A free and easy way to check your current IP address and additional information the requesting client (e.g. your browser) is sending to the server. Track your or your server's public IP address and the associated ASN number, location details, timezone, as well as the user-agent or the requesting client.
Without any ads, trackers, or weird requirements.
In addition to the plain/text response, this API also supports the JSON format and
HTTP Headers responses (e.g. using the HEAD method).
The API always returns the IP address as x-ipapp-ip and the IP version as x-ipapp-ip-version in the HTTP headers for all endpoints. So no matter which endpoint you use or which format you use (e.g. JSON or plain/text) or which request method you use (e.g. HEAD or GET or POST), you will always have the IP address and version available in the HTTP headers.
- Available Endpoints
- HTTP Methods
- Usage
- JSON
- x-ipapp-ip HTTP Header
- x-ipapp-ip-version HTTP Header
- Python Package
- Status Codes
- Other Accepted Paths
- Rate Limiting
- Geographic Restrictions
- Changelog
- Ideas / Questions / Suggestions
- Sponsoring
- Credits
- License
- Disclaimer
The API accepts requests to the following paths:
| Path | Name | Description |
|---|---|---|
/ |
IP address | Endpoint for returning the current IP address |
/asn |
ASN | Endpoint for returning the ASN of the current IP address |
/headers |
HTTP headers | Endpoint for returning HTTP headers the client sent to the server |
/loc |
Location | Endpoint for returning the location of the current IP address |
/sec |
Security | Endpoint for returning the security information of the current IP address (incl. bot detection) |
/tz |
Timezone | Endpoint for returning the timezone of the current IP address |
/ua |
User-Agent | Endpoint for returning the User-Agent of the current IP address |
The API endpoints supports the following HTTP methods:
The following cURL and Python (using the requests library) examples will return the IP address of the requesting client.
Note: Since cURL does not need the URL to include the scheme, just using
ip.appwill work on most machines. However, if it doesn't, just addhttps://to the address.
Returns plain text or JSON in HTTP response body.
curl ip.apprequests.get('https://ip.app').text.strip()wget -qO- ip.appconst ip_address = (await (await fetch('https://ip.app/')).text()).trim()trim(file_get_contents('https://ip.app'))perl -MLWP::Simple -E 'say get("https://ip.app") =~ s/\s+$//r'require 'net/http'; Net::HTTP.get(URI('https://ip.app')).strip(Invoke-WebRequest ip.app).Content.Trim()(await new HttpClient().GetStringAsync("https://ip.app")).Trim()try String(contentsOf: URL(string: "https://ip.app")!).trimmingCharacters(in: .whitespacesAndNewlines)(await http.get(Uri.parse('https://ip.app'))).body.trim()reqwest::get("https://ip.app").await?.text().await?.trim()http --body ip.appecho -e "GET / HTTP/1.1\r\nHost: ip.app\r\nConnection: close\r\n\r" | nc -w 3 ip.app 80 | tail -1Returns plain text or JSON in HTTP response body. Any POST data submitted is ignored and disregarded.
curl -X POST ip.apprequests.post('https://ip.app').text.strip()No HTTP response body is returned, only HTTP headers are returned.
The API endpoint / returns one of the following response values across all formats (plain text, JSON, and HTTP header):
- String: The detected public IP address in IPv4 format (e.g.,
1.1.1.1) or IPv6 format (e.g.,2001:db8::1). - Empty Response: Returned as a fallback when no IP address is detected.
The API endpoint / will also return in JSON, and HTTP header the following response values:
- IP Version: The version of the detected IP address, e.g.
4or6or empty string.
The following cURL and Python (using the requests library) examples will return the ASN associated with the current IP address.
