The new Censys Platform is live! Free, Solo & Teams users can try it now — Enterprise customers, contact your rep.
Try it today!

104.18.204.201

As of: Mar 15, 2025 9:46am UTC | Latest 
{
  "ip": "104.18.204.201",
  "services": [
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nReferrer-Policy: same-origin\r\nCache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nVary: Accept-Encoding\r\nServer: cloudflare\r\nCF-RAY: 9206fdca6a3d233e-ORD\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:9e8ce7896ded03e68d7a4482951b9d5883aa5e58ecc4a5cdb1e180cf52d3b430"
      ],
      "banner_hex": "485454502f312e312034303320466f7262696464656e0d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c3b20636861727365743d5554462d380d0a5472616e736665722d456e636f64696e673a206368756e6b65640d0a436f6e6e656374696f6e3a20636c6f73650d0a582d4672616d652d4f7074696f6e733a2053414d454f524947494e0d0a52656665727265722d506f6c6963793a2073616d652d6f726967696e0d0a43616368652d436f6e74726f6c3a20707269766174652c206d61782d6167653d302c206e6f2d73746f72652c206e6f2d63616368652c206d7573742d726576616c69646174652c20706f73742d636865636b3d302c207072652d636865636b3d300d0a457870697265733a205468752c203031204a616e20313937302030303a30303a303120474d540d0a566172793a204163636570742d456e636f64696e670d0a5365727665723a20636c6f7564666c6172650d0a43462d5241593a20393230366664636136613364323333652d4f52440d0a436f6e74656e742d456e636f64696e673a20677a69700d0a",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://104.18.204.201/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Vary": [
              "Accept-Encoding"
            ],
            "_encoding": {
              "Vary": "DISPLAY_UTF8",
              "X_Frame_Options": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Cache_Control": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Expires": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "Referrer_Policy": "DISPLAY_UTF8"
            },
            "X_Frame_Options": [
              "SAMEORIGIN"
            ],
            "Server": [
              "cloudflare"
            ],
            "Cache_Control": [
              "private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0"
            ],
            "Transfer_Encoding": [
              "chunked"
            ],
            "Expires": [
              "Thu, 01 Jan 1970 00:00:01 GMT"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "close"
            ],
            "CF_RAY": [
              "9206fdca6a3d233e-ORD"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "Referrer_Policy": [
              "same-origin"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Direct IP access not allowed | Cloudflare</title>",
            "<meta charset=\"UTF-8\" />",
            "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />",
            "<meta name=\"robots\" content=\"noindex, nofollow\" />",
            "<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />"
          ],
          "body_size": 5894,
          "body": "<!DOCTYPE html>\n<!--[if lt IE 7]> <html class=\"no-js ie6 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 7]>    <html class=\"no-js ie7 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 8]>    <html class=\"no-js ie8 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if gt IE 8]><!--> <html class=\"no-js\" lang=\"en-US\"> <!--<![endif]-->\n<head>\n<title>Direct IP access not allowed | Cloudflare</title>\n<meta charset=\"UTF-8\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />\n<meta name=\"robots\" content=\"noindex, nofollow\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />\n<link rel=\"stylesheet\" id=\"cf_styles-css\" href=\"/cdn-cgi/styles/main.css\" />\n\n\n<script>\n(function(){if(document.addEventListener&&window.XMLHttpRequest&&JSON&&JSON.stringify){var e=function(a){var c=document.getElementById(\"error-feedback-survey\"),d=document.getElementById(\"error-feedback-success\"),b=new XMLHttpRequest;a={event:\"feedback clicked\",properties:{errorCode:1003,helpful:a,version:1}};b.open(\"POST\",\"https://sparrow.cloudflare.com/api/v1/event\");b.setRequestHeader(\"Content-Type\",\"application/json\");b.setRequestHeader(\"Sparrow-Source-Key\",\"c771f0e4b54944bebf4261d44bd79a1e\");\nb.send(JSON.stringify(a));c.classList.add(\"feedback-hidden\");d.classList.remove(\"feedback-hidden\")};document.addEventListener(\"DOMContentLoaded\",function(){var a=document.getElementById(\"error-feedback\"),c=document.getElementById(\"feedback-button-yes\"),d=document.getElementById(\"feedback-button-no\");\"classList\"in a&&(a.classList.remove(\"feedback-hidden\"),c.addEventListener(\"click\",function(){e(!0)}),d.addEventListener(\"click\",function(){e(!1)}))})}})();\n</script>\n\n<script defer src=\"https://performance.radar.cloudflare.com/beacon.js\"></script>\n</head>\n<body>\n  <div id=\"cf-wrapper\">\n    <div class=\"cf-alert cf-alert-error cf-cookie-error hidden\" id=\"cookie-alert\" data-translate=\"enable_cookies\">Please enable cookies.</div>\n    <div id=\"cf-error-details\" class=\"p-0\">\n      <header class=\"mx-auto pt-10 lg:pt-6 lg:px-8 w-240 lg:w-full mb-15 antialiased\">\n         <h1 class=\"inline-block md:block mr-2 md:mb-2 font-light text-60 md:text-3xl text-black-dark leading-tight\">\n           <span data-translate=\"error\">Error</span>\n           <span>1003</span>\n         </h1>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">Ray ID: 9206fdca6a3d233e &bull;</span>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">2025-03-14 21:51:15 UTC</span>\n        <h2 class=\"text-gray-600 leading-1.3 text-3xl lg:text-2xl font-light\">Direct IP access not allowed</h2>\n      </header>\n\n      <section class=\"w-240 lg:w-full mx-auto mb-8 lg:px-8\">\n          <div id=\"what-happened-section\" class=\"w-1/2 md:w-full\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_happened\">What happened?</h2>\n            <p>You've requested an IP address that is part of the <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">Cloudflare</a> network. A valid Host header must be supplied to reach the desired website.</p>\n            \n          </div>\n\n          \n          <div id=\"resolution-copy-section\" class=\"w-1/2 mt-6 text-15 leading-normal\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_can_i_do\">What can I do?</h2>\n            <p>If you are interested in learning more about Cloudflare, please <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">visit our website</a>.</p>\n          </div>\n          \n      </section>\n\n      <div class=\"feedback-hidden py-8 text-center\" id=\"error-feedback\">\n    <div id=\"error-feedback-survey\" class=\"footer-line-wrapper\">\n        Was this page helpful?\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-yes\" type=\"button\">Yes</button>\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-no\" type=\"button\">No</button>\n    </div>\n    <div class=\"feedback-success feedback-hidden\" id=\"error-feedback-success\">\n        Thank you for your feedback!\n    </div>\n</div>\n\n\n      <div class=\"cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300\">\n  <p class=\"text-13\">\n    <span class=\"cf-footer-item sm:block sm:mb-1\">Cloudflare Ray ID: <strong class=\"font-semibold\">9206fdca6a3d233e</strong></span>\n    <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    <span id=\"cf-footer-item-ip\" class=\"cf-footer-item hidden sm:block sm:mb-1\">\n      Your IP:\n      <button type=\"button\" id=\"cf-footer-ip-reveal\" class=\"cf-footer-ip-reveal-btn\">Click to reveal</button>\n      <span class=\"hidden\" id=\"cf-footer-ip\">167.94.138.44</span>\n      <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    </span>\n    <span class=\"cf-footer-item sm:block sm:mb-1\"><span>Performance &amp; security by</span> <a rel=\"noopener noreferrer\" href=\"https://www.cloudflare.com/5xx-error-landing\" id=\"brand_link\" target=\"_blank\">Cloudflare</a></span>\n    \n  </p>\n  <script>(function(){function d(){var b=a.getElementById(\"cf-footer-item-ip\"),c=a.getElementById(\"cf-footer-ip-reveal\");b&&\"classList\"in b&&(b.classList.remove(\"hidden\"),c.addEventListener(\"click\",function(){c.classList.add(\"hidden\");a.getElementById(\"cf-footer-ip\").classList.remove(\"hidden\")}))}var a=document;document.addEventListener&&a.addEventListener(\"DOMContentLoaded\",d)})();</script>\n</div><!-- /.error-footer -->\n\n\n    </div><!-- /#cf-error-details -->\n  </div><!-- /#cf-wrapper -->\n\n  <script>\n  window._cf_translation = {};\n  \n  \n</script>\n\n</body>\n</html>\n",
          "body_hashes": [
            "sha256:0455f66cf0c0ac1ada177e85362d5dd86282cb3e8cf577c90174af762d07a52c",
            "sha1:2ef166cc647d52dc3ce0828e024f8a0dfa4dd6c8",
            "tlsh:72c19663f5f8257a1093c2a33199b71979f4c123daa704d5ba9dc0721f8de85fe07181"
          ],
          "body_hash": "sha1:2ef166cc647d52dc3ce0828e024f8a0dfa4dd6c8",
          "html_title": "Direct IP access not allowed | Cloudflare"
        },
        "supports_http2": false
      },
      "observed_at": "2025-03-14T21:51:13.911557238Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 80,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:waf:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Cloudflare",
          "product": "WAF",
          "other": {
            "device": "WAF"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.44",
      "transport_fingerprint": {
        "id": 422,
        "os": "Cloudflare Load Balancer",
        "raw": "65535,64,true,MNNSNW,1400,false,false"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nServer: cloudflare\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 151\r\nConnection: keep-alive\r\nCF-RAY: 920961be89e3c667-ORD\r\n",
      "banner_hashes": [
        "sha256:77d9eefdbe07f8f5f0e0ba9dc82b6c686bca094ce93b42b841432734d217e94d"
      ],
      "banner_hex": "485454502f312e312034303320466f7262696464656e0d0a5365727665723a20636c6f7564666c6172650d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203135310d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a43462d5241593a20393230393631626538396533633636372d4f52440d0a",
      "certificate": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://104.18.204.201/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8"
            },
            "Server": [
              "cloudflare"
            ],
            "Content_Length": [
              "151"
            ],
            "Content_Type": [
              "text/html"
            ],
            "CF_RAY": [
              "920961be89e3c667-ORD"
            ],
            "Connection": [
              "keep-alive"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>403 Forbidden</title>"
          ],
          "body_size": 151,
          "body": "<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>cloudflare</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:eed0b81a2fbdd1c5a9f80705885fc5bbf346ba428a79ff7a13ec8491c6a8e96c",
            "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
            "tlsh:aec08c26356e3c0ca6a321b502c3aaa0e082c330489a18104700420330c31a68ac3355"
          ],
          "body_hash": "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
          "html_title": "403 Forbidden"
        },
        "supports_http2": true
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "27d40d40d00040d1dc42d43d00041d6183ff1bfae51ebd88d70384363d525c",
        "cipher_and_version_fingerprint": "27d40d40d00040d1dc42d43d00041d",
        "tls_extensions_sha256": "6183ff1bfae51ebd88d70384363d525c",
        "observed_at": "2025-03-08T18:02:47.290414215Z"
      },
      "observed_at": "2025-03-15T04:48:53.890064687Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 443,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "162.142.125.39",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
          "chain_fps_sha_256": [
            "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
            "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8"
          ],
          "leaf_data": {
            "names": [
              "ssl919552.cloudflaressl.com"
            ],
            "subject_dn": "CN=ssl919552.cloudflaressl.com",
            "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
            "pubkey_bit_size": 256,
            "pubkey_algorithm": "ECDSA",
