# IP Intelligence Briefing: 140.245.218.10/32
## Executive Summary
Intellectual analysis of IP address 140.245.218.10 reveals a low-risk cloud infrastructure endpoint operating within Oracle Corporation's enterprise network. The IP demonstrates stable, benign characteristics with no active threat indicators. Risk score: 25/100 (Low Risk).
---
## Profile Overview
Network Identity
- IP Address: 140.245.218.10/32
- ASN: 31898 (Oracle Corporation)
- Network Name: ORACLE-4
- CIDR Block: 140.245.0.0/16
- Registration RIR: ARIN
- Infrastructure Type: Oracle Cloud Provider
- Geographic Location: India (IN), Telangana region
Reputation Metrics
- Overall Risk Score: 25 (Low Risk)
- Provider Score: 0
- Authority Score: 0
- Stability Score: 0
- Abuse Confidence Score: Not applicable
- Blacklist Count: 0
---
## Network Characteristics
Service Configuration
- Open Ports: 80/TCP (HTTP), 443/TCP (HTTPS)
- Web Server: nginx/1.24.0 (Ubuntu)
- TLS Version: TLS 1.3
- TLS Cipher Suite: TLS_AES_256_GCM_SHA384
- HTTP Status Code: 303
- HSTS Enabled: Yes (max-age=31536000; includeSubDomains)
- DNSSEC Valid: Yes
TLS Certificate Details
- Subject: CN=odoo-demo, O=Gapblue Software Labs, L=kochi, S=Kerala, C=IN
- Issuer: Gapblue Software Labs
- Self-Signed: No
---
## Threat Intelligence Assessment
Threat Indicators
- Tor Exit Node: No
- Known Attacker: No
- Spam Source: No
- Known Campaigns: None identified
- Active Threat Feeds: Empty
Control Plane Analysis
- BGP Prefix: 140.245.192.0/18
- Route Stability: Unstable (isRouteStable: false)
- DNSBL Listings: 1 of 8 total lists
- Operator Score: 0.1304 (Minimal)
- RPKI State: Not available
- IRR Consistency: Not available
---
## Neighborhood Analysis
Subnet Classification: 140.245.218.10/24
- Abuse Density: 0%
- Classification: Clean
- Total Siblings: 1
- Active Siblings: 0
- Threat Siblings: 0
Risk Distribution: High: 0, Medium: 0, Low: 0
---
## Relationship Graph
Connected Entities: 6 relationships identified
- All relationships classified as "Same Network"
- All target: ORACLE-4 network
- No external organization or hostname relationships detected
---
## Observation History
Total Observations: 19 signals recorded
Recent Activity (2026-06-16):
- HTTP Fingerprinting (Confidence: 0.80): nginx/1.24.0, status 303, HSTS enabled, CORS allow-origin configured for chatgptocidemo.gnie.ai
- Geolocation (Confidence: 0.65): Gapblue Software Labs, Kochi, Kerala, India
- TLS/Ports Scan (Confidence: 0.90): Ports 80, 443 detected, TLS 1.3 with strong cipher suite
- Certificate Analysis (Confidence: 0.30): No certificate matches in known repositories
Temporal Indicators:
- Ownership Changes: 0
- Threat Persistence Days: 0
- Threat Observation Count: 0
- Persistently Malicious: No
---
## Security Recommendations
Current Risk Level: Low
Recommended Actions:
- No immediate blocking or firewall rules recommended
- Standard network logging and monitoring advised
- Routine observability practices sufficient for this profile
Note: These recommendations are probabilistic and should be combined with other contextual signals before implementing defensive measures.
---
## Conclusion
IP address 140.245.218.10 operates as a standard Oracle Cloud web server endpoint with no malicious indicators. The IP exhibits benign characteristics consistent with legitimate cloud infrastructure operations. SOC monitoring should treat this as a trusted network asset requiring standard traffic logging and baseline anomaly detection practices.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Oracle Corporation |
| ASN | AS31898 |
| Network Name | ORACLE-4 |
| CIDR Block | 140.245.0.0/16 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| Closed Ports | 22, 25, 3389, 8080, 8443 (2 open / 7 scanned) | ||
| Server | nginx/1.24.0 (Ubuntu) |
| HTTP Title | โ |
๐ TLS Certificate
CN=odoo-demo, O=Gapblue Software Labs, L=kochi, S=Kerala, C=IN was found on this IP. This may indicate a previously hosted website, a decommissioned service, or stale infrastructure.| SANs | None |
| Valid From | 2025-03-25T10:48:30+00:00 |
| Valid Until | 2026-03-25T10:48:30+00:00 (expired) |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha256RSA |
| Validity Period | 365 days |
| Serial Number | 1D7777E6FF90B00E686DCF95C9449D2FE87A9FF2 |
| Thumbprint | 307431420A8572E57EBA541C8AA427238B11E415 |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 35% | 2 | 3 |
| routing | 17% | 1 | 1 |
| services | 35% | 2 | 3 |
| ownership | 35% | 2 | 3 |
| reputation | 17% | 1 | 2 |
| geolocation | 17% | 1 | 1 |
| Overall | 26% | 9 | 13 |
| Data Coherence | Mostly Consistent (80%) โ 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-06-14 17:36:16 UTC |
| Last Seen | 2026-06-23 19:18:34 UTC |
| Profile Built | 2026-06-21 22:23:05 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 22 |
Full dossier details are available via our API.