Returns plain text or JSON in HTTP response body.
curl ip.app/asnrequests.get('https://ip.app/asn').textwget -qO- ip.app/asnReturns plain text or JSON in HTTP response body. Any POST data submitted is ignored and disregarded.
curl -X POST ip.app/asnrequests.post('https://ip.app/asn').textNo HTTP response body is returned, only HTTP headers are returned. All HTTP headers sent by the requesting client (e.g. your browser) are returned alongside the HTTP server response headers, however the names of the client's HTTP headers start with x-ipapp-.
Read the ASN in HEAD response and extract only the request headers:
curl -sI ip.app/asn | grep -i "x-ipapp-asn"Read the ASN in HEAD response, extract only the relevant request headers:
requests.head('https://ip.app/asn').headers.get('x-ipapp-asn', '')The API endpoint /asn returns one of the following response values across the formats plain text and JSON:
- String: representing the ASN associated with the current IP address. Where the key is the ASN number, starting with
ASand the value is the ASN organization name (if available), separated by a colon and a space:. - Empty Response: An empty response or
{}as no ASN was found.
The following cURL and Python (using the requests library) examples will return the HTTP headers the requesting client (e.g. your browser) is sending to the server.
Note: Since cURL does not need the URL to include the scheme, just using
ip.appwill work on most machines. However, if it doesn't, just addhttps://to the address.
Returns plain text or JSON in HTTP response body.
curl ip.app/headersrequests.get('https://ip.app/headers').textwget -qO- ip.app/headersReturns plain text or JSON in HTTP response body. Any POST data submitted is ignored and disregarded.
curl -X POST ip.app/headersrequests.post('https://ip.app/headers').textNo HTTP response body is returned, only HTTP headers are returned. All HTTP headers sent by the requesting client (e.g. your browser) are returned alongside the HTTP server response headers, however the names of the client's HTTP headers start with x-ipapp-.
Read the HTTP headers in HEAD response and extract only the request headers:
curl -sI ip.app/headers | grep -i "x-ipapp-header-"Removing the x-ipapp-header- prefix:
curl -sI ip.app/headers | grep -i "x-ipapp-header-" | sed 's/x-ipapp-header-//i'Read the HTTP headers in HEAD response, extract only the request headers and removing the x-ipapp-header- prefix:
response = requests.head('https://ip.app/headers')
for key, value in response.headers.items():
if key.lower().startswith('x-ipapp-header-'):
clean_key = key[15:] # Remove 'x-ipapp-header-' prefix
print(f"{clean_key}: {value}")One-liner:
{k[8:]: v for k, v in requests.head('https://ip.app/headers').headers.items() if k.lower().startswith('x-ipapp-header-')}The API endpoint /headers returns one of the following response values across the formats plain text and JSON:
- Key: Value pairs: representing the HTTP headers the requesting client sent to the server.
- Empty Response: An empty response or
{}as no headers were sent.
The following cURL and Python (using the requests library) examples will return the location information associated with the current IP address.
Returns plain text or JSON in HTTP response body.
curl ip.app/locrequests.get('https://ip.app/loc').textwget -qO- ip.app/locReturns plain text or JSON in HTTP response body. Any POST data submitted is ignored and disregarded.
curl -X POST ip.app/locrequests.post('https://ip.app/loc').textNo HTTP response body is returned, only HTTP headers are returned. All HTTP headers sent by the requesting client (e.g. your browser) are returned alongside the HTTP server response headers, however the names of the client's HTTP headers start with x-ipapp-.
Read the ASN in HEAD response and extract only the request headers:
curl -sI ip.app/loc | grep -i "x-ipapp-loc"Removing the x-ipapp-loc- prefix:
curl -sI ip.app/loc | grep -i "x-ipapp-loc-" | sed 's/x-ipapp-loc-//i'Read the location in HEAD response, extract only the request headers and removing the x-ipapp-loc- prefix:
response = requests.head('https://ip.app/loc')
for key, value in response.headers.items():
if key.lower().startswith('x-ipapp-loc-'):
clean_key = key[12:] # Remove 'x-ipapp-loc-' prefix
print(f"{clean_key}: {value}")One-liner:
{k[12:]: v for k, v in requests.head('https://ip.app/loc').headers.items() if k.lower().startswith('x-ipapp-loc-')}The API endpoint /loc returns one of the following response values across the formats plain text and JSON:
- Key: Value pairs: representing the location associated with the current IP address.