            "tbs_fingerprint": "34ce25ae18cf4228c21c42912f80e5ad0242957679e462141f4272815bfd36ae",
            "fingerprint": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
            "issuer": {
              "common_name": [
                "COMODO ECC Domain Validation Secure Server CA 2"
              ],
              "locality": [
                "Salford"
              ],
              "organization": [
                "COMODO CA Limited"
              ],
              "province": [
                "Greater Manchester"
              ],
              "country": [
                "GB"
              ]
            },
            "subject": {
              "common_name": [
                "ssl919552.cloudflaressl.com"
              ]
            },
            "public_key": {
              "key_algorithm": "ECDSA",
              "ecdsa": {
                "_encoding": {
                  "b": "DISPLAY_BASE64",
                  "gx": "DISPLAY_BASE64",
                  "gy": "DISPLAY_BASE64",
                  "n": "DISPLAY_BASE64",
                  "p": "DISPLAY_BASE64",
                  "x": "DISPLAY_BASE64",
                  "y": "DISPLAY_BASE64"
                },
                "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
                "curve": "P-256",
                "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
                "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
                "length": 256,
                "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
                "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
                "x": "U20+04QbqoGIpWu+PtgGAO+B1ejoqGpQLUFrPUJKku0=",
                "y": "fPiuzW0mW/43dZqZxlChinRSuKQZeuHhEg3gYJvQKIg="
              },
              "fingerprint": "f24b2bf44e4ec257e2efa98ce762354743014d702c2949c641219a097d64ed21"
            },
            "signature": {
              "signature_algorithm": "ECDSA-SHA256",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
              "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority"
            },
            {
              "fingerprint": "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority",
              "issuer_dn": "C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "d75f9129bb5d05492a65ff78e081bcb2",
        "ja4s": "t130200_1303_234ea6891581",
        "versions": [
          {
            "tls_version": "TLSv1_3",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "d75f9129bb5d05492a65ff78e081bcb2",
            "ja4s": "t130200_1303_234ea6891581"
          },
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "954f7e9207d4c9012fd0692885732b12",
            "ja4s": "t120200_cca9_344b4dce5a52"
          },
          {
            "tls_version": "TLSv1_1",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "b8d8f22562475aebf44ad54175c1d9c7",
            "ja4s": "t110200_c013_344b4dce5a52"
          },
          {
            "tls_version": "TLSv1_0",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "184d532a16876b78846ae6a03f654890",
            "ja4s": "t100200_c013_344b4dce5a52"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nReferrer-Policy: same-origin\r\nCache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nVary: Accept-Encoding\r\nServer: cloudflare\r\nCF-RAY: 92077103f984251b-ORD\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:7621ea3128734ce356c37318648bc0073bbef8eb919dbf147046d1560d1c0601"
      ],
      "banner_hex": "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",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://104.18.204.201:2052/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Vary": [
              "Accept-Encoding"
            ],
            "_encoding": {
              "Vary": "DISPLAY_UTF8",
              "X_Frame_Options": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Cache_Control": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Expires": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "Referrer_Policy": "DISPLAY_UTF8"
            },
            "X_Frame_Options": [
              "SAMEORIGIN"
            ],
            "Server": [
              "cloudflare"
            ],
            "Cache_Control": [
              "private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0"
            ],
            "Transfer_Encoding": [
              "chunked"
            ],
            "Expires": [
              "Thu, 01 Jan 1970 00:00:01 GMT"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "close"
            ],
            "CF_RAY": [
              "92077103f984251b-ORD"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "Referrer_Policy": [
              "same-origin"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Direct IP access not allowed | Cloudflare</title>",
            "<meta charset=\"UTF-8\" />",
            "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />",
            "<meta name=\"robots\" content=\"noindex, nofollow\" />",
            "<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />"
          ],
          "body_size": 5895,
          "body": "<!DOCTYPE html>\n<!--[if lt IE 7]> <html class=\"no-js ie6 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 7]>    <html class=\"no-js ie7 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 8]>    <html class=\"no-js ie8 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if gt IE 8]><!--> <html class=\"no-js\" lang=\"en-US\"> <!--<![endif]-->\n<head>\n<title>Direct IP access not allowed | Cloudflare</title>\n<meta charset=\"UTF-8\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />\n<meta name=\"robots\" content=\"noindex, nofollow\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />\n<link rel=\"stylesheet\" id=\"cf_styles-css\" href=\"/cdn-cgi/styles/main.css\" />\n\n\n<script>\n(function(){if(document.addEventListener&&window.XMLHttpRequest&&JSON&&JSON.stringify){var e=function(a){var c=document.getElementById(\"error-feedback-survey\"),d=document.getElementById(\"error-feedback-success\"),b=new XMLHttpRequest;a={event:\"feedback clicked\",properties:{errorCode:1003,helpful:a,version:1}};b.open(\"POST\",\"https://sparrow.cloudflare.com/api/v1/event\");b.setRequestHeader(\"Content-Type\",\"application/json\");b.setRequestHeader(\"Sparrow-Source-Key\",\"c771f0e4b54944bebf4261d44bd79a1e\");\nb.send(JSON.stringify(a));c.classList.add(\"feedback-hidden\");d.classList.remove(\"feedback-hidden\")};document.addEventListener(\"DOMContentLoaded\",function(){var a=document.getElementById(\"error-feedback\"),c=document.getElementById(\"feedback-button-yes\"),d=document.getElementById(\"feedback-button-no\");\"classList\"in a&&(a.classList.remove(\"feedback-hidden\"),c.addEventListener(\"click\",function(){e(!0)}),d.addEventListener(\"click\",function(){e(!1)}))})}})();\n</script>\n\n<script defer src=\"https://performance.radar.cloudflare.com/beacon.js\"></script>\n</head>\n<body>\n  <div id=\"cf-wrapper\">\n    <div class=\"cf-alert cf-alert-error cf-cookie-error hidden\" id=\"cookie-alert\" data-translate=\"enable_cookies\">Please enable cookies.</div>\n    <div id=\"cf-error-details\" class=\"p-0\">\n      <header class=\"mx-auto pt-10 lg:pt-6 lg:px-8 w-240 lg:w-full mb-15 antialiased\">\n         <h1 class=\"inline-block md:block mr-2 md:mb-2 font-light text-60 md:text-3xl text-black-dark leading-tight\">\n           <span data-translate=\"error\">Error</span>\n           <span>1003</span>\n         </h1>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">Ray ID: 92077103f984251b &bull;</span>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">2025-03-14 23:09:55 UTC</span>\n        <h2 class=\"text-gray-600 leading-1.3 text-3xl lg:text-2xl font-light\">Direct IP access not allowed</h2>\n      </header>\n\n      <section class=\"w-240 lg:w-full mx-auto mb-8 lg:px-8\">\n          <div id=\"what-happened-section\" class=\"w-1/2 md:w-full\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_happened\">What happened?</h2>\n            <p>You've requested an IP address that is part of the <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">Cloudflare</a> network. A valid Host header must be supplied to reach the desired website.</p>\n            \n          </div>\n\n          \n          <div id=\"resolution-copy-section\" class=\"w-1/2 mt-6 text-15 leading-normal\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_can_i_do\">What can I do?</h2>\n            <p>If you are interested in learning more about Cloudflare, please <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">visit our website</a>.</p>\n          </div>\n          \n      </section>\n\n      <div class=\"feedback-hidden py-8 text-center\" id=\"error-feedback\">\n    <div id=\"error-feedback-survey\" class=\"footer-line-wrapper\">\n        Was this page helpful?\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-yes\" type=\"button\">Yes</button>\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-no\" type=\"button\">No</button>\n    </div>\n    <div class=\"feedback-success feedback-hidden\" id=\"error-feedback-success\">\n        Thank you for your feedback!\n    </div>\n</div>\n\n\n      <div class=\"cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300\">\n  <p class=\"text-13\">\n    <span class=\"cf-footer-item sm:block sm:mb-1\">Cloudflare Ray ID: <strong class=\"font-semibold\">92077103f984251b</strong></span>\n    <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    <span id=\"cf-footer-item-ip\" class=\"cf-footer-item hidden sm:block sm:mb-1\">\n      Your IP:\n      <button type=\"button\" id=\"cf-footer-ip-reveal\" class=\"cf-footer-ip-reveal-btn\">Click to reveal</button>\n      <span class=\"hidden\" id=\"cf-footer-ip\">206.168.34.126</span>\n      <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    </span>\n    <span class=\"cf-footer-item sm:block sm:mb-1\"><span>Performance &amp; security by</span> <a rel=\"noopener noreferrer\" href=\"https://www.cloudflare.com/5xx-error-landing\" id=\"brand_link\" target=\"_blank\">Cloudflare</a></span>\n    \n  </p>\n  <script>(function(){function d(){var b=a.getElementById(\"cf-footer-item-ip\"),c=a.getElementById(\"cf-footer-ip-reveal\");b&&\"classList\"in b&&(b.classList.remove(\"hidden\"),c.addEventListener(\"click\",function(){c.classList.add(\"hidden\");a.getElementById(\"cf-footer-ip\").classList.remove(\"hidden\")}))}var a=document;document.addEventListener&&a.addEventListener(\"DOMContentLoaded\",d)})();</script>\n</div><!-- /.error-footer -->\n\n\n    </div><!-- /#cf-error-details -->\n  </div><!-- /#cf-wrapper -->\n\n  <script>\n  window._cf_translation = {};\n  \n  \n</script>\n\n</body>\n</html>\n",
          "body_hashes": [
            "sha256:3951443546b696d730218958665cc8e7ed3ed492bcbb01a17314183a80121eb3",
            "sha1:3b14995c22ab7fe5670e3a4be8598c115e2aabab",
            "tlsh:28c19663f5f8257a1093c2a3319da71979f4c123daa704d1ba9dc4721f8de85fe07181"
          ],
          "body_hash": "sha1:3b14995c22ab7fe5670e3a4be8598c115e2aabab",
          "html_title": "Direct IP access not allowed | Cloudflare"
        },
        "supports_http2": false
      },
      "observed_at": "2025-03-14T23:09:53.848104018Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 2052,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:waf:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Cloudflare",
          "product": "WAF",
          "other": {
            "device": "WAF"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "206.168.34.126",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nServer: cloudflare\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 151\r\nConnection: keep-alive\r\nCF-RAY: 920582136ae8f8a8-ARN\r\n",
      "banner_hashes": [
        "sha256:dba6e756234abdbd856ed7c54802d75a2a772b7feb9064218250e6b507d4aedf"
      ],
      "banner_hex": "485454502f312e312034303320466f7262696464656e0d0a5365727665723a20636c6f7564666c6172650d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203135310d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a43462d5241593a20393230353832313336616538663861382d41524e0d0a",
      "certificate": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://104.18.204.201:2053/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8"
            },
            "Server": [
