52.28.52.173

As of: Oct 09, 2024 8:13am UTC | Latest
{
  "ip": "52.28.52.173",
  "services": [
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 401 \r\nDate: <REDACTED>\r\nContent-Length: 0\r\nConnection: keep-alive\r\nServer: nginx\r\nVary: Origin\r\nVary: Access-Control-Request-Method\r\nVary: Access-Control-Request-Headers\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 0\r\nCache-Control: no-cache, no-store, max-age=0, must-revalidate\r\nPragma: no-cache\r\nExpires: 0\r\nX-Frame-Options: DENY\r\n",
      "banner_hashes": [
        "sha256:33118ee76f231625e398a27c52cdd8c0e21715d670f17ee748e15d9186603d5a"
      ],
      "banner_hex": "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",
      "discovery_method": "PREDICTIVE_METHOD_7",
      "extended_service_name": "HTTP",
      "http": {
        "request": {
          "method": "GET",
          "uri": "http://52.28.52.173/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 401,
          "headers": {
            "Vary": [
              "Origin",
              "Access-Control-Request-Method",
              "Access-Control-Request-Headers"
            ],
            "_encoding": {
              "Vary": "DISPLAY_UTF8",
              "X_Frame_Options": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Pragma": "DISPLAY_UTF8",
              "X_XSS_Protection": "DISPLAY_UTF8",
              "Expires": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "X_Content_Type_Options": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Cache_Control": "DISPLAY_UTF8"
            },
            "X_Frame_Options": [
              "DENY"
            ],
            "Server": [
              "nginx"
            ],
            "Content_Length": [
              "0"
            ],
            "Pragma": [
              "no-cache"
            ],
            "X_XSS_Protection": [
              "0"
            ],
            "Expires": [
              "0"
            ],
            "Connection": [
              "keep-alive"
            ],
            "X_Content_Type_Options": [
              "nosniff"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Cache_Control": [
              "no-cache, no-store, max-age=0, must-revalidate"
            ]
          },
          "body_size": 0
        },
        "supports_http2": false
      },
      "observed_at": "2024-10-09T08:13:57.913341359Z",
      "perspective_id": "PERSPECTIVE_TATA",
      "port": 80,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "nginx",
          "product": "nginx",
          "other": {
            "family": "nginx"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "167.94.138.41",
      "transport_protocol": "TCP",
      "truncated": false
    },
    {
      "_decoded": "http",
      "_encoding": {
        "banner": "DISPLAY_UTF8",
        "certificate": "DISPLAY_HEX",
        "banner_hex": "DISPLAY_HEX"
      },
      "banner": "HTTP/1.1 401 \r\nDate:  <REDACTED>\r\nContent-Length: 0\r\nConnection: keep-alive\r\nServer: nginx\r\nVary: Origin\r\nVary: Access-Control-Request-Method\r\nVary: Access-Control-Request-Headers\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 0\r\nCache-Control: no-cache, no-store, max-age=0, must-revalidate\r\nPragma: no-cache\r\nExpires: 0\r\nStrict-Transport-Security: max-age=31536000 ; includeSubDomains\r\nX-Frame-Options: DENY\r\n",
      "banner_hashes": [
        "sha256:505af8d7ad5096fff5316500f5e84cca07614625939df25a8c891fda780bb808"
      ],
      "banner_hex": "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",
      "certificate": "dee0198930b41cc51f80ec064f535c523936d0c59dffcab8b3985b6cb8577416",
      "discovery_method": "PREDICTIVE_METHOD_20",
      "extended_service_name": "HTTPS",
      "http": {
        "request": {
          "method": "GET",
          "uri": "https://52.28.52.173/",
          "headers": {
            "User_Agent": [
              "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)"
            ],
            "_encoding": {
              "User_Agent": "DISPLAY_UTF8",
              "Accept": "DISPLAY_UTF8"
            },
            "Accept": [
              "*/*"
            ]
          }
        },
        "response": {
          "protocol": "HTTP/1.1",
          "status_code": 401,
          "headers": {
            "Vary": [
              "Origin",
              "Access-Control-Request-Method",
              "Access-Control-Request-Headers"
            ],
            "_encoding": {
              "Vary": "DISPLAY_UTF8",
