HN · HACKER_NEWS// 10d agoINFRASTRUCTURE

Cloudflare tests ISP BGP filtering

Is BGP safe yet? is a Cloudflare site that checks whether your ISP filters invalid BGP routes using RPKI origin validation. The test works by attempting to load content from an intentionally invalid route: if it succeeds, your network accepted a route it should have rejected.

// ANALYSIS

Hot take: this is less a product than a public accountability demo, and that’s exactly why it works.

–It makes a normally invisible infrastructure risk legible to non-network folks.
–The signal is practical, not theoretical: a pass/fail test tied to real route validation behavior.
–It doubles as advocacy, nudging ISPs toward RPKI and MANRS without requiring users to understand BGP deeply.
–The UX is intentionally simple, but the underlying problem is still very much not solved.

// TAGS

bgprpkirouting-securityispinternet-infrastructurecloudflarenetwork-security

DISCOVERED

10d ago

2026-04-01

PUBLISHED

10d ago

2026-04-01

RELEVANCE

8/ 10

AUTHOR

janandonly