              "cloudflare"
            ],
            "Content_Length": [
              "151"
            ],
            "Content_Type": [
              "text/html"
            ],
            "CF_RAY": [
              "920582136ae8f8a8-ARN"
            ],
            "Connection": [
              "keep-alive"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>403 Forbidden</title>"
          ],
          "body_size": 151,
          "body": "<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>cloudflare</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:eed0b81a2fbdd1c5a9f80705885fc5bbf346ba428a79ff7a13ec8491c6a8e96c",
            "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
            "tlsh:aec08c26356e3c0ca6a321b502c3aaa0e082c330489a18104700420330c31a68ac3355"
          ],
          "body_hash": "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
          "html_title": "403 Forbidden"
        },
        "supports_http2": true
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "27d40d40d00040d1dc42d43d00041d6183ff1bfae51ebd88d70384363d525c",
        "cipher_and_version_fingerprint": "27d40d40d00040d1dc42d43d00041d",
        "tls_extensions_sha256": "6183ff1bfae51ebd88d70384363d525c",
        "observed_at": "2025-03-10T17:44:26.270303009Z"
      },
      "observed_at": "2025-03-14T17:32:02.295023656Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 2053,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.145.96",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
          "chain_fps_sha_256": [
            "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
            "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8"
          ],
          "leaf_data": {
            "names": [
              "ssl919552.cloudflaressl.com"
            ],
            "subject_dn": "CN=ssl919552.cloudflaressl.com",
            "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
            "pubkey_bit_size": 256,
            "pubkey_algorithm": "ECDSA",
            "tbs_fingerprint": "34ce25ae18cf4228c21c42912f80e5ad0242957679e462141f4272815bfd36ae",
            "fingerprint": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
            "issuer": {
              "common_name": [
                "COMODO ECC Domain Validation Secure Server CA 2"
              ],
              "locality": [
                "Salford"
              ],
              "organization": [
                "COMODO CA Limited"
              ],
              "province": [
                "Greater Manchester"
              ],
              "country": [
                "GB"
              ]
            },
            "subject": {
              "common_name": [
                "ssl919552.cloudflaressl.com"
              ]
            },
            "public_key": {
              "key_algorithm": "ECDSA",
              "ecdsa": {
                "_encoding": {
                  "b": "DISPLAY_BASE64",
                  "gx": "DISPLAY_BASE64",
                  "gy": "DISPLAY_BASE64",
                  "n": "DISPLAY_BASE64",
                  "p": "DISPLAY_BASE64",
                  "x": "DISPLAY_BASE64",
                  "y": "DISPLAY_BASE64"
                },
                "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
                "curve": "P-256",
                "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
                "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
                "length": 256,
                "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
                "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
                "x": "U20+04QbqoGIpWu+PtgGAO+B1ejoqGpQLUFrPUJKku0=",
                "y": "fPiuzW0mW/43dZqZxlChinRSuKQZeuHhEg3gYJvQKIg="
              },
              "fingerprint": "f24b2bf44e4ec257e2efa98ce762354743014d702c2949c641219a097d64ed21"
            },
            "signature": {
              "signature_algorithm": "ECDSA-SHA256",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
              "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority"
            },
            {
              "fingerprint": "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority",
              "issuer_dn": "C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "d75f9129bb5d05492a65ff78e081bcb2",
        "ja4s": "t130200_1303_234ea6891581",
        "versions": [
          {
            "tls_version": "TLSv1_3",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "d75f9129bb5d05492a65ff78e081bcb2",
            "ja4s": "t130200_1303_234ea6891581"
          },
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "954f7e9207d4c9012fd0692885732b12",
            "ja4s": "t120200_cca9_344b4dce5a52"
          },
          {
            "tls_version": "TLSv1_1",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "b8d8f22562475aebf44ad54175c1d9c7",
            "ja4s": "t110200_c013_344b4dce5a52"
          },
          {
            "tls_version": "TLSv1_0",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "184d532a16876b78846ae6a03f654890",
            "ja4s": "t100200_c013_344b4dce5a52"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nReferrer-Policy: same-origin\r\nCache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nVary: Accept-Encoding\r\nServer: cloudflare\r\nCF-RAY: 920407e0cc7b6ae0-FRA\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:2b6028a1da7e56c44c4da23f8f0bc275a216ccd3c8b6c0eb9802c36cbd971010"
      ],
      "banner_hex": "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",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://104.18.204.201:2082/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Vary": [
              "Accept-Encoding"
            ],
            "_encoding": {
              "Vary": "DISPLAY_UTF8",
              "X_Frame_Options": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Cache_Control": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Expires": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "Referrer_Policy": "DISPLAY_UTF8"
            },
            "X_Frame_Options": [
              "SAMEORIGIN"
            ],
            "Server": [
              "cloudflare"
            ],
            "Cache_Control": [
              "private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0"
            ],
            "Transfer_Encoding": [
              "chunked"
            ],
            "Expires": [
              "Thu, 01 Jan 1970 00:00:01 GMT"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "close"
            ],
            "CF_RAY": [
              "920407e0cc7b6ae0-FRA"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "Referrer_Policy": [
              "same-origin"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Direct IP access not allowed | Cloudflare</title>",
            "<meta charset=\"UTF-8\" />",
            "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />",
            "<meta name=\"robots\" content=\"noindex, nofollow\" />",
            "<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />"
          ],
          "body_size": 5894,
          "body": "<!DOCTYPE html>\n<!--[if lt IE 7]> <html class=\"no-js ie6 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 7]>    <html class=\"no-js ie7 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 8]>    <html class=\"no-js ie8 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if gt IE 8]><!--> <html class=\"no-js\" lang=\"en-US\"> <!--<![endif]-->\n<head>\n<title>Direct IP access not allowed | Cloudflare</title>\n<meta charset=\"UTF-8\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />\n<meta name=\"robots\" content=\"noindex, nofollow\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />\n<link rel=\"stylesheet\" id=\"cf_styles-css\" href=\"/cdn-cgi/styles/main.css\" />\n\n\n<script>\n(function(){if(document.addEventListener&&window.XMLHttpRequest&&JSON&&JSON.stringify){var e=function(a){var c=document.getElementById(\"error-feedback-survey\"),d=document.getElementById(\"error-feedback-success\"),b=new XMLHttpRequest;a={event:\"feedback clicked\",properties:{errorCode:1003,helpful:a,version:1}};b.open(\"POST\",\"https://sparrow.cloudflare.com/api/v1/event\");b.setRequestHeader(\"Content-Type\",\"application/json\");b.setRequestHeader(\"Sparrow-Source-Key\",\"c771f0e4b54944bebf4261d44bd79a1e\");\nb.send(JSON.stringify(a));c.classList.add(\"feedback-hidden\");d.classList.remove(\"feedback-hidden\")};document.addEventListener(\"DOMContentLoaded\",function(){var a=document.getElementById(\"error-feedback\"),c=document.getElementById(\"feedback-button-yes\"),d=document.getElementById(\"feedback-button-no\");\"classList\"in a&&(a.classList.remove(\"feedback-hidden\"),c.addEventListener(\"click\",function(){e(!0)}),d.addEventListener(\"click\",function(){e(!1)}))})}})();\n</script>\n\n<script defer src=\"https://performance.radar.cloudflare.com/beacon.js\"></script>\n</head>\n<body>\n  <div id=\"cf-wrapper\">\n    <div class=\"cf-alert cf-alert-error cf-cookie-error hidden\" id=\"cookie-alert\" data-translate=\"enable_cookies\">Please enable cookies.</div>\n    <div id=\"cf-error-details\" class=\"p-0\">\n      <header class=\"mx-auto pt-10 lg:pt-6 lg:px-8 w-240 lg:w-full mb-15 antialiased\">\n         <h1 class=\"inline-block md:block mr-2 md:mb-2 font-light text-60 md:text-3xl text-black-dark leading-tight\">\n           <span data-translate=\"error\">Error</span>\n           <span>1003</span>\n         </h1>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">Ray ID: 920407e0cc7b6ae0 &bull;</span>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">2025-03-14 13:13:51 UTC</span>\n        <h2 class=\"text-gray-600 leading-1.3 text-3xl lg:text-2xl font-light\">Direct IP access not allowed</h2>\n      </header>\n\n      <section class=\"w-240 lg:w-full mx-auto mb-8 lg:px-8\">\n          <div id=\"what-happened-section\" class=\"w-1/2 md:w-full\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_happened\">What happened?</h2>\n            <p>You've requested an IP address that is part of the <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">Cloudflare</a> network. A valid Host header must be supplied to reach the desired website.</p>\n            \n          </div>\n\n          \n          <div id=\"resolution-copy-section\" class=\"w-1/2 mt-6 text-15 leading-normal\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_can_i_do\">What can I do?</h2>\n            <p>If you are interested in learning more about Cloudflare, please <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">visit our website</a>.</p>\n          </div>\n          \n      </section>\n\n      <div class=\"feedback-hidden py-8 text-center\" id=\"error-feedback\">\n    <div id=\"error-feedback-survey\" class=\"footer-line-wrapper\">\n        Was this page helpful?\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-yes\" type=\"button\">Yes</button>\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-no\" type=\"button\">No</button>\n    </div>\n    <div class=\"feedback-success feedback-hidden\" id=\"error-feedback-success\">\n        Thank you for your feedback!\n    </div>\n</div>\n\n\n      <div class=\"cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300\">\n  <p class=\"text-13\">\n    <span class=\"cf-footer-item sm:block sm:mb-1\">Cloudflare Ray ID: <strong class=\"font-semibold\">920407e0cc7b6ae0</strong></span>\n    <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    <span id=\"cf-footer-item-ip\" class=\"cf-footer-item hidden sm:block sm:mb-1\">\n      Your IP:\n      <button type=\"button\" id=\"cf-footer-ip-reveal\" class=\"cf-footer-ip-reveal-btn\">Click to reveal</button>\n      <span class=\"hidden\" id=\"cf-footer-ip\">167.94.146.61</span>\n      <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    </span>\n    <span class=\"cf-footer-item sm:block sm:mb-1\"><span>Performance &amp; security by</span> <a rel=\"noopener noreferrer\" href=\"https://www.cloudflare.com/5xx-error-landing\" id=\"brand_link\" target=\"_blank\">Cloudflare</a></span>\n    \n  </p>\n  <script>(function(){function d(){var b=a.getElementById(\"cf-footer-item-ip\"),c=a.getElementById(\"cf-footer-ip-reveal\");b&&\"classList\"in b&&(b.classList.remove(\"hidden\"),c.addEventListener(\"click\",function(){c.classList.add(\"hidden\");a.getElementById(\"cf-footer-ip\").classList.remove(\"hidden\")}))}var a=document;document.addEventListener&&a.addEventListener(\"DOMContentLoaded\",d)})();</script>\n</div><!-- /.error-footer -->\n\n\n    </div><!-- /#cf-error-details -->\n  </div><!-- /#cf-wrapper -->\n\n  <script>\n  window._cf_translation = {};\n  \n  \n</script>\n\n</body>\n</html>\n",
