170.64.141.43
## INTELLIGENCE BRIEFING: 170.64.141.43/32
Date: June 2026
Classification: Low Risk Cloud Infrastructure
Analyst: IPDebrief Intelligence Operations
---
EXECUTIVE SUMMARY
IP 170.64.141.43 is a low-risk cloud computing infrastructure address operated by DigitalOcean, LLC. The IP demonstrates stable operational characteristics with no active threat indicators, no open services, and minimal operator risk scores. Current risk assessment indicates standard cloud hosting behavior with no malicious activity observed.
---
INFRASTRUCTURE PROFILE
| Attribute | Value |
|---|---|
| **IP Address** | 170.64.141.43/32 |
| **ASN** | 14061 |
| **Organization** | DigitalOcean, LLC |
| **Network** | DIGITALOCEAN-170-64-128-0 |
| **Location** | Sydney, NSW, Australia (AU) |
| **Infrastructure Type** | CloudCompute / Hosting |
| **Geolocation Confidence** | 0.35 (Multi-signal inference) |
| **Risk Score** | 25/100 (Low Risk) |
Network Classification:
- Cloud Infrastructure: Yes
- Hosting Service: Yes
- CDN/Proxy/Tor: No
- Bogon Address: No
- Anycast: No
---
THREAT ASSESSMENT
Current Threat Indicators:
- No threat indicators detected
- No blacklist entries (0/0)
- No known attacker reputation
- No spam source designation
- No Tor exit node association
Control Plane Data:
- BGP Prefix: 170.64.128.0/18
- Route Stability: Unstable
- DNSBL Listings: 1 of 8 total lists
- RPKI State: Not available
- IRR Consistency: Not available
- Operator Score: 0.1304 (Minimal Risk)
Service Exposure:
- Open Ports: None detected
- TLS Certificate: None
- HTTP Banner: None
- DNS Resolution: No PTR records, no forward resolution
- Email Authentication: No SPF/DMARC records
---
OBSERVATION HISTORY
The IP has accumulated 20 observations across the monitoring period, with the following temporal patterns:
Recent Signals (June 17-13, 2026):
- June 17, 16:41 UTC: Operator score assessment (0.15 raw score, Minimal risk label)
- June 17, 16:41 UTC: Multi-dimensional signal collection (6/6 dimensions covered)
- June 13, 23:41 UTC: Geolocation inference (Australia, confidence 0.35)
- June 13, 23:40 UTC: Network role confirmation (CloudCompute, DigitalOcean, confidence 0.90)
- June 13, 23:39 UTC: Operator risk assessment (0.15 raw score, Minimal risk label)
Temporal Consistency:
- Ownership Changes: 0
- Threat Persistence Days: 0
- Is Persistently Malicious: No
- Threat Observation Count: 1
---
NETWORK RELATIONSHIPS
The IP maintains 22 documented relationships, all categorized as "Same Network" pointing to the DIGITALOCEAN-170-64-128-0 network block. This confirms the IP resides within DigitalOcean's 170.64.128.0/18 network allocation.
---
NEIGHBORHOOD ANALYSIS
Subnet: 170.64.141.43/24
- Abuse Density: 1 (Low)
- Classification: Mostly Clean
- Total Siblings: 1
- Active Siblings: 1
- Threat Siblings: 1
- Risk Distribution: No high or medium risk neighbors identified
---
GEOLOCATION VALIDATION
| Metric | Value |
|---|---|
| Reported Location | Sydney, Australia |
| Distance from Probe | 16,533.5 km |
| Minimum Possible RTT | 330.7 ms |
| Observed RTT | 219.0 ms |
| Status | **RTT VIOLATION DETECTED** |
*Note: Observed RTT (219ms) is below the minimum physically possible RTT (330.7ms) for the reported distance, indicating potential geolocation data inaccuracy. This is common with cloud infrastructure where physical server location may not match reported geolocation.*
---
RECOMMENDED ACTIONS
Based on the risk profile and operational characteristics:
1. Allow Standard Traffic: No blocking recommendations due to low risk score (25) and confirmed cloud infrastructure role.
2. Monitor DNSBL Listings: IP appears on 1 of 8 DNSBL listsβreview specific list content if inbound mail/connections are affected.
3. Cloud Infrastructure Context: Recognize as legitimate DigitalOcean hostingβtypical for web hosting, API endpoints, and cloud services.
4. RTT Anomaly Awareness: Be aware that geolocation may not reflect actual physical server location; consider RTT-based validation for critical operations.
5. No Immediate Threat Response: No active threat indicators require immediate mitigation or blocking.
---
CONCLUSION
IP 170.64.141.43 represents standard DigitalOcean cloud infrastructure with low risk characteristics. The IP shows no evidence of malicious activity, threat campaigns, or anomalous behavior. Standard operational monitoring is recommended without additional defensive measures. The RTT validation anomaly should be noted but does not indicate malicious activity.
Threat Level: LOW
Action Required: NONE
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | β |
| CIDR Block | 170.64.128.0/18 |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 25% | 2 | 4 |
| routing | 32% | 2 | 3 |
| services | 12% | 2 | 2 |
| ownership | 28% | 3 | 4 |
| reputation | 27% | 1 | 3 |
| geolocation | 34% | 2 | 3 |
| Overall | 26% | 12 | 19 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:03:53 UTC |
| Last Seen | 2026-06-27 01:47:06 UTC |
| Profile Built | 2026-06-27 22:14:23 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 28 |
Full dossier details are available via our API.