139.59.104.232

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 139.59.104.232

## Executive Summary

IP address 139.59.104.232/32 is a DigitalOcean cloud infrastructure host located in Singapore (SG). The asset presents a low-risk profile with a risk score of 25 and no persistent malicious activity. While the IP appears in one DNS blacklist, the overall neighborhood classification is "mostly_clean" with no threat siblings detected within the /24 subnet.

## Ownership & Infrastructure

Provider: Digital Ocean Inc. administrator (ASN 14061, DIGITALOCEAN-AP)
Network Block: 139.59.96.0/20
Infrastructure Type: Cloud Compute / Web Server
Location: Singapore (1.35, 103.82), timezone Asia/Singapore
Geolocation Validation: Consensus confirmed with 2 sources

## Network Services & TLS Configuration

Open Ports: TCP/80 (HTTP), TCP/443 (HTTPS), TCP/22 (SSH - OpenSSH 9.6p1 Ubuntu)
TLS Certificate: Issued by Let's Encrypt for crm.fadakmarine.com (CN=crm.fadakmarine.com)
Server Banner: nginx/1.24.0 (Ubuntu)
HTTP Status: 302 (Redirect)
DNSSEC: Valid

## Threat Indicators

Risk Score: 25 (Low Risk)
Abuse Confidence Score: Not applicable
Blacklist Status: Listed on 1 of 8 DNSBLs
Tor Exit Node: No
Known Attacker: No
Spam Source: No
Campaign Activity: None detected

## Control Plane & Routing

Origin ASN: 14061
BGP Prefix: 139.59.96.0/20
Route Stability: Unstable
Operator Score: 0.1304 (Minimal)
DNSBL Listed Count: 1

## Neighborhood Analysis

Subnet: 139.59.104.232/24
Abuse Density: 0
Threat Siblings: 1
Classification: Mostly clean
Risk Distribution: No high or medium risk neighbors

## Historical Observations

Total Observations: 21
Recent Activity: Observed on 2026-06-21
Threat Persistence: 0 days
Ownership Changes: 0
Status: Not persistently malicious

## Relationships

The IP has 20 recorded relationships, all identifying as "Same Network" connections to DIGITALOCEAN-AP, confirming its placement within the DigitalOcean Asia-Pacific network infrastructure.

## Recommended Actions

Based on the low-risk profile and lack of persistent malicious indicators, the IP does not require immediate blocking. Standard monitoring practices apply. The single DNSBL listing may warrant investigation if it correlates with observed malicious activity patterns.

---

*Generated by IPDebrief Intelligence Platform*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇸🇬 Singapore
Region	—
City	Singapore
Timezone	Asia/Singapore
Latitude	1.35
Longitude	103.82

🏢 Ownership & Registration

Organization	Digital Ocean Inc administrator
ASN	AS14061
Network Name	DIGITALOCEAN-AP
CIDR Block	139.59.96.0/20
RIR	ARIN
Country	SG
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR Record	No PTR
Forward Confirmed	No — PTR hostname does not resolve back to this IP (weak signal)

🔐 DNS Hygiene

Hygiene Score	60% (Good)
SPF	Present
DMARC	Present
FCrDNS	Not verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Web Server
Network Tier	Hosting — Infrastructure provider without advanced routing

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
80	http	tcp	—
443	https	tcp	—
22	ssh	tcp	SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16
Closed Ports	25, 3389, 8080, 8443 (3 open / 7 scanned)

Server	nginx/1.24.0 (Ubuntu)
HTTP Title	—
SSH Version	SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16

🔐 TLS Certificate

🔒

CN=crm.fadakmarine.com

Issued by CN=YE2, O=Let's Encrypt, C=US

Self-signed: No

SANs	crm.fadakmarine.com
Valid From	2026-06-06T10:37:29+00:00
Valid Until	2026-09-04T10:37:28+00:00
TLS Protocol	Tls13
Cipher Suite	TLS_AES_256_GCM_SHA384
Signature Algorithm	sha384ECDSA
Validity Period	89 days
Serial Number	05385A81DA21C80FE71DB9687F3E18E0E16B
Thumbprint	276EE823AFE94E14219FD3063E97701F93D7DD1D

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	27%	2	4
routing	13%	1	1
services	33%	2	3
ownership	27%	2	3
reputation	26%	1	3
geolocation	40%	2	3
Overall	28%	10	17

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (50%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-31 17:23:16 UTC
Last Seen	2026-06-29 08:42:17 UTC
Profile Built	2026-06-29 14:45:26 UTC
Data Freshness	Live
Signal Types	21
Total Observations	22

🔍 21 signal types · 22 observations collected

This report is generated from 21+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

139.59.104.232📋 Copy