Log in
CaptainDNS

Propagation & diagnostics

Compare resolvers worldwide and inspect returned answers.

Email authentication

Tools to verify and validate your email authentication setup.

SPF syntax validator

Review include chains and DNS query limits before publishing changes.

SPF record inspector

Resolve the published TXT record, flag lookup limits and decode each mechanism.

DKIM syntax validator

Quickly check the syntax of your DKIM records.

DKIM record check

Resolve a selector and analyse the published DKIM TXT record.

DMARC syntax validator

Check rua/ruf destinations, alignment modes and the active policy before publishing.

DMARC record inspector

Resolve the published policy, surface diagnostics and confirm enforcement before switching to reject.

BIMI syntax validator

Validate BIMI tags, the logo fetch and the VMC certificate before publishing.

BIMI record inspector

Resolve the published BIMI record, inspect logo and VMC diagnostics in one place.

Email deliverability audit

Audit MX, SPF, DKIM and DMARC to confirm a domain is ready to send.

Mail header analyzer

Decode participants, authentication results and routing from raw headers.

DMARC record generator

Create compliant DMARC records with all policy and reporting options.

Text

Transform, encode and measure your content in seconds.

Text case converter

Convert any block of text to upper or lower case instantly.

Base64 encoder / decoder

Encode or decode any content in Base64 without leaving the browser.

Slug generator

Transform any sentence into an SEO-friendly slug in seconds.

Word & character counter

Measure the length of any text, with instant word and character counts.

Images

Preview and validate your BIMI logos before publishing.

BIMI logo lookup

Inspect a BIMI logo URL—format, metadata and live rendering—before rollout.

Certificates

Inspect CSRs, BIMI logos and VMC certificates before you deploy.

CSR parser

Inspect a CSR, extract subject details, fingerprints and requested SANs.

VMC inspector

Inspect a Verified Mark Certificate—issuer, validity and SAN coverage—before you publish BIMI.

IP

Look up addresses, owners, reverse records and ranges.

Reverse lookup

Resolve a PTR record and validate DNS consistency.

IP WhoIs

Identify the owner of an IP range and its contacts.

IPv4 netmask

Calculate network, broadcast and usable hosts for any IPv4 block.

My IP address

Detect your IPv4/IPv6 addresses and their geolocation.

WhoIs IP Lookup

Additional information about WhoIs IP lookup

When to use the WhoIs IP search engine?

WhoIs on an IP address is used to identify the holder of an address block and find the right contact. It helps when a service abuses your site, when a firewall blocks an IP address, when a traceroute stops on an unknown router, or when you need to contact an operator.

Incident and security

For an alert or abuse, the WhoIs of an IP provides the email address dedicated to reports. You can write to the abuse contact with the time, the address concerned and the evidence. This speeds up the handling.

Network support and routing

In case of outage or latency, WhoIs IP indicates the organization responsible for the range. You will know who to open a ticket to and what range the problem concerns.

How does WhoIs lookup work on an IP?

Addresses are managed by five regional registries. ARIN for North America, RIPE NCC for Europe and part of the Middle East, APNIC for Asia Pacific, LACNIC for Latin America, AFRINIC for Africa. IANA allocates large blocks to these registries. They then delegate to operators and companies.

Query path

A WHOIS client first queries a known registry. If it doesn't hold the range, it redirects to the competent registry. The server responds with objects describing the network, organization and contacts.

whois 203.0.113.10
whois 2001:db8::10

Domains and addresses, don't confuse

WhoIs IP describes address blocks and their holders. Domain WhoIs describes a domain name and its registration office. Both tools are complementary. For a website contact, we often look at the domain. For a router or source address, we look at the IP WhoIs.

What you will read in a response

A WhoIs response for an IP groups several elements. They vary according to the registry, but the ideas remain the same.

Range and holder

You will see the allocated range, for example a block in CIDR notation, the organization name and sometimes a netname. This confirms if the address belongs to an operator, a cloud or a company.

Useful contacts

Look for role or person contacts. The abuse field is priority for reports. The noc or admin fields are used for network support. Keep the addresses and ticket references.

Status and dates

Depending on the registry, you will find a status and creation or update dates. A legacy mention or indirect delegation may explain different responses depending on tools.

Limits to know

WhoIs of an IP does not show the current route, nor the live BGP state. It describes ownership and contacts. Data may be outdated. Some organizations protect details. A CDN or proxy sometimes masks the real origin. A NAT can group multiple clients behind the same address.

Incomplete or old data

It happens that the abuse contact is missing or the email bounces. In this case, check the neighboring object, go back to the parent block, or use RDAP which normalizes fields and offers redirection links.

Usage context

An address seen in a log does not prove the final author. Account for proxies, mail relays and caches. Cross-reference with your application logs.

Best practices

Start with the IP address WhoIs, then confirm with RDAP for a structured format. Keep the response as a ticket attachment. Mention the time, timezone and complete range. Stay factual and courteous. For sustainable follow-up, create message templates for typical cases: abuse, routing, security.

Respect and compliance

Don't use contacts for marketing. Limit personal data in your exchanges. Remove sensitive information that is not useful for processing.

In summary, the WhoIs of an IP address tells who owns an address and how to reach the right team. It relies on regional registries and describes the range, organization, contacts and sometimes status. It's the simple tool to guide an incident, open a network ticket and document an investigation.