// first 10 minutes

maritime AIS · sanctions / dark vessel — quick-start

maritime AIS / sanctions — first 10 minutes. freeze the data window before AIS history expires. print this, check boxes, then run the primary tools.

checklist

identify the vessel: IMO number, MMSI, call sign, and flag state — MMSI and IMO are stable; vessel name and flag can be changed.
pull AIS track history from at least two providers (MarineTraffic, VesselFinder, Spire) for the period in question — gaps may be dark-vessel behavior or receiver coverage gaps; two sources disambiguate.
note the exact UTC timestamps of any AIS signal gaps, position jumps, or last-known-position events — these are the primary evidence.
pull the vessel's port call history from Lloyd's, Equasis, or UNHCR data for the investigation period.
check the vessel against current OFAC SDN list, EU consolidated list, and UN Security Council sanctions list — note listing date relative to the suspected voyage.
pull the vessel's ownership and beneficial ownership chain from Equasis or Lloyd's — sanctioned beneficial owners are the legal exposure, not just the flagged vessel.
note any name, flag, or MMSI changes in the vessel's history — spoofing and reflagging are common evasion methods.
preserve the AIS data exports as CSV with metadata — lat/lon, speed, heading, status, receiver ID, timestamp.
identify the voyage ports and transit states — sanctions exposure depends on where the vessel called, not just what it carried.
begin the primary tool path below — AIS track analyzer and sanctions cross-reference tool.

// first 10 minutes

maritime AIS / sanctions — first 10 minutes. freeze the data window before AIS history expires. print this, check boxes, then run the primary tools.

identify the vessel: IMO number, MMSI, call sign, and flag state — MMSI and IMO are stable; vessel name and flag can be changed.
pull AIS track history from at least two providers (MarineTraffic, VesselFinder, Spire) for the period in question — gaps may be dark-vessel behavior or receiver coverage gaps; two sources disambiguate.
note the exact UTC timestamps of any AIS signal gaps, position jumps, or last-known-position events — these are the primary evidence.
pull the vessel's port call history from Lloyd's, Equasis, or UNHCR data for the investigation period.
check the vessel against current OFAC SDN list, EU consolidated list, and UN Security Council sanctions list — note listing date relative to the suspected voyage.
pull the vessel's ownership and beneficial ownership chain from Equasis or Lloyd's — sanctioned beneficial owners are the legal exposure, not just the flagged vessel.
note any name, flag, or MMSI changes in the vessel's history — spoofing and reflagging are common evasion methods.
preserve the AIS data exports as CSV with metadata — lat/lon, speed, heading, status, receiver ID, timestamp.
identify the voyage ports and transit states — sanctions exposure depends on where the vessel called, not just what it carried.
begin the primary tool path below — AIS track analyzer and sanctions cross-reference tool.