64.225.102.64
IP Intelligence Briefing: 64.225.102.64
*Generated via IPDebrief analysis*
---
**Key Findings**
1. Ownership & Network Role
- Provider: DigitalOcean, LLC (ASN 14061)
- Network Type: Cloud infrastructure (firewalled, no public services)
- Geolocation: US (Frankfurt am Main, Hesse) | Latitude/Longitude: Not explicitly resolved
2. Threat Indicators
- No direct malicious activity detected (no abuse confidence scores, no threat feeds).
- DNSSEC Valid: Minimal risk (operator score: 0.13).
- Subnet Abuse Density: 0% (clean neighborhood).
3. Observation History
- Recent Activity:
- DNSSEC validation (minimal risk).
- Cloud infrastructure classification (no public services).
- Sparse threat observations (1 total, no high-severity incidents).
4. Relationships
- Linked to the same network: `DIGITALOCEAN-64-225-0-0` (repeated in 12 relationships).
- No connections to hostnames, organizations, or certificates.
5. Subnet Context
- /24 Subnet: `64.225.102.64/24`
- Neighbor Activity: 0 active neighbors, 0 threat siblings.
---
**Risk Assessment**
- Overall Risk: Moderate (50/100).
- Primary Factors:
- DNSSEC validation flagged as minimal risk.
- Cloud infrastructure with no exposed services.
- No known malicious campaigns or abuse.
---
**Actionable Recommendations**
1. Monitor Subnet: Track activity in `64.225.102.64/24` for unusual traffic patterns.
2. Verify Cloud Configuration: Ensure DigitalOcean resources are properly secured (e.g., firewall rules, access controls).
3. Continuous Threat Monitoring: Use IPDebriefβs history tool to detect emerging risks over time.
4. DNSSEC Validation: Confirm DNSSEC compliance for associated domains (if applicable).
---
Note: No immediate mitigation required. This IP aligns with legitimate cloud infrastructure but should be monitored for deviations.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | 1/2 domains |
| DMARC | 1/2 domains |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
| Domains Checked | 2 domains |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | β |
| 443 | https | tcp | β |
| 22 | ssh | tcp | |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | nginx/1.18.0 (Ubuntu) |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.13 |
π TLS Certificate
| SANs | *.odex.saodex.sa |
| Valid From | 2025-10-26T00:00:00+00:00 |
| Valid Until | 2026-10-26T23:59:59+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha256ECDSA |
| Validity Period | 365 days |
| Serial Number | 7B4EF369A608D21FD0175CEDFE2F3724 |
| Thumbprint | 2519BFFD8778BA7FB3DC567BA8751E6DBC40511C |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 30% | 2 | 3 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 23% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-20 23:40:39 UTC |
| Last Seen | 2026-06-28 12:55:41 UTC |
| Profile Built | 2026-06-29 07:01:00 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 24 |
Full dossier details are available via our API.