          "body_hashes": [
            "sha256:2cd2d23bea95668d48bbab7fa3046b300593666adca2fa6630ee8ffac666ef43",
            "sha1:a2120acd43f224437e3fbd101892a3d373848c00",
            "tlsh:35c19563f5f8257a1093c2a331aaa71979f4c123eea704d5ba9dc0721f9de85fe07181"
          ],
          "body_hash": "sha1:a2120acd43f224437e3fbd101892a3d373848c00",
          "html_title": "Direct IP access not allowed | Cloudflare"
        },
        "supports_http2": false
      },
      "observed_at": "2025-03-14T13:13:51.481054535Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 2082,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:waf:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Cloudflare",
          "product": "WAF",
          "other": {
            "device": "WAF"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.146.61",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nServer: cloudflare\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 151\r\nConnection: keep-alive\r\nCF-RAY: 9205ac48c93802a2-ORD\r\n",
      "banner_hashes": [
        "sha256:74d2b4aed2ae3c299370c40d25ea15c4f0e120ef4aba1dbb1235b32f0af72fc9"
      ],
      "banner_hex": "485454502f312e312034303320466f7262696464656e0d0a5365727665723a20636c6f7564666c6172650d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203135310d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a43462d5241593a20393230356163343863393338303261322d4f52440d0a",
      "certificate": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://104.18.204.201:2083/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8"
            },
            "Server": [
              "cloudflare"
            ],
            "Content_Length": [
              "151"
            ],
            "Content_Type": [
              "text/html"
            ],
            "CF_RAY": [
              "9205ac48c93802a2-ORD"
            ],
            "Connection": [
              "keep-alive"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>403 Forbidden</title>"
          ],
          "body_size": 151,
          "body": "<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>cloudflare</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:eed0b81a2fbdd1c5a9f80705885fc5bbf346ba428a79ff7a13ec8491c6a8e96c",
            "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
            "tlsh:aec08c26356e3c0ca6a321b502c3aaa0e082c330489a18104700420330c31a68ac3355"
          ],
          "body_hash": "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
          "html_title": "403 Forbidden"
        },
        "supports_http2": true
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "27d40d40d00040d1dc42d43d00041d6183ff1bfae51ebd88d70384363d525c",
        "cipher_and_version_fingerprint": "27d40d40d00040d1dc42d43d00041d",
        "tls_extensions_sha256": "6183ff1bfae51ebd88d70384363d525c",
        "observed_at": "2025-03-13T22:29:27.873143022Z"
      },
      "observed_at": "2025-03-14T18:00:49.370111882Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 2083,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "206.168.34.46",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
          "chain_fps_sha_256": [
            "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
            "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8"
          ],
          "leaf_data": {
            "names": [
              "ssl919552.cloudflaressl.com"
            ],
            "subject_dn": "CN=ssl919552.cloudflaressl.com",
            "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
            "pubkey_bit_size": 256,
            "pubkey_algorithm": "ECDSA",
            "tbs_fingerprint": "34ce25ae18cf4228c21c42912f80e5ad0242957679e462141f4272815bfd36ae",
            "fingerprint": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
            "issuer": {
              "common_name": [
                "COMODO ECC Domain Validation Secure Server CA 2"
              ],
              "locality": [
                "Salford"
              ],
              "organization": [
                "COMODO CA Limited"
              ],
              "province": [
                "Greater Manchester"
              ],
              "country": [
                "GB"
              ]
            },
            "subject": {
              "common_name": [
                "ssl919552.cloudflaressl.com"
              ]
            },
            "public_key": {
              "key_algorithm": "ECDSA",
              "ecdsa": {
                "_encoding": {
                  "b": "DISPLAY_BASE64",
                  "gx": "DISPLAY_BASE64",
                  "gy": "DISPLAY_BASE64",
                  "n": "DISPLAY_BASE64",
                  "p": "DISPLAY_BASE64",
                  "x": "DISPLAY_BASE64",
                  "y": "DISPLAY_BASE64"
                },
                "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
                "curve": "P-256",
                "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
                "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
                "length": 256,
                "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
                "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
                "x": "U20+04QbqoGIpWu+PtgGAO+B1ejoqGpQLUFrPUJKku0=",
                "y": "fPiuzW0mW/43dZqZxlChinRSuKQZeuHhEg3gYJvQKIg="
              },
              "fingerprint": "f24b2bf44e4ec257e2efa98ce762354743014d702c2949c641219a097d64ed21"
            },
            "signature": {
              "signature_algorithm": "ECDSA-SHA256",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
              "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority"
            },
            {
              "fingerprint": "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority",
              "issuer_dn": "C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "d75f9129bb5d05492a65ff78e081bcb2",
        "ja4s": "t130200_1303_234ea6891581"
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nReferrer-Policy: same-origin\r\nCache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nVary: Accept-Encoding\r\nServer: cloudflare\r\nCF-RAY: 92076d13ea699b82-FRA\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:e33e5568aba39b4675661d5a081c969df9c133e896bcb073f95159a5c8ee3bb3"
      ],
      "banner_hex": "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",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://104.18.204.201:2086/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Vary": [
              "Accept-Encoding"
            ],
            "_encoding": {
              "Vary": "DISPLAY_UTF8",
              "X_Frame_Options": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Cache_Control": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Expires": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "Referrer_Policy": "DISPLAY_UTF8"
            },
            "X_Frame_Options": [
              "SAMEORIGIN"
            ],
            "Server": [
              "cloudflare"
            ],
            "Cache_Control": [
              "private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0"
            ],
            "Transfer_Encoding": [
              "chunked"
            ],
            "Expires": [
              "Thu, 01 Jan 1970 00:00:01 GMT"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "close"
            ],
            "CF_RAY": [
              "92076d13ea699b82-FRA"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "Referrer_Policy": [
              "same-origin"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Direct IP access not allowed | Cloudflare</title>",
            "<meta charset=\"UTF-8\" />",
            "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />",
            "<meta name=\"robots\" content=\"noindex, nofollow\" />",
            "<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />"
          ],
          "body_size": 5894,
          "body": "<!DOCTYPE html>\n<!--[if lt IE 7]> <html class=\"no-js ie6 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 7]>    <html class=\"no-js ie7 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 8]>    <html class=\"no-js ie8 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if gt IE 8]><!--> <html class=\"no-js\" lang=\"en-US\"> <!--<![endif]-->\n<head>\n<title>Direct IP access not allowed | Cloudflare</title>\n<meta charset=\"UTF-8\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />\n<meta name=\"robots\" content=\"noindex, nofollow\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />\n<link rel=\"stylesheet\" id=\"cf_styles-css\" href=\"/cdn-cgi/styles/main.css\" />\n\n\n<script>\n(function(){if(document.addEventListener&&window.XMLHttpRequest&&JSON&&JSON.stringify){var e=function(a){var c=document.getElementById(\"error-feedback-survey\"),d=document.getElementById(\"error-feedback-success\"),b=new XMLHttpRequest;a={event:\"feedback clicked\",properties:{errorCode:1003,helpful:a,version:1}};b.open(\"POST\",\"https://sparrow.cloudflare.com/api/v1/event\");b.setRequestHeader(\"Content-Type\",\"application/json\");b.setRequestHeader(\"Sparrow-Source-Key\",\"c771f0e4b54944bebf4261d44bd79a1e\");\nb.send(JSON.stringify(a));c.classList.add(\"feedback-hidden\");d.classList.remove(\"feedback-hidden\")};document.addEventListener(\"DOMContentLoaded\",function(){var a=document.getElementById(\"error-feedback\"),c=document.getElementById(\"feedback-button-yes\"),d=document.getElementById(\"feedback-button-no\");\"classList\"in a&&(a.classList.remove(\"feedback-hidden\"),c.addEventListener(\"click\",function(){e(!0)}),d.addEventListener(\"click\",function(){e(!1)}))})}})();\n</script>\n\n<script defer src=\"https://performance.radar.cloudflare.com/beacon.js\"></script>\n</head>\n<body>\n  <div id=\"cf-wrapper\">\n    <div class=\"cf-alert cf-alert-error cf-cookie-error hidden\" id=\"cookie-alert\" data-translate=\"enable_cookies\">Please enable cookies.</div>\n    <div id=\"cf-error-details\" class=\"p-0\">\n      <header class=\"mx-auto pt-10 lg:pt-6 lg:px-8 w-240 lg:w-full mb-15 antialiased\">\n         <h1 class=\"inline-block md:block mr-2 md:mb-2 font-light text-60 md:text-3xl text-black-dark leading-tight\">\n           <span data-translate=\"error\">Error</span>\n           <span>1003</span>\n         </h1>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">Ray ID: 92076d13ea699b82 &bull;</span>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">2025-03-14 23:07:13 UTC</span>\n        <h2 class=\"text-gray-600 leading-1.3 text-3xl lg:text-2xl font-light\">Direct IP access not allowed</h2>\n      </header>\n\n      <section class=\"w-240 lg:w-full mx-auto mb-8 lg:px-8\">\n          <div id=\"what-happened-section\" class=\"w-1/2 md:w-full\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_happened\">What happened?</h2>\n            <p>You've requested an IP address that is part of the <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">Cloudflare</a> network. A valid Host header must be supplied to reach the desired website.</p>\n            \n          </div>\n\n          \n          <div id=\"resolution-copy-section\" class=\"w-1/2 mt-6 text-15 leading-normal\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_can_i_do\">What can I do?</h2>\n            <p>If you are interested in learning more about Cloudflare, please <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">visit our website</a>.</p>\n          </div>\n          \n      </section>\n\n      <div class=\"feedback-hidden py-8 text-center\" id=\"error-feedback\">\n    <div id=\"error-feedback-survey\" class=\"footer-line-wrapper\">\n        Was this page helpful?\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-yes\" type=\"button\">Yes</button>\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-no\" type=\"button\">No</button>\n    </div>\n    <div class=\"feedback-success feedback-hidden\" id=\"error-feedback-success\">\n        Thank you for your feedback!\n    </div>\n</div>\n\n\n      <div class=\"cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300\">\n  <p class=\"text-13\">\n    <span class=\"cf-footer-item sm:block sm:mb-1\">Cloudflare Ray ID: <strong class=\"font-semibold\">92076d13ea699b82</strong></span>\n    <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    <span id=\"cf-footer-item-ip\" class=\"cf-footer-item hidden sm:block sm:mb-1\">\n      Your IP:\n      <button type=\"button\" id=\"cf-footer-ip-reveal\" class=\"cf-footer-ip-reveal-btn\">Click to reveal</button>\n      <span class=\"hidden\" id=\"cf-footer-ip\">167.94.146.52</span>\n      <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    </span>\n    <span class=\"cf-footer-item sm:block sm:mb-1\"><span>Performance &amp; security by</span> <a rel=\"noopener noreferrer\" href=\"https://www.cloudflare.com/5xx-error-landing\" id=\"brand_link\" target=\"_blank\">Cloudflare</a></span>\n    \n  </p>\n  <script>(function(){function d(){var b=a.getElementById(\"cf-footer-item-ip\"),c=a.getElementById(\"cf-footer-ip-reveal\");b&&\"classList\"in b&&(b.classList.remove(\"hidden\"),c.addEventListener(\"click\",function(){c.classList.add(\"hidden\");a.getElementById(\"cf-footer-ip\").classList.remove(\"hidden\")}))}var a=document;document.addEventListener&&a.addEventListener(\"DOMContentLoaded\",d)})();</script>\n</div><!-- /.error-footer -->\n\n\n    </div><!-- /#cf-error-details -->\n  </div><!-- /#cf-wrapper -->\n\n  <script>\n  window._cf_translation = {};\n  \n  \n</script>\n\n</body>\n</html>\n",
