BGP can run multithreaded (see posting above), but when you have only 1 peer there is nothing to gain that way.
Is this only a test? Or else, why would you run full-table BGP with only 1 peer?
Ask the ISP to send you only a default route...

I don't see how any of that would be an advantage when having only one peer.

I don't think you can/should do RPKI validation on a single-peer endpoint. Leave that to your upstream ISP. They can do all the route selection for you and send you only a default route.

I don't think you can/should do RPKI validation on a single-peer endpoint. Leave that to your upstream ISP. They can do all the route selection for you and send you only a default route.

Are you new to network operations and NOG forums? Do you even know what MANRS is? Very few Tier 1s, Tier 2s and Tier 3s in the world do proper end-to-end, back-to-back RPKI validation/filtering. It is why we take matters to our own hands and do RPKI validation/filtering on our end.

Glad people like you aren't working with me, I'd fire people like you.

i am pretty sure there is a way to give the technical message without going into personal affairs

I have a few questions regarding the ESXi host and the CHR VM:
What CPU is used? Intel Xeon E5-2620? Intel Xeon Gold 5415+? AMD EPYC 7302?
Are the vCPU on the same Socket? (think NUMA and accessing RAM from different CPU socket)
What setting are you using for the CPU/MMU virtualization?
Which physical NICs are in use? Intel i350? Mellanox Connectx3?
What adapter type is selected for the virtual NIC in the VM? E1000E or VMXNET If latter: is Direct I/O enabled?

Lastly: How far are you overprovisioned on the ESXi? What's the average load accross all CPU cores (Monitor -> Performance)?

@DarkNate

As far as I know at least in our region (Asia), ROA record is a _must_ now a days if you are advertising your prefix to upstream that's why pe1chl is suggesting that let the upstream handle this RPKI validation, I personally has this mentality too are we really out of touch on reality? Almost on a weekly basis I have this ticket on our NOC that our downstream has a routing issue only to find out that they don't have ROA record tagged to their AS in APNIC, this has made me to believed that it was really mandatory (RPKI Validation) in every part of the world (t1,t2 & t3 ISP). now you are saying that it is not the case?

Can you enlighten us more please? honestly I don't get it and now i'm fairly confused could you restrain yourself please don't want to argue with you :p

there is journey remaining towards full ROA compliance