Maybe someone mistyped "65271"? Which is still bad, but not at bad
(IMHO).
Interestingly, AS54271 is the last # of an unassigned block:
46080-47103 Assigned by ARIN whois.arin.net 2008-03-27
47104-48127 Assigned by RIPE NCC whois.ripe.net 2008-04-07
48128-54271 Unassigned
54272-64511 Reserved by the IANA
64512-65534 Designated for private use (Allocated to the IANA)
65535 Reserved
I would be willing to bet that the IP netblocks being advertised are
unallocated (or, unused within an allocated block). In the past, before
botnets were so common, spammers would often hijack unused netblocks,
advertise routes to them, flood spam from them, then the routes would
disappear, making it impossible to track the spammers.
Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
o: 843-849-8214
c: 843-224-2494
s: 843-564-4224
My PGP Fingerprint is:
BAA2 1F2C 5543 5D25 4636 A392 515C 5045 CF39 4253
Wouldn't it be better to ask the folks in Hungary (AS20922) who are peering
with this site?
One side, I'd buy the typo. Both sides, mutual typos are a little more
difficult.
Not that conspiracy theories are all that much fun, but I'm finding the
one-sided mistake hard to believe. Either that or the folks at AS20922
haven't figured out that an open bgp peer isn't a great idea!
interestingly, before july 7th these prefixes were originating from another
private as - 65501, until sometime that day routes were withdrawn from 65501
and began being announced from 54271...