          "body_hashes": [
            "sha256:ce9a34b6d569b77403d658fce1b75207ed90fae5999ac9dbfe50637ebb23056e",
            "sha1:45f3763e6c2966ec403363e53cc47604610162b3",
            "tlsh:d1c19663f5f8257a1093c2a33199a71979f4c163dea700d1b6adc4721f8de85fe07181"
          ],
          "body_hash": "sha1:45f3763e6c2966ec403363e53cc47604610162b3",
          "html_title": "Direct IP access not allowed | Cloudflare"
        },
        "supports_http2": false
      },
      "observed_at": "2025-03-14T23:07:10.272815819Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 2086,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:waf:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Cloudflare",
          "product": "WAF",
          "other": {
            "device": "WAF"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.146.52",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nServer: cloudflare\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 151\r\nConnection: keep-alive\r\nCF-RAY: 920a379e589b52a6-ORD\r\n",
      "banner_hashes": [
        "sha256:cf1ead07a0172f2bd18eeb1175b3414cbb88a275357edc250c54cae60a218442"
      ],
      "banner_hex": "485454502f312e312034303320466f7262696464656e0d0a5365727665723a20636c6f7564666c6172650d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203135310d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a43462d5241593a20393230613337396535383962353261362d4f52440d0a",
      "certificate": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://104.18.204.201:2087/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8"
            },
            "Server": [
              "cloudflare"
            ],
            "Content_Length": [
              "151"
            ],
            "Content_Type": [
              "text/html"
            ],
            "CF_RAY": [
              "920a379e589b52a6-ORD"
            ],
            "Connection": [
              "keep-alive"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>403 Forbidden</title>"
          ],
          "body_size": 151,
          "body": "<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>cloudflare</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:eed0b81a2fbdd1c5a9f80705885fc5bbf346ba428a79ff7a13ec8491c6a8e96c",
            "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
            "tlsh:aec08c26356e3c0ca6a321b502c3aaa0e082c330489a18104700420330c31a68ac3355"
          ],
          "body_hash": "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
          "html_title": "403 Forbidden"
        },
        "supports_http2": true
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "27d40d40d00040d1dc42d43d00041d6183ff1bfae51ebd88d70384363d525c",
        "cipher_and_version_fingerprint": "27d40d40d00040d1dc42d43d00041d",
        "tls_extensions_sha256": "6183ff1bfae51ebd88d70384363d525c",
        "observed_at": "2025-03-12T15:24:41.702058182Z"
      },
      "observed_at": "2025-03-15T07:14:51.224076188Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 2087,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.38",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
          "chain_fps_sha_256": [
            "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
            "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8"
          ],
          "leaf_data": {
            "names": [
              "ssl919552.cloudflaressl.com"
            ],
            "subject_dn": "CN=ssl919552.cloudflaressl.com",
            "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
            "pubkey_bit_size": 256,
            "pubkey_algorithm": "ECDSA",
            "tbs_fingerprint": "34ce25ae18cf4228c21c42912f80e5ad0242957679e462141f4272815bfd36ae",
            "fingerprint": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
            "issuer": {
              "common_name": [
                "COMODO ECC Domain Validation Secure Server CA 2"
              ],
              "locality": [
                "Salford"
              ],
              "organization": [
                "COMODO CA Limited"
              ],
              "province": [
                "Greater Manchester"
              ],
              "country": [
                "GB"
              ]
            },
            "subject": {
              "common_name": [
                "ssl919552.cloudflaressl.com"
              ]
            },
            "public_key": {
              "key_algorithm": "ECDSA",
              "ecdsa": {
                "_encoding": {
                  "b": "DISPLAY_BASE64",
                  "gx": "DISPLAY_BASE64",
                  "gy": "DISPLAY_BASE64",
                  "n": "DISPLAY_BASE64",
                  "p": "DISPLAY_BASE64",
                  "x": "DISPLAY_BASE64",
                  "y": "DISPLAY_BASE64"
                },
                "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
                "curve": "P-256",
                "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
                "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
                "length": 256,
                "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
                "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
                "x": "U20+04QbqoGIpWu+PtgGAO+B1ejoqGpQLUFrPUJKku0=",
                "y": "fPiuzW0mW/43dZqZxlChinRSuKQZeuHhEg3gYJvQKIg="
              },
              "fingerprint": "f24b2bf44e4ec257e2efa98ce762354743014d702c2949c641219a097d64ed21"
            },
            "signature": {
              "signature_algorithm": "ECDSA-SHA256",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
              "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority"
            },
            {
              "fingerprint": "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority",
              "issuer_dn": "C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "d75f9129bb5d05492a65ff78e081bcb2",
        "ja4s": "t130200_1303_234ea6891581",
        "versions": [
          {
            "tls_version": "TLSv1_3",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "d75f9129bb5d05492a65ff78e081bcb2",
            "ja4s": "t130200_1303_234ea6891581"
          },
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "954f7e9207d4c9012fd0692885732b12",
            "ja4s": "t120200_cca9_344b4dce5a52"
          },
          {
            "tls_version": "TLSv1_1",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "b8d8f22562475aebf44ad54175c1d9c7",
            "ja4s": "t110200_c013_344b4dce5a52"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nReferrer-Policy: same-origin\r\nCache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nVary: Accept-Encoding\r\nServer: cloudflare\r\nCF-RAY: 9208f8ca5d4de20f-ORD\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:7f6d22d828683e2554d1c88fabbad12808e674706a3c480d2f0f290000036855"
      ],
      "banner_hex": "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",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://104.18.204.201:2095/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Vary": [
              "Accept-Encoding"
            ],
            "_encoding": {
              "Vary": "DISPLAY_UTF8",
              "X_Frame_Options": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Cache_Control": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Expires": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "Referrer_Policy": "DISPLAY_UTF8"
            },
            "X_Frame_Options": [
              "SAMEORIGIN"
            ],
            "Server": [
              "cloudflare"
            ],
            "Cache_Control": [
              "private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0"
            ],
            "Transfer_Encoding": [
              "chunked"
            ],
            "Expires": [
              "Thu, 01 Jan 1970 00:00:01 GMT"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "close"
            ],
            "CF_RAY": [
              "9208f8ca5d4de20f-ORD"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "Referrer_Policy": [
              "same-origin"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Direct IP access not allowed | Cloudflare</title>",
            "<meta charset=\"UTF-8\" />",
            "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />",
            "<meta name=\"robots\" content=\"noindex, nofollow\" />",
            "<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />"
          ],
          "body_size": 5895,
          "body": "<!DOCTYPE html>\n<!--[if lt IE 7]> <html class=\"no-js ie6 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 7]>    <html class=\"no-js ie7 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 8]>    <html class=\"no-js ie8 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if gt IE 8]><!--> <html class=\"no-js\" lang=\"en-US\"> <!--<![endif]-->\n<head>\n<title>Direct IP access not allowed | Cloudflare</title>\n<meta charset=\"UTF-8\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />\n<meta name=\"robots\" content=\"noindex, nofollow\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />\n<link rel=\"stylesheet\" id=\"cf_styles-css\" href=\"/cdn-cgi/styles/main.css\" />\n\n\n<script>\n(function(){if(document.addEventListener&&window.XMLHttpRequest&&JSON&&JSON.stringify){var e=function(a){var c=document.getElementById(\"error-feedback-survey\"),d=document.getElementById(\"error-feedback-success\"),b=new XMLHttpRequest;a={event:\"feedback clicked\",properties:{errorCode:1003,helpful:a,version:1}};b.open(\"POST\",\"https://sparrow.cloudflare.com/api/v1/event\");b.setRequestHeader(\"Content-Type\",\"application/json\");b.setRequestHeader(\"Sparrow-Source-Key\",\"c771f0e4b54944bebf4261d44bd79a1e\");\nb.send(JSON.stringify(a));c.classList.add(\"feedback-hidden\");d.classList.remove(\"feedback-hidden\")};document.addEventListener(\"DOMContentLoaded\",function(){var a=document.getElementById(\"error-feedback\"),c=document.getElementById(\"feedback-button-yes\"),d=document.getElementById(\"feedback-button-no\");\"classList\"in a&&(a.classList.remove(\"feedback-hidden\"),c.addEventListener(\"click\",function(){e(!0)}),d.addEventListener(\"click\",function(){e(!1)}))})}})();\n</script>\n\n<script defer src=\"https://performance.radar.cloudflare.com/beacon.js\"></script>\n</head>\n<body>\n  <div id=\"cf-wrapper\">\n    <div class=\"cf-alert cf-alert-error cf-cookie-error hidden\" id=\"cookie-alert\" data-translate=\"enable_cookies\">Please enable cookies.