Sonic.net

I have a site to site vpn running across two sonic endpoints (unfortunately with dynamic ip due to fiber) and while it's configured securely, I wanted to further lock it down by restricting traffic at the firewall level by dropping traffic that doesn't originate from a sonic ip address.
Is the list here enough or would I be missing anything?: https://bgp.he.net/AS7065#_prefixes

That's everything from our ASN, so that should be all the potential live IPs we have today. But you could probably limit to the subnet each end-point is in today, and be even more secure, then update if/when that subnet changes.