APNIC Labs Stats

https://stats.labs.apnic.net/

APNIC gathers many statistics and offers them on their website. However, they provide way more data than it might initially look like, since many of the datasets are not linked from their main page.

• BGP announcements by region
• Customers by ASN
• DNSSEC validation rate by region
• IPv4 vs. IPv6 RTT Comparison by region
• IPv6 Customers by ASN
• IPv6 usage by region
• Statistics about their ad-based measurement system]
• Use of open DNS resolver by region

APNIC REx

https://rex.apnic.net/overview

APNIC REx shows general information about IPv4 and IPv6 usage and delegations. It features on overview of all AS connections. This is the replacement of the earlier vizAS tool.

BGP Looking Glass

https://www.bgplookingglass.com/

The website contains a list of hundreds of looking glasses for various autonomous systems. All looking glasses are publicly accessible.

BGP Routing Leak Detection System

https://puck.nether.net/bgp/leakinfo.cgi

The website analyses RIB and BGP UPDATE information to find routing leaks. They determine a leak with the valley-free assumption, namely, if two major networks appear in the same AS_PATH. The leaks are timestamped and the faulty AS is shown.

BGPStream (CAIDA)

https://bgpstream.caida.org/

An open-source software framework for live and historical BGP data analysis, supporting scientific research, operational monitoring, and post-event analysis.

BGP streams are freely accessible and provided by Route View, RIPE, and BGPmon.

BGPStream (CISCO)

https://bgpstream.crosswork.cisco.com/

BGP Stream is a free resource for receiving alerts about hijacks, leaks, and outages in the Border Gateway Protocol.

BGP Steam provides real-time information about BGP events. It includes information about affected IPs, ASNs, and even a replay feature how the BGP announcements changed.

BGPlay

https://stat.ripe.net/special/bgplay

BGPlay shows a graph of the observed BGP routes. It allows replaying historical BGP announcements and displays route changes.

Documentation
GitHub

CAIDA BGP Hijacking Observatory

https://dev.hicube.caida.org/feeds/hijacks/events

The BGP hijacking observatory lists potential BGP hijacks. It can observe different kinds of hijacks, e.g., shorter path or more specific prefix. It lists the hijacking time, potential victims and attackers, and the affected prefix.

More details about the different hijacking methods are in the AIMS-KISMET presentation.

CAIDA Datasets Overview

https://www.caida.org/catalog/datasets/overview/

Overview of datasets, monitors, and reports produced and organized by CAIDA. Also contains links to other datasets.

Cloudflare Radar

https://radar.cloudflare.com/

Cloudflare Radar is Cloudflares reporting website about internet trends and general traffic statistics. The website shows information about observed attacks and attack types and links to the DDoS report. General traffic statistics are reported, such as the used browser, fraction of human traffic, IP, HTTP, and TLS version.

The website also provides more detailed information on domains and IP addresses. Domains have information about age, popularity, and visitors. IP addresses have ASN and geolocation information.

• https://radar.cloudflare.com/ip/134.96.0.0

More information about Cloudflare Radar is available in the introduction blogpost.

The Radar data is also available via API, for example the attack data: https://developers.cloudflare.com/api/operations/radar_get_AttacksLayer3Summary

Hyper-Specific Prefixes on the Internet

https://hyperspecifics.io/

The common wisdom is that BGP serves /24 prefixes for IPv4 and /48 prefixes for IPv6. However, this is more of a convention, than a hard rule. Larger prefixes are observed in BGP routing tables.

This website summarizes a paper about hyper specific BGP prefixes. It shows how common hyper specifics are over time for IPv4 and v6.

IPmap RIPE

https://ipmap.ripe.net/

IP geolocation services feeding itself from geolocation databases, user provided locations, and most importantly, active RTT measurements based on the RIPE Atlas system. It also provides a nice API to query the location. It provides a breakdown on where the results stem from and how much they contribute to the overall result.

IXP Pricing Overview

https://peering.exposed/

Contains a list of pricing information of different IXP.

Internet Society Pulse

https://pulse.internetsociety.org/

The Internet Society gathers data to show the general health and availability of the internet. They measure four categories: internet shutdowns, technology use, resilience, and concentration. Under internet shutdowns, they show which countries are performing what kind of disruption, e.g., regional or national. The technology sections lists basic statistics about HTTPS, IPv6, TLS, DNSSEC.