</div>\n    <div id=\"cf-error-details\" class=\"p-0\">\n      <header class=\"mx-auto pt-10 lg:pt-6 lg:px-8 w-240 lg:w-full mb-15 antialiased\">\n         <h1 class=\"inline-block md:block mr-2 md:mb-2 font-light text-60 md:text-3xl text-black-dark leading-tight\">\n           <span data-translate=\"error\">Error</span>\n           <span>1003</span>\n         </h1>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">Ray ID: 9208f8ca5d4de20f &bull;</span>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">2025-03-15 03:37:22 UTC</span>\n        <h2 class=\"text-gray-600 leading-1.3 text-3xl lg:text-2xl font-light\">Direct IP access not allowed</h2>\n      </header>\n\n      <section class=\"w-240 lg:w-full mx-auto mb-8 lg:px-8\">\n          <div id=\"what-happened-section\" class=\"w-1/2 md:w-full\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_happened\">What happened?</h2>\n            <p>You've requested an IP address that is part of the <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">Cloudflare</a> network. A valid Host header must be supplied to reach the desired website.</p>\n            \n          </div>\n\n          \n          <div id=\"resolution-copy-section\" class=\"w-1/2 mt-6 text-15 leading-normal\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_can_i_do\">What can I do?</h2>\n            <p>If you are interested in learning more about Cloudflare, please <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">visit our website</a>.</p>\n          </div>\n          \n      </section>\n\n      <div class=\"feedback-hidden py-8 text-center\" id=\"error-feedback\">\n    <div id=\"error-feedback-survey\" class=\"footer-line-wrapper\">\n        Was this page helpful?\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-yes\" type=\"button\">Yes</button>\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-no\" type=\"button\">No</button>\n    </div>\n    <div class=\"feedback-success feedback-hidden\" id=\"error-feedback-success\">\n        Thank you for your feedback!\n    </div>\n</div>\n\n\n      <div class=\"cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300\">\n  <p class=\"text-13\">\n    <span class=\"cf-footer-item sm:block sm:mb-1\">Cloudflare Ray ID: <strong class=\"font-semibold\">9208f8ca5d4de20f</strong></span>\n    <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    <span id=\"cf-footer-item-ip\" class=\"cf-footer-item hidden sm:block sm:mb-1\">\n      Your IP:\n      <button type=\"button\" id=\"cf-footer-ip-reveal\" class=\"cf-footer-ip-reveal-btn\">Click to reveal</button>\n      <span class=\"hidden\" id=\"cf-footer-ip\">167.94.138.198</span>\n      <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    </span>\n    <span class=\"cf-footer-item sm:block sm:mb-1\"><span>Performance &amp; security by</span> <a rel=\"noopener noreferrer\" href=\"https://www.cloudflare.com/5xx-error-landing\" id=\"brand_link\" target=\"_blank\">Cloudflare</a></span>\n    \n  </p>\n  <script>(function(){function d(){var b=a.getElementById(\"cf-footer-item-ip\"),c=a.getElementById(\"cf-footer-ip-reveal\");b&&\"classList\"in b&&(b.classList.remove(\"hidden\"),c.addEventListener(\"click\",function(){c.classList.add(\"hidden\");a.getElementById(\"cf-footer-ip\").classList.remove(\"hidden\")}))}var a=document;document.addEventListener&&a.addEventListener(\"DOMContentLoaded\",d)})();</script>\n</div><!-- /.error-footer -->\n\n\n    </div><!-- /#cf-error-details -->\n  </div><!-- /#cf-wrapper -->\n\n  <script>\n  window._cf_translation = {};\n  \n  \n</script>\n\n</body>\n</html>\n",
          "body_hashes": [
            "sha256:bc9ccb86dfb9af65f41e57810b15ca7ec2f387c8f495b66602233a19abbb9283",
            "sha1:6d633d5417ba07bd6a95a1d2f9141b98d51cbf35",
            "tlsh:abc18563f5fc257a1093c2a33199a71979f48123eaa704d1ba9dc4721f9de85fe07181"
          ],
          "body_hash": "sha1:6d633d5417ba07bd6a95a1d2f9141b98d51cbf35",
          "html_title": "Direct IP access not allowed | Cloudflare"
        },
        "supports_http2": false
      },
      "observed_at": "2025-03-15T03:37:21.570706659Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 2095,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:waf:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Cloudflare",
          "product": "WAF",
          "other": {
            "device": "WAF"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.198",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nServer: cloudflare\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 151\r\nConnection: keep-alive\r\nCF-RAY: 920acc9d985c0a44-ARN\r\n",
      "banner_hashes": [
        "sha256:9ecf37685d6e9f0ce047f97dadb6d9da2dafdd3706c3493d7fc978f3b52162e9"
      ],
      "banner_hex": "485454502f312e312034303320466f7262696464656e0d0a5365727665723a20636c6f7564666c6172650d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203135310d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a43462d5241593a20393230616363396439383563306134342d41524e0d0a",
      "certificate": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://104.18.204.201:2096/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8"
            },
            "Server": [
              "cloudflare"
            ],
            "Content_Length": [
              "151"
            ],
            "Content_Type": [
              "text/html"
            ],
            "CF_RAY": [
              "920acc9d985c0a44-ARN"
            ],
            "Connection": [
              "keep-alive"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>403 Forbidden</title>"
          ],
          "body_size": 151,
          "body": "<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>cloudflare</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:eed0b81a2fbdd1c5a9f80705885fc5bbf346ba428a79ff7a13ec8491c6a8e96c",
            "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
            "tlsh:aec08c26356e3c0ca6a321b502c3aaa0e082c330489a18104700420330c31a68ac3355"
          ],
          "body_hash": "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
          "html_title": "403 Forbidden"
        },
        "supports_http2": true
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "27d40d40d00040d1dc42d43d00041d6183ff1bfae51ebd88d70384363d525c",
        "cipher_and_version_fingerprint": "27d40d40d00040d1dc42d43d00041d",
        "tls_extensions_sha256": "6183ff1bfae51ebd88d70384363d525c",
        "observed_at": "2025-02-28T00:06:15.412027723Z"
      },
      "observed_at": "2025-03-15T08:56:43.791921542Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 2096,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.145.111",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
          "chain_fps_sha_256": [
            "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
            "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8"
          ],
          "leaf_data": {
            "names": [
              "ssl919552.cloudflaressl.com"
            ],
            "subject_dn": "CN=ssl919552.cloudflaressl.com",
            "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
            "pubkey_bit_size": 256,
            "pubkey_algorithm": "ECDSA",
            "tbs_fingerprint": "34ce25ae18cf4228c21c42912f80e5ad0242957679e462141f4272815bfd36ae",
            "fingerprint": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
            "issuer": {
              "common_name": [
                "COMODO ECC Domain Validation Secure Server CA 2"
              ],
              "locality": [
                "Salford"
              ],
              "organization": [
                "COMODO CA Limited"
              ],
              "province": [
                "Greater Manchester"
              ],
              "country": [
                "GB"
              ]
            },
            "subject": {
              "common_name": [
                "ssl919552.cloudflaressl.com"
              ]
            },
            "public_key": {
              "key_algorithm": "ECDSA",
              "ecdsa": {
                "_encoding": {
                  "b": "DISPLAY_BASE64",
                  "gx": "DISPLAY_BASE64",
                  "gy": "DISPLAY_BASE64",
                  "n": "DISPLAY_BASE64",
                  "p": "DISPLAY_BASE64",
                  "x": "DISPLAY_BASE64",
                  "y": "DISPLAY_BASE64"
                },
                "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
                "curve": "P-256",
                "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
                "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
                "length": 256,
                "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
                "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
                "x": "U20+04QbqoGIpWu+PtgGAO+B1ejoqGpQLUFrPUJKku0=",
                "y": "fPiuzW0mW/43dZqZxlChinRSuKQZeuHhEg3gYJvQKIg="
              },
              "fingerprint": "f24b2bf44e4ec257e2efa98ce762354743014d702c2949c641219a097d64ed21"
            },
            "signature": {
              "signature_algorithm": "ECDSA-SHA256",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
              "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority"
            },
            {
              "fingerprint": "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority",
              "issuer_dn": "C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "d75f9129bb5d05492a65ff78e081bcb2",
        "ja4s": "t130200_1303_234ea6891581",
        "versions": [
          {
            "tls_version": "TLSv1_3",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "d75f9129bb5d05492a65ff78e081bcb2",
            "ja4s": "t130200_1303_234ea6891581"
          },
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "954f7e9207d4c9012fd0692885732b12",
            "ja4s": "t120200_cca9_344b4dce5a52"
          },
          {
            "tls_version": "TLSv1_1",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "b8d8f22562475aebf44ad54175c1d9c7",
            "ja4s": "t110200_c013_344b4dce5a52"
          },
          {
            "tls_version": "TLSv1_0",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "184d532a16876b78846ae6a03f654890",
            "ja4s": "t100200_c013_344b4dce5a52"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nReferrer-Policy: same-origin\r\nCache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nVary: Accept-Encoding\r\nServer: cloudflare\r\nCF-RAY: 9206801798545d40-FRA\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:1ccf889d5dd48e82ba89b76cbec2c5e5f0be03a5dfcb3dac4faef39e3b944a6f"
      ],
      "banner_hex": "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",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://104.18.204.201:8080/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Vary": [
              "Accept-Encoding"
            ],
            "_encoding": {
              "Vary": "DISPLAY_UTF8",
              "X_Frame_Options": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Cache_Control": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Expires": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "Referrer_Policy": "DISPLAY_UTF8"
            },
            "X_Frame_Options": [
              "SAMEORIGIN"
            ],
            "Server": [
              "cloudflare"
            ],
            "Cache_Control": [
              "private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0"
            ],
            "Transfer_Encoding": [
              "chunked"
            ],
            "Expires": [
              "Thu, 01 Jan 1970 00:00:01 GMT"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "close"
            ],
            "CF_RAY": [
              "9206801798545d40-FRA"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "Referrer_Policy": [
              "same-origin"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Direct IP access not allowed | Cloudflare</title>",
            "<meta charset=\"UTF-8\" />",
            "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />",
            "<meta name=\"robots\" content=\"noindex, nofollow\" />",
            "<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />"
          ],
          "body_size": 5894,