- Empty Response: An empty response or
{}as no location was found.
The following cURL and Python (using the requests library) examples will return the security information associated with the current IP address and user-agent. The bot score (default = 0, range = 1-100, higher = more human), whether the user-agent is a verified bot, and the bot category (if applicable), is extracted from the Cloudflare bot detection system based on the information sent by the requesting client to the server. The remaining security information includes the HTTP protocol, TLS version, TLS cipher and TCP RTT (round trip time in milliseconds) detected by the server for establishing the connection.
Returns plain text or JSON in HTTP response body.
curl ip.app/secrequests.get('https://ip.app/sec').textwget -qO- ip.app/secReturns plain text or JSON in HTTP response body. Any POST data submitted is ignored and disregarded.
curl -X POST ip.app/secrequests.post('https://ip.app/sec').textNo HTTP response body is returned, only HTTP headers are returned. All HTTP headers sent by the requesting client (e.g. your browser) are returned alongside the HTTP server response headers, however the names of the client's HTTP headers start with x-ipapp-.
Read the security information in HEAD response and extract only the request headers:
curl -sI ip.app/sec | grep -i "x-ipapp-sec"Removing the x-ipapp-sec- prefix:
curl -sI ip.app/sec | grep -i "x-ipapp-sec-" | sed 's/x-ipapp-sec-//i'Read the security information in HEAD response, extract only the request headers and removing the x-ipapp-sec- prefix:
response = requests.head('https://ip.app/sec')
for key, value in response.headers.items():
if key.lower().startswith('x-ipapp-sec-'):
clean_key = key[12:] # Remove 'x-ipapp-sec-' prefix
print(f"{clean_key}: {value}")One-liner:
{k[12:]: v for k, v in requests.head('https://ip.app/sec').headers.items() if k.lower().startswith('x-ipapp-sec-')}The API endpoint /sec returns one of the following response values across the formats plain text and JSON:
- Key: Value pairs: representing the security information associated with the current IP address and user-agent.
- Empty Response: An empty response or
{}as no security information was found.
The following cURL and Python (using the requests library) examples will return the timezone associated with the current IP address.
Returns plain text or JSON in HTTP response body.
curl ip.app/tzrequests.get('https://ip.app/tz').textwget -qO- ip.app/tzReturns plain text or JSON in HTTP response body. Any POST data submitted is ignored and disregarded.
curl -X POST ip.app/tzrequests.post('https://ip.app/tz').textNo HTTP response body is returned, only HTTP headers are returned. All HTTP headers sent by the requesting client (e.g. your browser) are returned alongside the HTTP server response headers, however the names of the client's HTTP headers start with x-ipapp-.
Read the ASN in HEAD response and extract only the request headers:
curl -sI ip.app/tz | grep -i "x-ipapp-tz"Read the timezone in HEAD response, extract only the relevant request headers:
requests.head('https://ip.app/tz').headers.get('x-ipapp-tz', '')The API endpoint /tz returns one of the following response values across the formats plain text and JSON:
- String: representing the timezone associated with the current IP address.
- Empty Response: An empty response or
{}as no timezone was found.
The following cURL and Python (using the requests library) examples will return the User-Agent of the current IP address.
Returns plain text or JSON in HTTP response body.
curl ip.app/uarequests.get('https://ip.app/ua').textwget -qO- ip.app/uaReturns plain text or JSON in HTTP response body. Any POST data submitted is ignored and disregarded.
curl -X POST ip.app/uarequests.post('https://ip.app/ua').textNo HTTP response body is returned, only HTTP headers are returned. All HTTP headers sent by the requesting client (e.g. your browser) are returned alongside the HTTP server response headers, however the names of the client's HTTP headers start with x-ipapp-.
