Bitnodes estimates the relative size of the Bitcoin peer-to-peer network by finding all of its reachable nodes.

ASN HEALTH

This page reports network health data for reachable ASNs, which are ASNs that have at least one reachable IPv4/IPv6 Bitcoin node. Data points are collected whenever a new network snapshot is available, which occurs approximately every 10 minutes. BGP alerts are promptly displayed within 10 seconds of detection and will be automatically cleared after 1 hour if they are not persistent.

Each autonomous system (AS) is associated with a unique autonomous system number (ASN) and consists of a group of IP prefixes that fall under the control of a single administrative entity, such as an Internet Service Provider (ISP). ASNs are crucial for determining the most efficient routes for network traffic using Border Gateway Protocol (BGP), which enables the Internet to operate as a global, interconnected network.

A diverse range of ASNs is essential for the Bitcoin peer-to-peer network to maintain its decentralized nature, a key characteristic that sets it apart from traditional financial systems. This diversity also enhances the network's resiliency against potential threats, making it more difficult for bad actors to disrupt the network by targeting a single point of weakness.

Page is updated automatically on new snapshot. Time since last snapshot: 0s

CLEARBROWSE
NODESCOUNTRY
UPTIME 50%LATENCY 50%
FULL NODESPRUNED NODES
IPV4 NODESIPV6 NODES
IPV4 ROA %IPV6 ROA %
AS174 ADJACENT PEERSNAMECHEAP-NET (AS22612), Suomi Communications Oy (AS16302), Contabo Asia Private Limited (AS141995), Contabo GmbH (AS51167), WIA spol. s.r.o. (AS21430), Netia SA (AS12741), Kcom Group Limited (AS12390), JOESDATACENTER (AS19969), HALLAG Kommunal GmbH (AS34347), TOTAL PLAY TELECOMUNICACIONES SA DE CV (AS17072), T-MOBILE-AS21928 (AS21928), EWE-Tel GmbH (AS9145), TM TECHNOLOGY SERVICES SDN. BHD. (AS4788), LEVEL3 (AS3356), AS-WHOLESAIL (AS20055), KDDI CORPORATION (AS2516), HVC-AS (AS29802), SERVERS-COM (AS7979), G-Core Labs S.A. (AS199524), Cgi Global Limited (AS56971), Webzilla B.V. (AS35415), Vetta Online Ltd (AS64073), MivoCloud SRL (AS39798), BlueVPS OU (AS62005), KAMATERA (AS36007), HBCI-1999TA (AS14828), SOLLUTIUM EU Sp z.o.o. (AS43641), SWAN, a.s. (AS5578), HUAWEI CLOUDS (AS136907), Salt Mobile SA (AS15796), TERASWITCH (AS20326), BIZNESSHOSTING-DBA-VOLICO (AS33724), Inovare-Prim SRL (AS60602), Digiweb ltd (AS31122), 123NET (AS12129), Kamatera Inc (AS41436), Alibaba US Technology Co., Ltd. (AS45102), ORACLE-BMC-31898 (AS31898), AS-GLOBALTELEHOST (AS63023), Quickline AG (AS15600), StarNet Solutii SRL (AS31252), CETIN Ltd. Belgrade (AS15958), YouFibre Limited (AS212655), Digi Romania S.A. (AS8708), Integrated Telecom Co. Ltd (AS35753), Daedalean AG (AS212323), GANDI SAS (AS29169), Iomart Cloud Services Limited (AS20860), LIMESTONENETWORKS (AS46475), LG DACOM Corporation (AS3786), Yelles AB (AS206170), PLATEAU (AS21782), Mammoth Media Pty Ltd (AS133159), Pq Hosting Plus S.r.l. (AS44477), Occom Pty Ltd (AS135126), Datacamp