          "body": "<!DOCTYPE html>\n<!--[if lt IE 7]> <html class=\"no-js ie6 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 7]>    <html class=\"no-js ie7 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 8]>    <html class=\"no-js ie8 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if gt IE 8]><!--> <html class=\"no-js\" lang=\"en-US\"> <!--<![endif]-->\n<head>\n<title>Direct IP access not allowed | Cloudflare</title>\n<meta charset=\"UTF-8\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />\n<meta name=\"robots\" content=\"noindex, nofollow\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />\n<link rel=\"stylesheet\" id=\"cf_styles-css\" href=\"/cdn-cgi/styles/main.css\" />\n\n\n<script>\n(function(){if(document.addEventListener&&window.XMLHttpRequest&&JSON&&JSON.stringify){var e=function(a){var c=document.getElementById(\"error-feedback-survey\"),d=document.getElementById(\"error-feedback-success\"),b=new XMLHttpRequest;a={event:\"feedback clicked\",properties:{errorCode:1003,helpful:a,version:1}};b.open(\"POST\",\"https://sparrow.cloudflare.com/api/v1/event\");b.setRequestHeader(\"Content-Type\",\"application/json\");b.setRequestHeader(\"Sparrow-Source-Key\",\"c771f0e4b54944bebf4261d44bd79a1e\");\nb.send(JSON.stringify(a));c.classList.add(\"feedback-hidden\");d.classList.remove(\"feedback-hidden\")};document.addEventListener(\"DOMContentLoaded\",function(){var a=document.getElementById(\"error-feedback\"),c=document.getElementById(\"feedback-button-yes\"),d=document.getElementById(\"feedback-button-no\");\"classList\"in a&&(a.classList.remove(\"feedback-hidden\"),c.addEventListener(\"click\",function(){e(!0)}),d.addEventListener(\"click\",function(){e(!1)}))})}})();\n</script>\n\n<script defer src=\"https://performance.radar.cloudflare.com/beacon.js\"></script>\n</head>\n<body>\n  <div id=\"cf-wrapper\">\n    <div class=\"cf-alert cf-alert-error cf-cookie-error hidden\" id=\"cookie-alert\" data-translate=\"enable_cookies\">Please enable cookies.</div>\n    <div id=\"cf-error-details\" class=\"p-0\">\n      <header class=\"mx-auto pt-10 lg:pt-6 lg:px-8 w-240 lg:w-full mb-15 antialiased\">\n         <h1 class=\"inline-block md:block mr-2 md:mb-2 font-light text-60 md:text-3xl text-black-dark leading-tight\">\n           <span data-translate=\"error\">Error</span>\n           <span>1003</span>\n         </h1>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">Ray ID: 9206801798545d40 &bull;</span>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">2025-03-14 20:25:26 UTC</span>\n        <h2 class=\"text-gray-600 leading-1.3 text-3xl lg:text-2xl font-light\">Direct IP access not allowed</h2>\n      </header>\n\n      <section class=\"w-240 lg:w-full mx-auto mb-8 lg:px-8\">\n          <div id=\"what-happened-section\" class=\"w-1/2 md:w-full\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_happened\">What happened?</h2>\n            <p>You've requested an IP address that is part of the <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">Cloudflare</a> network. A valid Host header must be supplied to reach the desired website.</p>\n            \n          </div>\n\n          \n          <div id=\"resolution-copy-section\" class=\"w-1/2 mt-6 text-15 leading-normal\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_can_i_do\">What can I do?</h2>\n            <p>If you are interested in learning more about Cloudflare, please <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">visit our website</a>.</p>\n          </div>\n          \n      </section>\n\n      <div class=\"feedback-hidden py-8 text-center\" id=\"error-feedback\">\n    <div id=\"error-feedback-survey\" class=\"footer-line-wrapper\">\n        Was this page helpful?\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-yes\" type=\"button\">Yes</button>\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-no\" type=\"button\">No</button>\n    </div>\n    <div class=\"feedback-success feedback-hidden\" id=\"error-feedback-success\">\n        Thank you for your feedback!\n    </div>\n</div>\n\n\n      <div class=\"cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300\">\n  <p class=\"text-13\">\n    <span class=\"cf-footer-item sm:block sm:mb-1\">Cloudflare Ray ID: <strong class=\"font-semibold\">9206801798545d40</strong></span>\n    <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    <span id=\"cf-footer-item-ip\" class=\"cf-footer-item hidden sm:block sm:mb-1\">\n      Your IP:\n      <button type=\"button\" id=\"cf-footer-ip-reveal\" class=\"cf-footer-ip-reveal-btn\">Click to reveal</button>\n      <span class=\"hidden\" id=\"cf-footer-ip\">167.94.146.53</span>\n      <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    </span>\n    <span class=\"cf-footer-item sm:block sm:mb-1\"><span>Performance &amp; security by</span> <a rel=\"noopener noreferrer\" href=\"https://www.cloudflare.com/5xx-error-landing\" id=\"brand_link\" target=\"_blank\">Cloudflare</a></span>\n    \n  </p>\n  <script>(function(){function d(){var b=a.getElementById(\"cf-footer-item-ip\"),c=a.getElementById(\"cf-footer-ip-reveal\");b&&\"classList\"in b&&(b.classList.remove(\"hidden\"),c.addEventListener(\"click\",function(){c.classList.add(\"hidden\");a.getElementById(\"cf-footer-ip\").classList.remove(\"hidden\")}))}var a=document;document.addEventListener&&a.addEventListener(\"DOMContentLoaded\",d)})();</script>\n</div><!-- /.error-footer -->\n\n\n    </div><!-- /#cf-error-details -->\n  </div><!-- /#cf-wrapper -->\n\n  <script>\n  window._cf_translation = {};\n  \n  \n</script>\n\n</body>\n</html>\n",
          "body_hashes": [
            "sha256:053e8971e35732adcb1e47bf7dc07171794813cf2ca119513192e8ebd1b2fe20",
            "sha1:76cbbc7706e92e06ebec2f01026623ed9fb7ed4c",
            "tlsh:c9c185a2f5f8257a1193c2a33199a71979f48123eea700e1b69dc4721f8ee85fe07181"
          ],
          "body_hash": "sha1:76cbbc7706e92e06ebec2f01026623ed9fb7ed4c",
          "html_title": "Direct IP access not allowed | Cloudflare"
        },
        "supports_http2": false
      },
      "observed_at": "2025-03-14T20:25:26.909049514Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 8080,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:waf:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Cloudflare",
          "product": "WAF",
          "other": {
            "device": "WAF"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.146.53",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nServer: cloudflare\r\nDate:  <REDACTED>\r\nContent-Type: text/html\r\nContent-Length: 151\r\nConnection: keep-alive\r\nCF-RAY: 920b15acdf597a44-ORD\r\n",
      "banner_hashes": [
        "sha256:a085d4983b11a96bd9118cec3747c93eefc9249a58ef3bd4af9c28d01f11ddbd"
      ],
      "banner_hex": "485454502f312e312034303320466f7262696464656e0d0a5365727665723a20636c6f7564666c6172650d0a446174653a20203c52454441435445443e0d0a436f6e74656e742d547970653a20746578742f68746d6c0d0a436f6e74656e742d4c656e6774683a203135310d0a436f6e6e656374696f6e3a206b6565702d616c6976650d0a43462d5241593a20393230623135616364663539376134342d4f52440d0a",
      "certificate": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://104.18.204.201:8443/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Date": [
              "<REDACTED>"
            ],
            "_encoding": {
              "Date": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8"
            },
            "Server": [
              "cloudflare"
            ],
            "Content_Length": [
              "151"
            ],
            "Content_Type": [
              "text/html"
            ],
            "CF_RAY": [
              "920b15acdf597a44-ORD"
            ],
            "Connection": [
              "keep-alive"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>403 Forbidden</title>"
          ],
          "body_size": 151,
          "body": "<html>\r\n<head><title>403 Forbidden</title></head>\r\n<body>\r\n<center><h1>403 Forbidden</h1></center>\r\n<hr><center>cloudflare</center>\r\n</body>\r\n</html>\r\n",
          "body_hashes": [
            "sha256:eed0b81a2fbdd1c5a9f80705885fc5bbf346ba428a79ff7a13ec8491c6a8e96c",
            "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
            "tlsh:aec08c26356e3c0ca6a321b502c3aaa0e082c330489a18104700420330c31a68ac3355"
          ],
          "body_hash": "sha1:441671eacb9398792d435443beaddd3fc5fa1910",
          "html_title": "403 Forbidden"
        },
        "supports_http2": true
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "27d40d40d00040d1dc42d43d00041d6183ff1bfae51ebd88d70384363d525c",
        "cipher_and_version_fingerprint": "27d40d40d00040d1dc42d43d00041d",
        "tls_extensions_sha256": "6183ff1bfae51ebd88d70384363d525c",
        "observed_at": "2025-02-28T16:05:10.833641604Z"
      },
      "observed_at": "2025-03-15T09:46:35.099152861Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 8443,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "206.168.34.74",
      "tls": {
        "version_selected": "TLSv1_3",
        "cipher_selected": "TLS_CHACHA20_POLY1305_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
          "chain_fps_sha_256": [
            "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
            "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8"
          ],
          "leaf_data": {
            "names": [
              "ssl919552.cloudflaressl.com"
            ],
            "subject_dn": "CN=ssl919552.cloudflaressl.com",
            "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
            "pubkey_bit_size": 256,
            "pubkey_algorithm": "ECDSA",
            "tbs_fingerprint": "34ce25ae18cf4228c21c42912f80e5ad0242957679e462141f4272815bfd36ae",
            "fingerprint": "72f856eda2e682317e216f67848d44b1d513eefd0278298912c20e71f70bfeb2",
            "issuer": {
              "common_name": [
                "COMODO ECC Domain Validation Secure Server CA 2"
              ],
              "locality": [
                "Salford"
              ],
              "organization": [
                "COMODO CA Limited"
              ],
              "province": [
                "Greater Manchester"
              ],
              "country": [
                "GB"
              ]
            },
            "subject": {
              "common_name": [
                "ssl919552.cloudflaressl.com"
              ]
            },
            "public_key": {
              "key_algorithm": "ECDSA",
              "ecdsa": {
                "_encoding": {
                  "b": "DISPLAY_BASE64",
                  "gx": "DISPLAY_BASE64",
                  "gy": "DISPLAY_BASE64",
                  "n": "DISPLAY_BASE64",
                  "p": "DISPLAY_BASE64",
                  "x": "DISPLAY_BASE64",
                  "y": "DISPLAY_BASE64"
                },
                "b": "WsY12Ko6k+ez671VdpiGvGUdBrDMU7D2O848PifSYEs=",
                "curve": "P-256",
                "gx": "axfR8uEsQkf4vOblY6RA8ncDfYEt6zOg9KE5RdiYwpY=",
                "gy": "T+NC4v4af5uO5+tKfA+eFivOM1drMV7Oy7ZAaDe/UfU=",
                "length": 256,
                "n": "/////wAAAAD//////////7zm+q2nF56E87nKwvxjJVE=",
                "p": "/////wAAAAEAAAAAAAAAAAAAAAD///////////////8=",
                "x": "U20+04QbqoGIpWu+PtgGAO+B1ejoqGpQLUFrPUJKku0=",
                "y": "fPiuzW0mW/43dZqZxlChinRSuKQZeuHhEg3gYJvQKIg="
              },
              "fingerprint": "f24b2bf44e4ec257e2efa98ce762354743014d702c2949c641219a097d64ed21"
            },
            "signature": {
              "signature_algorithm": "ECDSA-SHA256",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "cd6c108a0e641f2ca122aaa6d03f826759cae7c6f800eabf76dc48b67cd083ce",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Domain Validation Secure Server CA 2",
              "issuer_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority"
            },
            {
              "fingerprint": "9573862ac0b4b125168810ea3fd101ae2eb0bb15f61fc0e6da7a2a38b85a89e8",
              "subject_dn": "C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO ECC Certification Authority",
              "issuer_dn": "C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root"
            }
          ]
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "d75f9129bb5d05492a65ff78e081bcb2",
        "ja4s": "t130200_1303_234ea6891581",
        "versions": [
          {
            "tls_version": "TLSv1_3",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "d75f9129bb5d05492a65ff78e081bcb2",
