Cogent RPKI invalid filtering

• Previous message (by thread): DOD prefixes and AS8003 / GRSCORP
• Next message (by thread): Cogent RPKI invalid filtering
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

According to Cloudflares isbgpsafeyet.com, Cogent has been considered 
"safe" and is filtering invalids.

But I have found that to be untrue (mostly). It appears that some days 
they filter IPv4, sometimes not, and IPv6 invalids are always coming 
through. I know it's Cogent, but curious as to what others are seeing.



invalid.rpki.cloudflare.com has address 103.21.244.15
invalid.rpki.cloudflare.com has address 103.21.244.14
invalid.rpki.cloudflare.com has IPv6 address 2606:4700:7000::6715:f40e
invalid.rpki.cloudflare.com has IPv6 address 2606:4700:7000::6715:f40f



BGP routing table entry for 103.21.244.0/24
   174 13335, (aggregated by 13335 172.69.172.1)
       Origin IGP, metric 83040, localpref 100, valid, external, best, 
group-best, import-candidate
       Community: 174:21101 174:22012


BGP routing table entry for 2606:4700:7000::/48
   174 13335, (aggregated by 13335 172.69.172.1)
     2001:550:2f01:: from 2001:550:2f01:: (66.28.1.115)
       Origin IGP, metric 83040, localpref 100, valid, external, best, 
group-best, import-candidate
       Received Path ID 0, Local Path ID 1, version 1272502628
       Community: 174:21101 174:22012


-- 
inoc.net!rblayzor
XMPP: rblayzor.AT.inoc.net
PGP:  https://pgp.inoc.net/rblayzor/

• Previous message (by thread): DOD prefixes and AS8003 / GRSCORP
• Next message (by thread): Cogent RPKI invalid filtering
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]