Read the ASN in HEAD response and extract only the request headers:
curl -sI ip.app/ua | grep -i "x-ipapp-ua"Read the timezone in HEAD response, extract only the relevant request headers:
requests.head('https://ip.app/ua').headers.get('x-ipapp-ua', '')The API endpoint /ua returns one of the following response values across the formats plain text and JSON:
- String: representing the User-Agent of the current IP address.
- Empty Response: An empty response or
{}as no User-Agent was found.
The API endpoints returns a JSON response when using query parameters ?format=json or ?json=1. For example:
https://ip.app?format=json
https://ip.app?json=1The API endpoints also returns a JSON response when the Accept header contains either one of the following values:
application/json
*/jsonThe HTTP response body for the endpoint / will be like:
{
"ip": "1.1.1.1",
"ip_version": "4"
}Whereas the HTTP response body for the endpoint /headers will be like:
{
"accept": "*/*",
"accept-encoding": "gzip",
"connection": "Keep-Alive",
"host": "ip.app",
"user-agent": "curl/8.5.0"
}| Field | Type | Description | Example |
|---|---|---|---|
ip |
String | The public IP address of the requesting client (IPv4 or IPv6), or Unknown when no IP address is detected |
1.1.1.1, 2001:db8::1, Unknown |
The fields returned depends heavily on the requesting client used, which is different for each client and why this endpoint exists.
Here is a response example from cURL:
| Field | Type | Description | Example |
|---|---|---|---|
accept |
String | Accept | */* |
accept-encoding |
String | Accept-Encoding | gzip |
connection |
String | Connection | Keep-Alive |
host |
String | Host | ip.app |
user-agent |
String | User-Agent | curl/8.5.0 |
More information on HTTP Headers sent by the requesting client.
Try the following examples:
Using the query parameter ?format=json:
curl -s ip.app?format=jsonUsing the Accept header:
curl -s -H "Accept: application/json" ip.appUsing the query parameter ?json=1:
requests.get('https://ip.app?json=1').json().get('ip', 'Unknown')Using the Accept header:
requests.get('https://ip.app', headers={'Accept': 'application/json'}).json().get('ip', 'Unknown')Using the query parameter ?json=1:
curl -s ip.app?json=1 | grep -o '"ip":"[^"]*"' | cut -d'"' -f4Using the Accept header:
curl -s -H "Accept: application/json" ip.app | grep -o '"ip":"[^"]*"' | cut -d'"' -f4Using the query parameter ?json=1:
curl -s ip.app/headers?json=1Using the Accept header:
curl -s -H "Accept: application/json" ip.app/headersUsing the query parameter ?format=json:
requests.get('https://ip.app/headers?format=json').json()Using the Accept header:
requests.get('https://ip.app/headers', headers={'Accept': 'application/json'}).json()The API returns with every HTTP request a x-ipapp-ip HTTP header, which includes the public IP address of the requesting client (IPv4 or IPv6), or Unknown when no IP address is detected.
Since the IP address is included in the HTTP header, response, it can be efficiently retrieved using just a HEAD request without needing to download the response body. This makes it particularly useful for applications that want to avoid the overhead of initiating a GET request and downloading and reading the HTTP response body.
For examples, check out the HEAD examples under Usage.
The API returns with every HTTP request a x-ipapp-ip-version HTTP header, which returns the version of the detected public IP address of the requesting client and is either 4 or 6, or '' (an empty string) when no valid IP address is detected.
Since the IP address version is included in the HTTP header, response, it can be efficiently retrieved using just a HEAD request without needing to download the response body. This makes it particularly useful for applications that want to avoid the overhead of initiating a GET request and downloading and reading the HTTP response body.
For examples, check out the HEAD examples under Usage.