            "ja4s": "t130200_1303_234ea6891581"
          },
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "954f7e9207d4c9012fd0692885732b12",
            "ja4s": "t120200_cca9_344b4dce5a52"
          },
          {
            "tls_version": "TLSv1_1",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "b8d8f22562475aebf44ad54175c1d9c7",
            "ja4s": "t110200_c013_344b4dce5a52"
          },
          {
            "tls_version": "TLSv1_0",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "184d532a16876b78846ae6a03f654890",
            "ja4s": "t100200_c013_344b4dce5a52"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 403 Forbidden\r\nDate:  <REDACTED>\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nX-Frame-Options: SAMEORIGIN\r\nReferrer-Policy: same-origin\r\nCache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nVary: Accept-Encoding\r\nServer: cloudflare\r\nCF-RAY: 9207d3e7fb87f418-HKG\r\nContent-Encoding: gzip\r\n",
      "banner_hashes": [
        "sha256:e734de0a8c36f85c9af611ce8ab53e5cc6f7b314e0e5f3b71c86fc4313916f83"
      ],
      "banner_hex": "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",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://104.18.204.201:8880/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 403,
          "status_reason": "Forbidden",
          "headers": {
            "Vary": [
              "Accept-Encoding"
            ],
            "_encoding": {
              "Vary": "DISPLAY_UTF8",
              "X_Frame_Options": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Cache_Control": "DISPLAY_UTF8",
              "Transfer_Encoding": "DISPLAY_UTF8",
              "Expires": "DISPLAY_UTF8",
              "Content_Type": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "CF_RAY": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Content_Encoding": "DISPLAY_UTF8",
              "Referrer_Policy": "DISPLAY_UTF8"
            },
            "X_Frame_Options": [
              "SAMEORIGIN"
            ],
            "Server": [
              "cloudflare"
            ],
            "Cache_Control": [
              "private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0"
            ],
            "Transfer_Encoding": [
              "chunked"
            ],
            "Expires": [
              "Thu, 01 Jan 1970 00:00:01 GMT"
            ],
            "Content_Type": [
              "text/html; charset=UTF-8"
            ],
            "Connection": [
              "close"
            ],
            "CF_RAY": [
              "9207d3e7fb87f418-HKG"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Content_Encoding": [
              "gzip"
            ],
            "Referrer_Policy": [
              "same-origin"
            ]
          },
          "_encoding": {
            "html_tags": "DISPLAY_UTF8",
            "body": "DISPLAY_UTF8",
            "body_hash": "DISPLAY_UTF8",
            "html_title": "DISPLAY_UTF8"
          },
          "html_tags": [
            "<title>Direct IP access not allowed | Cloudflare</title>",
            "<meta charset=\"UTF-8\" />",
            "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />",
            "<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />",
            "<meta name=\"robots\" content=\"noindex, nofollow\" />",
            "<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />"
          ],
          "body_size": 5895,
          "body": "<!DOCTYPE html>\n<!--[if lt IE 7]> <html class=\"no-js ie6 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 7]>    <html class=\"no-js ie7 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if IE 8]>    <html class=\"no-js ie8 oldie\" lang=\"en-US\"> <![endif]-->\n<!--[if gt IE 8]><!--> <html class=\"no-js\" lang=\"en-US\"> <!--<![endif]-->\n<head>\n<title>Direct IP access not allowed | Cloudflare</title>\n<meta charset=\"UTF-8\" />\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=UTF-8\" />\n<meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />\n<meta name=\"robots\" content=\"noindex, nofollow\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1\" />\n<link rel=\"stylesheet\" id=\"cf_styles-css\" href=\"/cdn-cgi/styles/main.css\" />\n\n\n<script>\n(function(){if(document.addEventListener&&window.XMLHttpRequest&&JSON&&JSON.stringify){var e=function(a){var c=document.getElementById(\"error-feedback-survey\"),d=document.getElementById(\"error-feedback-success\"),b=new XMLHttpRequest;a={event:\"feedback clicked\",properties:{errorCode:1003,helpful:a,version:1}};b.open(\"POST\",\"https://sparrow.cloudflare.com/api/v1/event\");b.setRequestHeader(\"Content-Type\",\"application/json\");b.setRequestHeader(\"Sparrow-Source-Key\",\"c771f0e4b54944bebf4261d44bd79a1e\");\nb.send(JSON.stringify(a));c.classList.add(\"feedback-hidden\");d.classList.remove(\"feedback-hidden\")};document.addEventListener(\"DOMContentLoaded\",function(){var a=document.getElementById(\"error-feedback\"),c=document.getElementById(\"feedback-button-yes\"),d=document.getElementById(\"feedback-button-no\");\"classList\"in a&&(a.classList.remove(\"feedback-hidden\"),c.addEventListener(\"click\",function(){e(!0)}),d.addEventListener(\"click\",function(){e(!1)}))})}})();\n</script>\n\n<script defer src=\"https://performance.radar.cloudflare.com/beacon.js\"></script>\n</head>\n<body>\n  <div id=\"cf-wrapper\">\n    <div class=\"cf-alert cf-alert-error cf-cookie-error hidden\" id=\"cookie-alert\" data-translate=\"enable_cookies\">Please enable cookies.</div>\n    <div id=\"cf-error-details\" class=\"p-0\">\n      <header class=\"mx-auto pt-10 lg:pt-6 lg:px-8 w-240 lg:w-full mb-15 antialiased\">\n         <h1 class=\"inline-block md:block mr-2 md:mb-2 font-light text-60 md:text-3xl text-black-dark leading-tight\">\n           <span data-translate=\"error\">Error</span>\n           <span>1003</span>\n         </h1>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">Ray ID: 9207d3e7fb87f418 &bull;</span>\n         <span class=\"inline-block md:block heading-ray-id font-mono text-15 lg:text-sm lg:leading-relaxed\">2025-03-15 00:17:25 UTC</span>\n        <h2 class=\"text-gray-600 leading-1.3 text-3xl lg:text-2xl font-light\">Direct IP access not allowed</h2>\n      </header>\n\n      <section class=\"w-240 lg:w-full mx-auto mb-8 lg:px-8\">\n          <div id=\"what-happened-section\" class=\"w-1/2 md:w-full\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_happened\">What happened?</h2>\n            <p>You've requested an IP address that is part of the <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">Cloudflare</a> network. A valid Host header must be supplied to reach the desired website.</p>\n            \n          </div>\n\n          \n          <div id=\"resolution-copy-section\" class=\"w-1/2 mt-6 text-15 leading-normal\">\n            <h2 class=\"text-3xl leading-tight font-normal mb-4 text-black-dark antialiased\" data-translate=\"what_can_i_do\">What can I do?</h2>\n            <p>If you are interested in learning more about Cloudflare, please <a href=\"https://www.cloudflare.com/5xx-error-landing/\" target=\"_blank\">visit our website</a>.</p>\n          </div>\n          \n      </section>\n\n      <div class=\"feedback-hidden py-8 text-center\" id=\"error-feedback\">\n    <div id=\"error-feedback-survey\" class=\"footer-line-wrapper\">\n        Was this page helpful?\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-yes\" type=\"button\">Yes</button>\n        <button class=\"border border-solid bg-white cf-button cursor-pointer ml-4 px-4 py-2 rounded\" id=\"feedback-button-no\" type=\"button\">No</button>\n    </div>\n    <div class=\"feedback-success feedback-hidden\" id=\"error-feedback-success\">\n        Thank you for your feedback!\n    </div>\n</div>\n\n\n      <div class=\"cf-error-footer cf-wrapper w-240 lg:w-full py-10 sm:py-4 sm:px-8 mx-auto text-center sm:text-left border-solid border-0 border-t border-gray-300\">\n  <p class=\"text-13\">\n    <span class=\"cf-footer-item sm:block sm:mb-1\">Cloudflare Ray ID: <strong class=\"font-semibold\">9207d3e7fb87f418</strong></span>\n    <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    <span id=\"cf-footer-item-ip\" class=\"cf-footer-item hidden sm:block sm:mb-1\">\n      Your IP:\n      <button type=\"button\" id=\"cf-footer-ip-reveal\" class=\"cf-footer-ip-reveal-btn\">Click to reveal</button>\n      <span class=\"hidden\" id=\"cf-footer-ip\">199.45.154.131</span>\n      <span class=\"cf-footer-separator sm:hidden\">&bull;</span>\n    </span>\n    <span class=\"cf-footer-item sm:block sm:mb-1\"><span>Performance &amp; security by</span> <a rel=\"noopener noreferrer\" href=\"https://www.cloudflare.com/5xx-error-landing\" id=\"brand_link\" target=\"_blank\">Cloudflare</a></span>\n    \n  </p>\n  <script>(function(){function d(){var b=a.getElementById(\"cf-footer-item-ip\"),c=a.getElementById(\"cf-footer-ip-reveal\");b&&\"classList\"in b&&(b.classList.remove(\"hidden\"),c.addEventListener(\"click\",function(){c.classList.add(\"hidden\");a.getElementById(\"cf-footer-ip\").classList.remove(\"hidden\")}))}var a=document;document.addEventListener&&a.addEventListener(\"DOMContentLoaded\",d)})();</script>\n</div><!-- /.error-footer -->\n\n\n    </div><!-- /#cf-error-details -->\n  </div><!-- /#cf-wrapper -->\n\n  <script>\n  window._cf_translation = {};\n  \n  \n</script>\n\n</body>\n</html>\n",
          "body_hashes": [
            "sha256:eabafb3cb92c136a00901ceeb5a8a3aa1218566d585c474a51dcb7ebea33b9f5",
            "sha1:6363962d66db1947aa08a84ab471278b5b8abf07",
            "tlsh:fdc19663f9f8257a1093c2a33199a71979f4c123dea704d5baadc4721f8de85fe07181"
          ],
          "body_hash": "sha1:6363962d66db1947aa08a84ab471278b5b8abf07",
          "html_title": "Direct IP access not allowed | Cloudflare"
        },
        "supports_http2": false
      },
      "observed_at": "2025-03-15T00:17:25.718602809Z",
      "perspective_id": "PERSPECTIVE_UNKNOWN",
      "port": 8880,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:load_balancing:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "CloudFlare",
          "product": "CloudFlare Load Balancer",
          "other": {
            "family": "CloudFlare"
          },
          "source": "OSI_APPLICATION_LAYER"
        },
        {
          "uniform_resource_identifier": "cpe:2.3:a:cloudflare:waf:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "Cloudflare",
          "product": "WAF",
          "other": {
            "device": "WAF"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "199.45.154.131",
      "transport_protocol": "TCP",
      "truncated": false
    }
  ],
  "location": {
    "continent": "North America",
    "country": "United States",
    "country_code": "US",
    "city": "San Francisco",
    "postal_code": "94107",
    "timezone": "America/Los_Angeles",
    "province": "California",
    "coordinates": {
      "latitude": 37.7621,
      "longitude": -122.3971
    }
  },
  "location_updated_at": "2025-03-08T11:35:16.208943593Z",
  "autonomous_system": {
    "asn": 13335,
    "description": "CLOUDFLARENET",
    "bgp_prefix": "104.18.192.0/20",
    "name": "CLOUDFLARENET",
    "country_code": "US"
  },
  "autonomous_system_updated_at": "2025-03-13T22:29:50.243261450Z",
  "whois": {
    "network": {
      "handle": "CLOUDFLARENET",
      "name": "Cloudflare, Inc.",
      "cidrs": [
        "104.16.0.0/12"
      ],
      "created": "2014-03-28T00:00:00Z",
      "updated": "2024-09-04T00:00:00Z",
      "allocation_type": "ALLOCATION"
    },
    "organization": {
      "handle": "CLOUD14",
      "name": "Cloudflare, Inc.",
      "street": "101 Townsend Street",
      "city": "San Francisco",
      "state": "CA",
      "postal_code": "94107",
      "country": "US",
      "abuse_contacts": [
        {
          "handle": "ABUSE2916-ARIN",
          "name": "Abuse",
          "email": "[email protected]"
        }
      ],
      "admin_contacts": [
        {
          "handle": "ADMIN2521-ARIN",
          "name": "Admin",
          "email": "[email protected]"
        }
      ],
      "tech_contacts": [
        {
          "handle": "ADMIN2521-ARIN",
          "name": "Admin",
          "email": "[email protected]"
        }
      ]
    }
  },
  "dns": {},
  "last_updated_at": "2025-03-15T09:46:56.642Z"
}