139.59.235.63
IP Intelligence Dossier
Your IP: 216.73.216.123
π€ Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 139.59.235.63
Date: 2026-06-14
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Provider: DigitalOcean (ASN 14061)
- Geolocation: Singapore (SG), Latitude 1.35, Longitude 103.82
- Network Role: Cloud Compute (Web Server, SSH, HTTP/HTTPS)
- Ownership: Registered to "Digital Ocean Inc administrator" (ARIN)
---
**2. Threat Indicators**
- No Malicious Activity: No indicators of spam, attacks, or blacklisted status.
- Services:
- Open ports: 80 (HTTP), 443 (HTTPS), 22 (SSH).
- Server banner: "Caddy" (web server).
- SSH version: `SSH-2.0-OpenSSH_8.9p1`.
- TLS/SSL: No active TLS certificate detected.
---
**3. Observation History**
- Recent Activity:
- Scanned on 2026-06-05 (ports 80, 443, 22).
- ICMP validation failed (firewall blocking probes).
- DNSSEC validation successful.
- Stability: Subnet (139.59.224.0/20) shows "mostly_clean" classification.
---
**4. Relationships**
- Network Affiliation: Linked to DIGITALOCEAN-AP (AS14061).
- No External Threat Links: No correlated IPs, campaigns, or certificates detected.
---
**5. Neighborhood Analysis**
- Subnet: 139.59.235.63/24.
- Abuse Density: 1 (low risk).
- Neighbors: No active sibling IPs identified in the subnet.
---
**6. Recommendations**
- Monitor ICMP Traffic: The IP blocks ICMP probes, which may mask malicious activity. Consider allowing limited ICMP echo requests for validation.
- Secure SSH Access: Ensure SSH is configured with strong authentication (e.g., public key) and restrict access to trusted networks.
- Verify DNSSEC: Confirm DNSSEC validation is maintained for subdomains if hosted services are exposed.
- Baseline Behavior: No anomalous behavior detected, but continuous monitoring is advised due to minimal risk scores and potential misconfigurations.
---
Conclusion: This IP is a legitimate DigitalOcean cloud server with no current malicious indicators. SOC teams should focus on maintaining baseline security controls and monitoring for unexpected changes in network behavior.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Digital Ocean Inc administrator |
| ASN | AS14061 |
| Network Name | DIGITALOCEAN-AP |
| CIDR Block | 139.59.224.0/20 |
| RIR | ARIN |
| Country | SG |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | β |
| 443 | https | tcp | β |
| 22 | ssh | tcp | |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | Caddy |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.15 |
π TLS Certificate
No certificate
Issued by β
N/A
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 22% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 24% | 2 | 3 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 31% | 2 | 3 |
| Overall | 23% | 10 | 17 |
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-09 11:33:34 UTC |
| Last Seen | 2026-06-27 15:15:10 UTC |
| Profile Built | 2026-06-28 09:20:04 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 25 |
π 21 signal types Β· 25 observations collected
This report is generated from 21+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
βΉοΈ About This Report
All data shown is publicly available network metadata β IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.