For Python users, a convenient package on PyPI is available that wraps the IP.APP API:
Installation:
pip install ipappUsage:
import ipapp
# Get your IP address
ip = ipapp.get_ip()
print(ip)Package Details:
- PyPI: https://pypi.org/project/ipapp/
- Simple and lightweight wrapper around the IP.APP API
The API returns the following HTTP status codes:
| Status Code | Description |
|---|---|
200 |
Successful request - IP address returned |
301 |
Redirects to documentation |
404 |
Not found - invalid endpoint |
429 |
Too many requests - rate limiting applied |
1015 |
Rate limiting - requests blocked due to rate limits |
The API accepts requests to the following paths:
| Path | Description |
|---|---|
/docs |
Redirects to the API documentation |
/robots.txt |
Robots exclusion file, based on robotstxt.com/ai |
/favicon.ico |
Favicon icon |
All other paths return a 404 status code.
Rate limiting is enabled to ensure fair usage of the API. Requests exceeding the rate limit will receive a 429 or 1015 status code response.
Certain countries are blocked from using this API due to historic abuse patterns. Users from these countries will not be able to access the service.
- New Python Package: The IP.app API now has a dedicated Python Package (without dependencies on third party libraries) available on PyPI.
- New endpoint
/asn: Added a new endpoint which returns the ASN associated with the current IP address. - New endpoint
/loc: Added a new endpoint which returns the location associated with the current IP address. - New endpoint
/sec: Added a new endpoint which returns security information about the established connection between the requesting client and the server, as well as including bot detection information such as bot score, bot category and whether the user-agent is a verified bot. The latter is based on Cloudflare's bot detection system. - New endpoint
/tz: Added a new endpoint which returns the timezone associated with the current IP address. - New endpoint
/ua: Added a new endpoint which returns the User-Agent of the requesting client (e.g. your browser). - Fixed documentation: Updated a number documentation errors and typos and restructured the documentation.
- Breaking change: Renamed the IP version values from
ipv4to4andipv6to6.
- New endpoint
/headers: Added a new endpoint which returns the HTTP headers the requesting client (e.g. your browser) is sending to the server. - Breaking change: Removed renamed HTTP header
x-request-ipfrom the code base and HTTP responses. - Examples: Added more GET request examples for the IP address endpoint, using different programming languages and command line tools.
- Breaking change: Renamed the
x-request-ipHTTP header tox-ipapp-ipto prevent future conflicts and unify the naming convention for all endpoints. - IP version: Added IP version to JSON and HEAD responses.
Important news and/or status updates will also be announced on BlueSky: @ip.app
Thank you for your enthusiasm, please create an issue in this repository.
If you find this API useful and like to assist paying for domain renewal and data traffic costs, please consider sponsering this API.
This API is inspired by icanhazip, which operates in a similar way but has less endpoints and does not support IP reporting using the HEAD method or in a JSON format.
Especially getting the information using the HEAD method is the primary reason why this API was launched. None of the other many alternatives found support the HEAD method either.
- Code: MIT License
- Favicon (decoded): CC0 Public Domain
IMPORTANT: The website/API does not initiate any outbound HTTP or network requests of any kind and only responds to inbound requests made by external clients. There is no active scanning, tracking, exploitation, or malware distribution occurring from ip.app. If you are seeing requests to ip.app from within your network or systems, it means a client or device within your network or system has reached out to the API — not the other way around.
This website/API may be abused by malware or fraud software. Please note, that as this a service for everyone, I can not control how it is (ab)used. However, it is important to note that the website/API and the software itself is not malware or fraudelant software or part of a malware infection. The website/API only returns public IP addresses based on the requester's IP address. Best efforts to reduce potential abuse is made using available Cloudflare functionality.
If you have any questions or abuse concerns, please email [email protected].
This website/API is coded by SEO expert and ex-Google engineer Fili and is under constant development as improvements are made over time.
Bugs will happen. Despite best efforts to maintain the code base and data quality, no guarantees can or will be given. Data may be incomplete and/or errors may occur. This is a personal website and for-fun project. Use at your own risk.