I'm currently updating my organization's RDAP system up to the latest ICANN profile so please forgive me if I sound a little salty.<p>What ICANN aren't admitting is that while there was no formal RFC standard to the output of WHOIS ICANN themselves had mandated the output format of the WHOIS output. To go live with your shiny new gTLD you had to pass a test of your whois server output. It was strict enough that we had to remove an extra blank line is the disclaimer at the end of the output.<p>Every whois server I ever checked while writing my org's version supported UTF8.<p>The data has to be publicly available so authentication and encryption doesn't matter. In any case there is currently nothing requiring RDAP servers to authenticate anything.<p>The amount of search ability I've seen in most rdap servers so far is pretty limited.<p>The RDAP output is json but its complicated and there are so many options that realistically everyone is developing to pass the icann profile so no different to whois, and in the end we still live in a post GDRP world so all the useful data is redacted so none of this matters anyway.
I’ve been using Whois every now and then to ban ip ranges outside the USA where there is suspicious activity coming from.<p>The variety of responses is a lot. And it seems like you’re not required to provide accurate information other than just one field (ipaddr or something like that). For example I’ll see an allocation that has over a million addresses but in their Whois text they say they’re a /24 network (256 addresses). This happens with Chinese networks every single time so I have to calculate the correct network…<p>(Sorry, commuting right now so I can’t show examples here)
The big problem there is no easy and consistent way to query RDAP because there are no clients in Debian or Ubuntu. There is one in the <i>experimental</i> stage [1] in Debian, so perhaps in Debian 14?<p>And yes, I know, there are Perl-Apps [2], Go-Apps [3] and so on which can be installed within minutes. But this extra step (including debugging which happens when compiling/installing from source) isn't going to help RDAP to get traction.<p>[1] <a href="https://packages.debian.org/experimental/rdap" rel="nofollow">https://packages.debian.org/experimental/rdap</a>
[2] <a href="https://metacpan.org/pod/App::rdapper" rel="nofollow">https://metacpan.org/pod/App::rdapper</a>
[3] <a href="https://github.com/openrdap/rdap">https://github.com/openrdap/rdap</a>