              "X_Frame_Options": "DISPLAY_UTF8",
              "Server": "DISPLAY_UTF8",
              "Content_Length": "DISPLAY_UTF8",
              "Pragma": "DISPLAY_UTF8",
              "X_XSS_Protection": "DISPLAY_UTF8",
              "Expires": "DISPLAY_UTF8",
              "Strict_Transport_Security": "DISPLAY_UTF8",
              "X_Content_Type_Options": "DISPLAY_UTF8",
              "Date": "DISPLAY_UTF8",
              "Connection": "DISPLAY_UTF8",
              "Cache_Control": "DISPLAY_UTF8"
            },
            "X_Frame_Options": [
              "DENY"
            ],
            "Server": [
              "nginx"
            ],
            "Content_Length": [
              "0"
            ],
            "Pragma": [
              "no-cache"
            ],
            "X_XSS_Protection": [
              "0"
            ],
            "Expires": [
              "0"
            ],
            "Strict_Transport_Security": [
              "max-age=31536000 ; includeSubDomains"
            ],
            "X_Content_Type_Options": [
              "nosniff"
            ],
            "Date": [
              "<REDACTED>"
            ],
            "Connection": [
              "keep-alive"
            ],
            "Cache_Control": [
              "no-cache, no-store, max-age=0, must-revalidate"
            ]
          },
          "body_size": 0
        },
        "supports_http2": true
      },
      "jarm": {
        "_encoding": {
          "fingerprint": "DISPLAY_HEX",
          "cipher_and_version_fingerprint": "DISPLAY_HEX",
          "tls_extensions_sha256": "DISPLAY_HEX"
        },
        "fingerprint": "29d29d00029d29d00029d29d29d29da8f16e8f0a21d89b06fef5080cbd1b2a",
        "cipher_and_version_fingerprint": "29d29d00029d29d00029d29d29d29d",
        "tls_extensions_sha256": "a8f16e8f0a21d89b06fef5080cbd1b2a",
        "observed_at": "2024-09-25T17:10:26.741196477Z"
      },
      "observed_at": "2024-10-07T21:29:25.612919896Z",
      "perspective_id": "PERSPECTIVE_NTT",
      "port": 443,
      "service_name": "HTTP",
      "software": [
        {
          "uniform_resource_identifier": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
          "part": "a",
          "vendor": "nginx",
          "product": "nginx",
          "other": {
            "family": "nginx"
          },
          "source": "OSI_APPLICATION_LAYER"
        }
      ],
      "source_ip": "206.168.34.41",
      "tls": {
        "version_selected": "TLSv1_2",
        "cipher_selected": "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
        "certificates": {
          "_encoding": {
            "leaf_fp_sha_256": "DISPLAY_HEX",
            "chain_fps_sha_256": "DISPLAY_HEX"
          },
          "leaf_fp_sha_256": "dee0198930b41cc51f80ec064f535c523936d0c59dffcab8b3985b6cb8577416",
          "chain_fps_sha_256": [
            "bf8a69027bcc8d2d42a6e6d25bdd4873f6a34b8f90edf07e86c5d6916da0b933",
            "87dcd4dc74640a322cd205552506d1be64f12596258096544986b4850bc72706",
            "28689b30e4c306aab53b027b29e36ad6dd1dcf4b953994482ca84bdc1ecac996"
          ],
          "leaf_data": {
            "names": [
              "*.optikergewinnspiel.de",
              "optikergewinnspiel.de"
            ],
            "subject_dn": "CN=optikergewinnspiel.de",
            "issuer_dn": "C=US, O=Amazon, CN=Amazon RSA 2048 M03",
            "pubkey_bit_size": 2048,
            "pubkey_algorithm": "RSA",
            "tbs_fingerprint": "8056f1c5ab476db7230b37a934c45df98902713cee0e6e8cd1c09a7201775775",
            "fingerprint": "dee0198930b41cc51f80ec064f535c523936d0c59dffcab8b3985b6cb8577416",
            "issuer": {
              "common_name": [
                "Amazon RSA 2048 M03"
              ],
              "organization": [
                "Amazon"
              ],
              "country": [
                "US"
              ]
            },
            "subject": {
              "common_name": [
                "optikergewinnspiel.de"
              ]
            },
            "public_key": {
              "key_algorithm": "RSA",
              "rsa": {
                "_encoding": {
                  "modulus": "DISPLAY_BASE64",
                  "exponent": "DISPLAY_BASE64"
                },
                "modulus": "rZfb7pj7dXIwPONdzIdNa6jtpbPr1xTzocgyBz6IOAsVJi5BcsLOZpJQPj3GBss2/sVsLwC+OTf75xfv9KZW+PmvfE/g53fLAOV8iZmiAdnE5R96RMerpCKhCGVxYpP6OY1QBM5dj1sfLjNfpXyJYWuRvpZ5LHJ04y9u0lvxahiNaaDMzIeRQMuThgIj31obtPMRKXBcOb1lYVWUeWGjWDPCkMrEXZujny7EEVgVy0ojSxXMrR93nE8RmB0Fe3Fp0+eHDWyAOA2Rlt2bDMrm8C3QYVAT+WXOK+L2fNMTFfP/OWckn/Bk7XLEwoiYhxO3R5K4bR164GzrR12oHyaE7Q==",
