August 2024: diagnosed campus-wide CDN access loss as inbound traffic-steering prefix leak via Internet2 customer misconfiguration; formed root-cause hypothesis overnight, obtained external corroboration from Google network engineer before 8am, withstood management objection, restored CDN access via peer shutdown within minutes. Followed with RPKI/ROA registration for ARIN-delegated prefixes in collaboration with Internet2 Sr. Engineer — authoritative origin validation now in place. Redesigned BGP advertisement architecture: /16 universal to all peers, /19s for inbound sector steering, no more-specifics exposed to any peer with commodity internet adjacency — eliminates the leak vector class permanently.