Limited (AS60068), TPG Telecom Limited (AS7545), Odido Netherlands B.V. (AS50266), PONYNET (AS53667), Emirates Telecommunications Group Company (etisalat Group) Pjsc (AS8966), Serverius Holding B.V. (AS50673), Scaleway S.a.s. (AS29447), Content Delivery Network Ltd (AS13188), T-2, d.o.o. (AS34779), NForce Entertainment B.V. (AS43350), AS-COPR (AS395075), HZ Hosting Ltd (AS59711), firstcolo GmbH (AS44066), Fastcom Broadband Limited (AS39449), CANACA-210 (AS33139), Nos Comunicacoes, S.A. (AS2860), ASN-STARRY (AS395354), Scalaxy B.V. (AS58061), STINET-1 (AS30027), UNITED-TELEPHONE (AS40237), Bredband2 AB (AS29518), EASTLINK-HSI (AS11260), Hong Kong Broadband Network Ltd. (AS9269), LATITUDE-SH (AS396356), IWEB-AS (AS32613), AS-COLOCROSSING (AS36352), Triple T Broadband Public Company Limited (AS45758), Kabel-TV Lampert GmbH & Co KG (AS59890), CYBERLYNK (AS21554), Telia Lietuva, AB (AS8764), Xtra Telecom S.A. (AS15704), CETIN a.s. (AS28725), Liberty Global B.V. (AS6830), Gigabit Hosting Sdn Bhd (AS55720), Mega Cable, S.A. de C.V. (AS13999), Cyberlink AG (AS15623), O2 Czech Republic, a.s. (AS5610), WIIT AG (AS24961), FORT-COLLINS-CONNEXION (AS397142), OMNIS (AS19237), ANTIK Telecom s.r.o (AS42841), BACOM (AS577), EOLO S.p.A. (AS35612), AS-SONICTELECOM (AS46375), EBOX (AS1403), Leaseweb UK Limited (AS205544), Andorra Telecom, S.a.u. (AS6752), HOMEWORKS-1 (AS396905), Green Floid LLC (AS21100), AS-TING-BACKBONE (AS32133), ServerHouse Ltd (AS21472), SHAW (AS6327), Mobile Telecommunication Company Saudi Arabia Joint-Stock company (AS43766), UNINET (AS8151), ENZUINC (AS18978), INTERDNESTRKOM, Sovmestnoe Zakrytoe Aktsionernoe Obshchestvo (AS1547), MARK-TWAIN (AS10750), LeaseWeb Netherlands B.V. (AS60781), WIN (AS23188), PT Herza Digital Indonesia (AS140443), Rostelecom (AS12389), METROOPTIC (AS29909), 31173 Services AB (AS39351), Global Layer B.V. (AS49453), Partner Communications Ltd. (AS12400), Akenes SA (AS61098), ATT-INTERNET4 (AS7018), Korea Telecom (AS4766), Icc Networks Ltd (AS59445), HIVE-DATA-CENTER (AS33185), Euskaltel S.A. (AS12338), WII (AS32097), Kamatera Inc (AS204548), Spitfire Network Services Limited (AS16082), MVPS LTD (AS202448), Scaleway S.a.s. (AS12876), IOFLOOD (AS53755), Nearoute Limited (AS51847), Reunicable (AS37002), WorldStream B.V. (AS49981), AS-GLOBALTELEHOST (AS62563), M247 Europe SRL (AS9009), myNet GmbH (AS31543), Aussie Broadband (AS4764), BIZNET NETWORKS (AS17451), COGECOWAVE (AS7992), RICAWEBSERVICES (AS26832), TELUS Communications (AS852), XMISSION (AS6315), SDL-20-AS (AS11550), GORGE-NETWORKS (AS11233), ROGERS-COMMUNICATIONS (AS812), Maximum-Net LLC (AS43139), FRONTIER-FRTR (AS5650), MAXXSOUTH-BROADBAND (AS46687), BAI-IP-SERVICES (AS23316), Hydra Communications Ltd (AS25369), TACH (AS397412), Avatel Telecom, SA (AS200845), PC-MANIACS (AS327960), DIGITALOCEAN-ASN (AS14061), The Infrastructure Group B.V. (AS60404), JM-DATA GmbH (AS25447), TIME dotCom Berhad No. 14, Jalan Majistret U126 Hicom Glenmarie Industrial Park 40150 Shah Al (AS9930), Hostopia Australia Web Pty Ltd (AS55803), AUREON-5056 (AS5056), Visual Online S.A. (AS9008), MULTIB-40788 (AS40788), M5HOSTING (AS21581), Free SAS (AS12322), CONTABO-40021 (AS40021), Play (AS9141), COMCAST-7922 (AS7922), WEBNX (AS18450), Fornex Hosting S.L. (AS44051), WIZ K.K. (AS54415), SASKTEL (AS803), National Internet Backbone (AS9829), Tele2 SWIPnet (AS1257), 24SHELLS (AS55081), InterneXt 2000, s.r.o. (AS25424), SH.cz s.r.o. (AS39392), AXCELX-NET (AS33083), Green Floid LLC (AS59729), Servers Tech Fzco (AS216071), AS-CMN (AS30600), Stream Networks Ltd (AS198736), SOPRADO GmbH (AS20546), 2provide GmbH (AS44656), Aruba S.p.A. (AS31034), JCOM Co., Ltd. (AS9824), Ooredoo Q.S.C. (AS8781), Andrews & Arnold Ltd (AS20712), Bezeq- THE ISRAEL TELECOMMUNICATION CORP. LTD. (AS6810), Societe Francaise Du Radiotelephone - SFR SA (AS15557), Chinanet (AS4134), HOSTKEY-USA (AS395839), Medianet Invest Ae (AS200736), EDPNET Belgium BV (AS9031), Three (AS206067), SINGLEHOP-LLC (AS32475), Mila hf (AS6677), MULTA-ASN1 (AS35916), EDGEUNO S.A.S (AS7195), One New Zealand Group Limited (AS9500), INDOSAT Internet Network Provider (AS4761), SonderCloud Limited (AS133861), GTCOMM (AS36666), ARTERIA Networks Corporation (AS2519), TWIN-LAKES (AS19331), Virtual Systems LLC (AS30860), OVH SAS (AS16276), QUICKMEG (AS54702), Bluewin (AS3303), Hostinger International Limited (AS47583), Olivenet Network S.L. (AS201746), Deutsche Telekom AG (AS3320), NEXEON (AS20278), VIDEOTRON (AS5769), HOTWIRE-COMMUNICATIONS (AS23089), Hrvatski Telekom d.d. (AS5391), CHINA UNICOM China169 Backbone (AS4837), Luxembourg House of Cybersecurity (AS197869), UUNET (AS701), Colombia (AS19429), VSE NET GmbH (AS9063), Adamo Telecom Iberia S.A. (AS35699), SERVICIO DI TELECOMUNICACION DI ARUBA SETAR N.V. (AS11816), Compania Dominicana de Telefonos S. A. (AS6400), DNA Oyj (AS16086), velia.net Internetdienste GmbH (AS29066), MICROSOFT-CORP-MSN-AS-BLOCK (AS8075), FUSE-NET (AS6181), Trabia SRL (AS43289), COMPLETEWEBNET (AS13706), RURAL-TELEPHONE-SVCCO (AS14155), AS-30083-US-VELIA-NET (AS30083), ASN-SHREWS (AS26292), IS-AS-1 (AS19318), Retelit Digital Services S.p.A. (AS3302), Aire Networks Del Mediterraneo Sl Unipersonal (AS29119), AS-VULTR (AS20473), Gtd Internet S.A. (AS14259), SERVERROOM (AS19624), Eir Broadband (AS5466), GREENLIGHT-NETWORKS (AS31775), Belcloud LTD (AS44901), HUB66 (AS395510), IQ-FIBER (AS400427), Your Hosting B.V. (AS48635), Jsc timeweb (AS9123), Melbikomas UAB (AS56630), FIBERSTATE (AS26042), MAJESTIC-HOSTING-01 (AS396073), Tencent Building, Kejizhongyi Avenue (AS132203), Superloop (AS38195), MANAGEDNETWORK (AS7057), Republican Unitary Telecommunication Enterprise Beltelecom (AS6697), SERVER-MANIA (AS55286), AMAZON-02 (AS16509), Alexhost Srl (AS200019), TVC-AS1 (AS13536), CC-3272 (AS11290), Leaseweb Deutschland GmbH (AS28753), LEASEWEB SINGAPORE PTE. LTD. (AS59253), USINTERNET (AS10242), AS40676 (AS40676), ENET-2 (AS10297), AltusHost B.V. (AS51430), OSNET (AS21559), FLYNET SRL (AS207054), Hostkey B.v. (AS57043), SUDDENLINK-COMMUNICATIONS (AS19108), PRECISION-DATA-SOLUTIONS (AS11142), PODA a.s. (AS30764)