                "exponent": "AAEAAQ==",
                "length": 256
              },
              "fingerprint": "e9e259504f3cefc2a93b99bb0d75712fa6188abefa7924565b9f2b1103e4f855"
            },
            "signature": {
              "signature_algorithm": "SHA256-RSA",
              "self_signed": false
            }
          },
          "chain": [
            {
              "fingerprint": "bf8a69027bcc8d2d42a6e6d25bdd4873f6a34b8f90edf07e86c5d6916da0b933",
              "subject_dn": "C=US, O=Amazon, CN=Amazon RSA 2048 M03",
              "issuer_dn": "C=US, O=Amazon, CN=Amazon Root CA 1"
            },
            {
              "fingerprint": "87dcd4dc74640a322cd205552506d1be64f12596258096544986b4850bc72706",
              "subject_dn": "C=US, O=Amazon, CN=Amazon Root CA 1",
              "issuer_dn": "C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies\\, Inc., CN=Starfield Services Root Certificate Authority - G2"
            },
            {
              "fingerprint": "28689b30e4c306aab53b027b29e36ad6dd1dcf4b953994482ca84bdc1ecac996",
              "subject_dn": "C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies\\, Inc., CN=Starfield Services Root Certificate Authority - G2",
              "issuer_dn": "C=US, O=Starfield Technologies\\, Inc., OU=Starfield Class 2 Certification Authority"
            }
          ]
        },
        "server_key_exchange": {
          "ec_params": {
            "named_curve": 23
          }
        },
        "session_ticket": {
          "length": 105,
          "lifetime_hint": 86400
        },
        "_encoding": {
          "ja3s": "DISPLAY_HEX"
        },
        "ja3s": "68e2191680437b43d30ef341ac8c2b4d",
        "ja4s": "t120300_c02f_7a0270e617ef",
        "versions": [
          {
            "tls_version": "TLSv1_2",
            "_encoding": {
              "ja3s": "DISPLAY_HEX"
            },
            "ja3s": "68e2191680437b43d30ef341ac8c2b4d",
            "ja4s": "t120300_c02f_7a0270e617ef"
          }
        ]
      },
      "transport_protocol": "TCP",
      "truncated": false
    }
  ],
  "location": {
    "continent": "Europe",
    "country": "Germany",
    "country_code": "DE",
    "city": "Frankfurt am Main",
    "postal_code": "60306",
    "timezone": "Europe/Berlin",
    "province": "Hesse",
    "coordinates": {
      "latitude": 50.11552,
      "longitude": 8.68417
    }
  },
  "location_updated_at": "2024-10-02T18:52:08.382992284Z",
  "autonomous_system": {
    "asn": 16509,
    "description": "AMAZON-02",
    "bgp_prefix": "52.28.0.0/16",
    "name": "AMAZON-02",
    "country_code": "US"
  },
  "autonomous_system_updated_at": "2024-10-02T18:52:08.383091121Z",
  "whois": {
    "network": {
      "handle": "AMAZO-ZFRA",
      "name": "A100 ROW GmbH",
      "cidrs": [
        "52.28.0.0/15"
      ],
      "created": "2016-09-27T00:00:00Z",
      "updated": "2016-09-27T00:00:00Z",
      "allocation_type": "REALLOCATION"
    },
    "organization": {
      "handle": "RG-123",
      "name": "A100 ROW GmbH",
      "street": "Marcel-Breuer-Strasse 10",
      "city": "Munchen",
      "postal_code": "80807",
      "country": "DE",
      "abuse_contacts": [
        {
          "handle": "AEA8-ARIN",
          "name": "Amazon EC2 Abuse",
          "email": "[email protected]"
        }
      ],
      "admin_contacts": [
        {
          "handle": "IPMAN40-ARIN",
          "name": "IP Management",
          "email": "[email protected]"
        }
      ],
      "tech_contacts": [
        {
          "handle": "ANO24-ARIN",
          "name": "Amazon EC2 Network Operations",
          "email": "[email protected]"
        }
      ]
    }
  },
  "dns": {
    "names": [
      "ec2-52-28-52-173.eu-central-1.compute.amazonaws.com",
      "discovery-euc.freshservice.com"
    ],
    "records": {
      "ec2-52-28-52-173.eu-central-1.compute.amazonaws.com": {
        "record_type": "A",
        "resolved_at": "2024-09-19T13:21:09.396454704Z"
      },
      "discovery-euc.freshservice.com": {
        "record_type": "A",
        "resolved_at": "2024-09-02T16:06:47.298399217Z"
      }
    },
    "reverse_dns": {
      "names": [
        "ec2-52-28-52-173.eu-central-1.compute.amazonaws.com"
      ],
      "resolved_at": "2024-09-24T16:01:27.496465529Z"
    }
  },
  "last_updated_at": "2024-10-09T08:13:58.988Z"
}