by bkroupa » Thu Apr 23, 2020 6:26 pm
Hi, I just checked on this website https://isbgpsafeyet.com/ and it seems like Sonic isn't implementing BGP securely which can be open to hijacks. The message on the website states
Your ISP (Sonic Telecom (Sonic.net, Inc.), AS46375) does not implement BGP safely. It should be using RPKI to protect the Internet from BGP hijacks.
Details
fetch https://valid.rpki.cloudflare.com
correctly accepted valid prefixes

fetch https://invalid.rpki.cloudflare.com
incorrectly accepted invalid prefixes