TERMINOLOGY

Reachable ASNASN that contains at least 1 reachable Bitcoin node.
Latency 50%50th percentile (median) ping message round-trip time in milliseconds.
Uptime 50%50th percentile (median) uptime in hours from persistent connections.
Block 50%50th percentile (median) latest block inv propagation time in milliseconds.
Height 50%50th percentile (median) block height delta from consensus height.
IPv4 ROA %Percentage of IPv4 nodes covered by ROA (Route Origin Authorization) IPv4 prefixes for the ASN.
IPv6 ROA %Percentage of IPv6 nodes covered by ROA (Route Origin Authorization) IPv6 prefixes for the ASN.
Adjacent peersAdjacent peering ASNs that contain at least 1 reachable Bitcoin node.
BGP alertThis ASN is originating an IP prefix owned by another ASN during the past hour.
BGP alertAnother ASN is originating an IP prefix owned by this ASN during the past hour.

BGP ALERT METHODOLOGY

One threat to the Bitcoin peer-to-peer network's security that is often overlooked is Border Gateway Protocol (BGP) hijacking. In a BGP hijacking attack, an attacker manipulates BGP routes to redirect traffic intended for a Bitcoin node to a malicious node under the attacker's control. This can lead to the interception and manipulation of Bitcoin block or transaction messages, potentially resulting in financial losses. Adding to this risk, Bitcoin traffic is unencrypted by default, making it susceptible to interception and manipulation by attackers who gain access to the network traffic.

BGP hijacking attacks can occur anywhere along the path between a Bitcoin node and its peers, so it is important for Bitcoin node operators to be able to monitor for any suspicious routing changes, both within their own autonomous system (AS) and in the ASes of their peers.


A BGP hijack in the operator's own AS1 (Fig. 1) could redirect traffic away from the legitimate Bitcoin node ₿1 while a hijack in the destination AS2 (Fig. 2) could redirect traffic intended for the Bitcoin node ₿2 to a malicious node under the attacker's control.

To mitigate the risk of BGP hijacking attacks, it is important to have monitoring tools in place that can detect and alert network operators to any unusual routing changes. However, existing monitoring tools may not be suitable for Bitcoin node operators as they are primarily designed for general network operations. Hence, a specialized monitoring tool, such as Bitnodes BGP alert, is necessary in surfacing possible BGP hijacking attacks affecting the Bitcoin network.

Bitnodes uses rpki-client to periodically (hourly) fetch the latest Route Origin Authorizations (ROAs) from each of the five Regional Internet Registries (RIRs), i.e. AFRINIC, APNIC, ARIN, LACNIC, RIPE, and consolidate them into a single JSON file:

{
    "metadata": {.., "buildtime": "2023-01-01T00:00:00Z", ..},
    "roas": [
        {"asn": "AS14061", "prefix": "134.209.0.0/16", "maxLength": 24},
        ..
    ]
}

All IP prefixes from the JSON file are stored in a database and treated as Validated ROA Payload (VRP) for up to 24 hours. Bitnodes uses RIPE Routing Information Service Live (RIS Live) to receive live BGP announcement messages. For each announcement message:

{
    'peer': '27.111.230.35', 'peer_asn': '133210',
    'path': [133210, 9498, 14061],
    'announcements': [{'next_hop': '27.111.228.40', 'prefixes': ['134.209.144.0/20']}], ..
}

Bitnodes queries its VRP database to validate each of the prefixes in the message:

Query outputOutcome
Prefix in the message matches a VRP record. The match can be equal or prefix being more specific with its prefix length no greater than the matching VRP's max. length.VALID
Origin AS in the message did not match the matching VRP record or prefix in the message is more specific than the matching VRP's max. length.INVALID
No matching VRPs.UNKNOWN

If the validation outcome is marked as INVALID, the reachable ASN on the origin AS end will trigger an alert labeled as BGP alert, and the reachable ASN on the VRP's AS end will trigger an alert labeled as BGP alert, for a duration of up to one hour from the time of the last INVALID validation. It is important to note that the presence of these alerts should not automatically be interpreted as indicative of a BGP hijack. They could potentially result from temporary misconfigurations or other benign causes. Additional analysis is almost always warranted, including but not limited to monitoring for anomalous changes in ping latency, block propagation time, or an increase in block height delta from consensus height.

Join the Network

Be part of the Bitcoin network by running a Bitcoin full node, e.g. Bitcoin Core.

Use this tool to check if your Bitcoin client is currently accepting incoming connections from other nodes. Port must be between 1024 and 65535.