright Statement

2153	   Copyright (C) The Internet Society (2006).  This document is subject
2154	   to the rights, licenses and restrictions contained in BCP 78, and
2155	   except as set forth therein, the authors retain all their rights.

2157	Acknowledgment

2159	   Funding for the RFC Editor function is currently provided by the
2160	   Internet Society.