43.130.150.80
# IP Intelligence Briefing: 43.130.150.80/32
Classification: LOW RISK | Report Date: Current | Status: Active Monitoring
---
## Executive Summary
IP 43.130.150.80 presents a low-risk profile with a risk score of 25. No malicious indicators, threat campaigns, or blacklisting activity have been observed. The IP is associated with ACE-SG network infrastructure (ASN 132203) and is currently classified as a clean endpoint within its /24 subnet. No immediate defensive actions are required.
---
## Network Ownership & Geolocation
| Attribute | Value |
|---|---|
| **Organization** | IRT-ACEVILLEPTELTD-SG |
| **Netname** | ACE-SG |
| **ASN** | 132203 |
| **CIDR Block** | 43.130.128.0/19 |
| **RIR** | APNIC |
| **Country** | United States (US) |
| **Region** | Virginia (VA) |
| **City** | Ashburn |
Geolocation Validation: Low confidence inference (3,750 km accuracy radius). ICMP validation failed due to blocking; reported distance of 6,312.5 km from reference point. DNSSEC validation: Valid.
---
## Threat Assessment
| Indicator | Status |
|---|---|
| **Risk Score** | 25 (Low) |
| **Known Attacker** | No |
| **Spam Source** | No |
| **Tor Exit Node** | No |
| **Blacklist Count** | 0 |
| **DNSBL Listed** | 1 of 8 total lists |
| **Abuse Confidence** | Not applicable |
Threat Indicators: None detected. No known campaigns correlated. No threat feed matches.
---
## Network Services & Infrastructure
| Service Category | Status |
|---|---|
| **Open Ports** | None detected |
| **HTTP Services** | None detected |
| **TLS Certificates** | None detected |
| **DNS Records** | No forward resolution |
| **Email Authentication** | N/A |
| **Network Role** | Firewalled / No Services |
| **Infrastructure Type** | Cloud/Hosting (inferred from ASN) |
Services Classification: No active services detected. The IP appears to be firewalled or non-responsive to common probes.
---
## Subnet Neighborhood Analysis
Subnet: 43.130.150.80/24
- Abuse Density: 0%
- Classification: Clean
- Inherited Risk: 0
- Total Siblings: 1
- Threat Siblings: 0
Risk Distribution: High: 0 | Medium: 0 | Low: 0
The /24 subnet shows no abuse activity. The IP stands alone as the only active sibling in its immediate neighborhood.
---
## Relationship Graph
Connected Entities: 11 relationships identified, all classified as "Same Network" to ACE-SG.
The IP maintains network-level relationships within the ACE-SG infrastructure block, indicating it is part of a larger network deployment.
---
## Historical Observations
Total Observations: 18 signals tracked
Observation Period: Recent monitoring window (2026-06-10)
Signal Timeline:
- Geolocation inference: US (39.83°N, 98.58°W) - Confidence: 28%
- Subnet classification: Clean - Confidence: 40%
- Operator score: Minimal (0.1304) - Confidence: 30%
- Network validation: ICMP blocked - Confidence: 50%
Temporal Analysis: No ownership changes detected. No persistent malicious activity observed. The IP demonstrates stable, non-malicious behavior.
---
## Recommended Security Actions
Current Risk Level: LOW (Score: 25)
Recommended Actions: None
- No firewall rules required
- No blocking recommended
- Standard monitoring applies
Rationale: The IP presents low-risk characteristics with no evidence of malicious activity. Standard network traffic monitoring is sufficient. The absence of open services, combined with low-risk classification, suggests legitimate infrastructure or non-active endpoint.
---
## SOC Analyst Notes
1. Monitoring Priority: Low - No immediate threat indicators
2. Traffic Analysis: Monitor for unusual outbound patterns; no inbound services detected
3. Geolocation Discrepancy: Note the significant distance variance (6,312 km) from reported coordinates; may indicate routing anomalies or proxy usage
4. Subnet Context: Clean neighborhood suggests broader infrastructure is not under threat
5. Action Threshold: If risk score exceeds 50 or malicious indicators emerge, escalate to active investigation
Conclusion: This IP warrants routine monitoring but does not require immediate defensive action. The low risk score, absence of threat indicators, and clean subnet classification support continued standard observability procedures.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | IRT-ACEVILLEPTELTD-SG |
| ASN | AS132203 |
| Network Name | ACE-SG |
| CIDR Block | 43.130.128.0/19 |
| RIR | APNIC |
| Country | US |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 33% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 18% | 1 | 2 |
| geolocation | 33% | 2 | 3 |
| Overall | 22% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-25 03:52:58 UTC |
| Last Seen | 2026-06-28 00:54:36 UTC |
| Profile Built | 2026-06-28 19:00:06 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 22 |
Full dossier details are available via our API.