IP Intelligence Briefing: 168.144.112.158
*Generated using IPDebrief tools: Profile, History, Relationships, Neighbors*
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Owned by DigitalOcean, LLC (ASN 14061).
- Geolocation:
- Country: India (IN)
- Region: Karnataka
- City: Bengaluru
- Accuracy: ±2250 km (inferred via multi-signal geolocation).
- Network Role:
- Cloud Provider: DigitalOcean (CloudCompute, Hosting).
- Subnet: 168.144.112.0/20 (BGP prefix).
- Services: No open ports or TLS certificates detected.
---
**2. Threat & Abuse Indicators**
- Threat Score: 0 (No malicious activity detected).
- DNS & Email:
- No PTR records, SPF/DKIM/D MARC records, or email-related threats.
- Network Behavior:
- BGP: Route stable (no recent changes).
- DNSSEC: Validated.
- Neighbor Risk: 1 out of 256 IPs in the /24 subnet has a medium risk score (59).
---
**3. Historical Observations (Last 30 Days)**
- Signal Stability:
- Consistent classification as "clean" with no persistent threats.
- Geolocation inferred via 2 signals (confidence: 35%).
- Subnet Analysis:
- Subnet abuse density: 0% (no malicious IPs detected).
- No changes in ownership or network role.
---
**4. Relationships & Network Context**
- Linked Entities:
- Network: NET-168-144-0-0-1 (repeated in relationships, possible data redundancy).
- Provider: DigitalOcean (same ASN 14061).
- Neighbor IP:
- 168.144.112.115 (risk score: 59, medium risk).
---
**5. Actionable Insights for SOC**
- Monitor Neighbor: The single high-risk neighbor (168.144.112.115) warrants closer scrutiny for potential lateral movement or shared infrastructure risks.
- Verify Geolocation: The inferred location in Karnataka, India, should be cross-validated with additional signals (e.g., DNS or TLS geolocation).
- No Immediate Action: The IP itself shows no malicious indicators, but ensure network segmentation rules block traffic to the high-risk neighbor.
---
*Generated by IPDebrief. All data derived from observed signals and network intelligence.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | โ |
| CIDR Block | 168.144.112.0/20 |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| Closed Ports | 22, 25, 3389, 8080, 8443 (2 open / 7 scanned) | ||
| Server | nginx/1.24.0 (Ubuntu) |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | new-demo-flights-api.tripxl.comnew-demo-flights.tripxl.com |
| Valid From | 2026-05-18T11:41:57+00:00 |
| Valid Until | 2026-08-16T11:41:56+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha384ECDSA |
| Validity Period | 89 days |
| Serial Number | 06CDA4950921E75F73E3724B1A90A3E2E175 |
| Thumbprint | E66A2D5AECBCAD3BADEE95253B52EA6F678AE46C |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 24% | 2 | 3 |
| services | 30% | 2 | 3 |
| ownership | 37% | 3 | 6 |
| reputation | 26% | 1 | 3 |
| geolocation | 35% | 2 | 3 |
| Overall | 30% | 12 | 22 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-19 23:49:06 UTC |
| Last Seen | 2026-06-28 10:27:39 UTC |
| Profile Built | 2026-06-29 04:32:51 UTC |
| Data Freshness | Live |
| Signal Types | 24 |
| Total Observations | 29 |
Full dossier details are available via our API.