122.187.172.98
IP Intelligence Briefing: 122.187.172.98
Date: 2026-06-17
---
**1. Risk Profile**
- Risk Score: 55/100 (Moderate Risk)
- Provider: Bharti Airtel Ltd. (ASN 9498)
- Geolocation: India (Maharashtra, Navsari)
- Network Role: Mobile LTE/5G device (residential/mobile classification)
---
**2. Threat Indicators**
- No malicious indicators detected (no malware, spam, or known attacker associations).
- DNS: Resolves to `nsg-corporate-98.172.187.122.airtel.in` (Airtel-owned domain).
- Services: No open ports, TLS certificates, or HTTP services detected.
---
**3. Observation History**
- Recent Signals:
- Basic network stability (BGP, DNSSEC, route stability).
- Low threat persistence (0 persistent malicious observations).
- DNSBL listings (3/8 total lists, low severity).
- Trend: No significant changes in risk or threat signals over the past 30 days.
---
**4. Relationships & Subnet**
- Network Relationships:
- Linked to ASN 9498 (Bharti Airtel) and APNIC registry.
- Subnet `122.187.160.0/20` (Bogon-free, stable routing).
- Neighbors: No active siblings in the /24 subnet (abuse density: 0).
---
**5. Recommended Actions**
- Monitoring: Increase logging verbosity for traffic from this IP.
- Firewall Rules:
- iptables: `iptables -A INPUT -s 122.187.172.98 -j DROP`
- Cloudflare WAF: Block IP with rule `ip.src eq 122.187.172.98`
- AWS WAF: Add `122.187.172.98/32` to a new rule.
---
**6. Summary**
This IP is associated with a Bharti Airtel LTE/5G mobile device in India. While no direct malicious activity is detected, its moderate risk score and low abuse density in the subnet warrant monitoring. No immediate blocking is required, but proactive mitigation is advised due to the carrierโs infrastructure and potential for future anomalies.
Next Steps: Correlate with internal logs and monitor for unexpected behavior.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | IRT-BHARTI-IN |
| ASN | AS9498 |
| Network Name | โ |
| CIDR Block | 122.187.160.0/20 |
| RIR | APNIC |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | nsg-corporate-98.172.187.122.airtel.in |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | nsg-corporate-98.172.187.122.airtel.in |
๐ DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 27% | 2 | 3 |
| services | 15% | 2 | 2 |
| ownership | 27% | 3 | 4 |
| reputation | 24% | 1 | 3 |
| geolocation | 21% | 2 | 2 |
| Overall | 24% | 12 | 18 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:03:36 UTC |
| Last Seen | 2026-06-22 12:18:49 UTC |
| Profile Built | 2026-06-22 12:19:57 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 24 |
Full dossier details are available via our API.