Is BGP safe yet?

https://isbgpsafeyet.com/

"Is BGP safe yet?" is an effort by Cloudflare to track the deployment of RPKI filtering across different ISPs. They provide a tester on the website with which each user can test if the current ISP is filtering RPKI invalid announcements. The website includes a list of networks and if and how they use RPKI (signing and/or filtering).

More details for this project can be found in Cloudflare's blog or on the GitHub project.

List of BGP Routing Datasets

Packet Clearing House (PCH)

The Packet Clearing House (PCH) publishes BGP data collected at more than 100 internet exchange points (IXP). The snapshot dataset contains the state of the routing tables in daily intervals.

PCH also provides raw routing data in MRT format. These contain all the update information in sorted by time.

Routing Information Service (RIS)

The RIS is the main resource from RIPE featuring all kinds of datasets about AS assignments and connectivity.

Routeviews

Routeviews is a project by the University of Oregon to provide live and historical BGP routing data.

List of Network Speed Tests

• https://speed.cloudflare.com/
  The website provides box plots showing the transfer rates.
• https://speed.measurementlab.net/
  Contribute to the Measurement Lab NDT dataset with this speed test.
• https://fast.com/
  Speed test by Netflix.

MANRS Observatory

https://observatory.manrs.org/

Mutually Agreed Norms for Routing Security (MANRS) is an initiative to improve the state of routing security. The observatory shows what kind of incidents occurred and how prepared networks are, e.g., with filtering and coordination efforts. The data is available globally and comparisons between regions are available. Historic data is accessible on the website.

Mini Internet Project

https://github.com/nsg-ethz/mini_internet_project

The mini internet project is part of the curriculum by the Networked Systems Group of ETH Zurich. It teaches the students the basic steps how to create a mini internet. It starts with the basics of intra-network routing, by setting up multiple L2 switches. Then the students have to configure L3 routers to connect multiple L2 sites together. Lastly, in a big hackathon style, the students need to connect their local network with the network of the other students, by properly configuring BGP routers and setting up routing policies.

The code and the tasks are all available in the GitHub repository.

The APNIC Blog has a nice introduction to the project too.

NIST RPKI Monitor

https://rpki-monitor.antd.nist.gov/

The NIST RPKI Monitor shows different statistics about RPKI adoption and about the validation status. It shows the number of validating prefixes, their history, the autonomous systems with the most VALID and INVALID prefixes and how validation changes over time.

PEERING: The BGP Testbed

https://peering.ee.columbia.edu/

PEERING is an environment where researchers and educators can play with BGP announcements in a real but sandboxed environment.

Description from the website:

The long-term goal of the PEERING system is to enable on-demand, safe, and controlled access to the Internet routing ecosystem for researchers and educators:

• PEERING for researchers. Today, it is hard for researchers to conduct Internet routing experiments. To perform a routing experiment, a research institution has to obtain Internet resources (IP addresses and ASNs) and establish relations with upstream networks. PEERING eliminates these obstacles and provides researchers controlled on-demand access to the routing ecosystem.
• PEERING for educators. Educators can use the PEERING infrastructure in teaching students the Internet routing architecture. The students access to live BGP sessions to multiple ISPs.

PeeringDB

https://www.peeringdb.com/

Contains information for some networks about peering information. This includes peering partners, transfer speeds, peering requirements and similar.

Documentation

RIPEstat: Providing open data and insights for Internet resources

https://stat.ripe.net/

RIPEstat is a network statistics platform by RIPE. The platform shows data for IP addresses, networks, ASNs, and DNS names. This includes information such as the registration information, abuse contacts, blocklist status, BGP information, geolocation lookups, or reverse DNS names. Additionally, the website links to many other useful tools, such as an address space hierarchy viewer, historical whois information, and routing consistency checks.

ROV Deployment Monitor

https://rov.rpki.net/

The Route Origin Validation (ROV) Deployment Monitor measures how many AS have deployed ROV. It uses PEERING for BGP announcements and uses BGP monitors to see in which ASs the wrong announcements are filtered. A blogpost at APNIC describes it in more detail.

Routing Information Service (RIS)

https://www.ripe.net/analyse/internet-measurements/routing-information-service-ris

Different information regarding reachability and connectiveness of ASs.

dn42

https://dn42.eu/Home

dn42 is a big dynamic VPN. It employs various Internet technologies, such as BGP, whois, DNS, etc.

Users can experiment with technology, they normally would not use in a separated environment.

Mostly different hackerspaces participate in the dn42 network, such as different locations of the CCC.