Hmm, the ATHENE/German National Research Center for Applied Cybersecurity people are up to something with RPKI... They have spun off 64 subdomains with RPKI repos, and are seemingly doing selective HTTP 403's to some of the 64 repos depending on the source address accessing their repos.
one honk maybe more